Security Magazine logo
search
cart
facebook twitter linkedin youtube
  • Sign In
  • Create Account
  • Sign Out
  • My Account
Security Magazine logo
  • NEWS
    • Security Newswire
    • Technologies & Solutions
  • MANAGEMENT
    • Leadership Management
    • Enterprise Services
    • Security Education & Training
    • Logical Security
    • Security & Business Resilience
    • Profiles in Excellence
  • PHYSICAL
    • Access Management
    • Fire & Life Safety
    • Identity Management
    • Physical Security
    • Video Surveillance
    • Case Studies (Physical)
  • CYBER
    • Cybersecurity News
    • More
  • BLOG
  • COLUMNS
    • Cyber Tactics
    • Leadership & Management
    • Security Talk
    • Career Intelligence
    • Leader to Leader
    • Cybersecurity Education & Training
  • EXCLUSIVES
    • Annual Guarding Report
    • Most Influential People in Security
    • The Security Benchmark Report
    • The Security Leadership Issue
    • Top Guard and Security Officer Companies
    • Top Cybersecurity Leaders
    • Women in Security
  • SECTORS
    • Arenas / Stadiums / Leagues / Entertainment
    • Banking/Finance/Insurance
    • Construction, Real Estate, Property Management
    • Education: K-12
    • Education: University
    • Government: Federal, State and Local
    • Hospitality & Casinos
    • Hospitals & Medical Centers
    • Infrastructure:Electric,Gas & Water
    • Ports: Sea, Land, & Air
    • Retail/Restaurants/Convenience
    • Transportation/Logistics/Supply Chain/Distribution/ Warehousing
  • EVENTS
    • Industry Events
    • Webinars
    • Solutions by Sector
    • Security 500 Conference
  • MEDIA
    • Videos
      • Cybersecurity & Geopolitical Discussion
      • Ask Me Anything (AMA) Series
    • Podcasts
    • Polls
    • Photo Galleries
  • MORE
    • Call for Entries
    • Classifieds & Job Listings
    • Continuing Education
    • Newsletter
    • Sponsor Insights
    • Store
    • White Papers
  • EMAG
    • eMagazine
    • This Month's Content
    • Advertise
  • SIGN UP!
Cybersecurity News

Debating Between Convenience and Security in Authentication

Physical and logical identity and access control is the most frequent convergence point in enterprises

trends slide 2
June 1, 2013

Iwas going to submit this column to my editor on time this month, really, but getting online was just too hard. So I gave up. And it is late.

That would seem a weak excuse at best for poor work habits, but a recent study, Moving Beyond Passwords: Consumer Attitudes on Online Authentication, commissioned by the company Nok Nok and done by The Ponemon Group, is instructive about human behavior and the challenges your enterprise might face with identification, authentication and access.

Why might this matter? First, physical and logical identity and access control is the most frequent convergence point in enterprises. Second, because it sort of says that buying great technology that is effective, per se, but difficult to use will meet resistance, reduce productivity, create a service nightmare, cost too much to support and ultimately have to be replaced by the person that replaces you.

Noted once again, managing cyber risk is a business problem. If only addressed as a technology issue of computing power over human behavior, then it will circle back as an even larger business problem.

Let’s look at the convergence issue. The first convergence “concept” was merging physical access with network access. It had a variety of flavors, but the most common was that your ID badge upon entering your facility disabled your VPN or created an alert if you were physically in your facility but attempting to access the network externally, nd vice versa. But that case study is ancient today. The perimeter that security used to defend is gone. The definition of those entering a facility or logging onto a network is simply: “users.” And BYOD has made work devices personal devices and personal devices work devices. How do you authenticate identity in this complex environment?

And while there are technologies that can do this, they may be met with resistance and ultimately a “the post office lost my letter” excuse. Back to Ponemon’s study of consumers (about 2,000 in the U.S., UK and Germany) about passwords and their response when faced with authentication challenges:

  • Passwords are too hard to remember
  • They take too long to reset
  • The Internet site locks users out after failing too frequently

And, like me and my deadline….. They just give up. And while the respondents faced difficulties logging into a website, they did not believe the increased difficulty made that website any more secure than sites they were more easily able to access. Hmmmm.

So, what does this tell us? Users (your customers) believe authentication is important, but they want to be authenticated and simply identified. Interestingly, if consumers trust the organization, biometrics is acceptable to use for authentication. Voice recognition and facial scan are the most acceptable types of biometric authentication. Least acceptable in the U.S. and UK is an iris scan. In Germany, least favored are fingerprints. While you have many options on this important front, balancing convenience with security to match your enterprise’s culture is the first step.

You can read more about passwords and one group that is working to save you time and money with passwords and their challenges in this month’s Security Talk.  

 

Like what you’re reading?
Subscribe FREE today at www.SecurityMagazine.com/subscribe

 


 

Our 2012 Security 500 research and benchmarking report identified cyber security as a critical issue that you face. As a result, we are expanding our editorial each issue, in addition to online and in our eNewsletter, to address cyber risk, crime, espionage, security and more. We are pleased to welcome Steven Chabinsky to the Securityfamily as our new cyber columnist. Steven had a distinguished 17-year career with the FBI, where he helped shape and draft many of America’s most significant cyber and infrastructure protection laws and strategies. Please let us know your concerns, your questions and your victories for this critical business issue. We look forward to your input, and thank you for reading Securitymagazine.

KEYWORDS: IP migration lifecycle management networking costs surveillance installation surveillance system integration

Share This Story

Looking for a reprint of this article?
From high-res PDFs to custom plaques, order your copy today!

Recommended Content

JOIN TODAY
To unlock your recommendations.

Already have an account? Sign In

  • Security's Top Cybersecurity Leaders 2024

    Security's Top Cybersecurity Leaders 2024

    Security magazine's Top Cybersecurity Leaders 2024 award...
    Top Cybersecurity Leaders
    By: Security Staff
  • cyber brain

    The intersection of cybersecurity and artificial intelligence

    Artificial intelligence (AI) is a valuable cybersecurity...
    Security Leadership and Management
    By: Pam Nigro
  • artificial intelligence AI graphic

    Assessing the pros and cons of AI for cybersecurity

    Artificial intelligence (AI) has significant implications...
    Technologies & Solutions
    By: Charles Denyer
Subscribe For Free!
  • Security eNewsletter & Other eNews Alerts
  • eMagazine Subscriptions
  • Manage My Preferences
  • Online Registration
  • Mobile App
  • Subscription Customer Service

More Videos

Sponsored Content

Sponsored Content is a special paid section where industry companies provide high quality, objective, non-commercial content around topics of interest to the Security audience. All Sponsored Content is supplied by the advertising company and any opinions expressed in this article are those of the author and not necessarily reflect the views of Security or its parent company, BNP Media. Interested in participating in our Sponsored Content section? Contact your local rep!

close
  • Crisis Response Team
    Sponsored byEverbridge

    Automate or Fall Behind – Crisis Response at the Speed of Risk

  • Perimeter security
    Sponsored byAMAROK

    Why Property Security is the New Competitive Advantage

  • Duty of Care
    Sponsored byAMAROK

    Integrating Technology and Physical Security to Advance Duty of Care

Popular Stories

Pills spilled

More than 20,000 sensitive medical records exposed

Coding on screen

Research reveals mass scanning and exploitation campaigns

Laptop in darkness

Verizon 2025 Data Breach Investigations Report shows rise in cyberattacks

White post office truck

Department of Labor Sues USPS Over Texas Whistleblower Termination

Computer with binary code hovering nearby

Cyberattacks Targeting US Increased by 136%

2025 Security Benchmark banner

Events

May 22, 2025

Proactive Crisis Communication

Crisis doesn't wait for the right time - it strikes when least expected. Is your team prepared to communicate clearly and effectively when it matters most?

September 29, 2025

Global Security Exchange (GSX)

 

View All Submit An Event

Products

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

See More Products

Related Articles

  • Software-as-a-Service

    Microsoft Office 365 – convenience in the cloud or an open invitation to hackers?

    See More
  • Bill Zalud

    Debating the Future of Cyber Attacks

    See More
  • cyber 4 responsive default

    Debating CISA's Senate Passage

    See More

Related Products

See More Products
  • databasehacker

    The Database Hacker's Handboo

See More Products
×

Sign-up to receive top management & result-driven techniques in the industry.

Join over 20,000+ industry leaders who receive our premium content.

SIGN UP TODAY!
  • RESOURCES
    • Advertise
    • Contact Us
    • Store
    • Want More
  • SIGN UP TODAY
    • Create Account
    • eMagazine
    • eNewsletter
    • Customer Service
    • Manage Preferences
  • SERVICES
    • Marketing Services
    • Reprints
    • Market Research
    • List Rental
    • Survey/Respondent Access
  • STAY CONNECTED
    • LinkedIn
    • Facebook
    • YouTube
    • X (Twitter)
  • PRIVACY
    • PRIVACY POLICY
    • TERMS & CONDITIONS
    • DO NOT SELL MY PERSONAL INFORMATION
    • PRIVACY REQUEST
    • ACCESSIBILITY

Copyright ©2025. All Rights Reserved BNP Media.

Design, CMS, Hosting & Web Development :: ePublishing