High profile breaches continue to make headlines weekly. Many of these breaches involve the use of compromised privileged credentials. Only a small percentage of cyber security professionals believe that user name and password-based security remains an adequate form of protection.
Many organizations are turning to multi-factor authentication (MFA) or two-factor authentication (2FA) to not only reduce the risk of stolen passwords but also to validate the user, which is one of the main concepts in helping to achieve Zero Trust Privilege. By adding a second authentication factor requirement to security policies, attackers are unable to access critical systems and network devices or gain privileged access without the smartphone (e.g., something you have) or the fingerprint (e.g., something you are) required to complete the authentication process.