Nearly half of enterprises using passwordless security

A new survey from Bitwarden shows a strong start for passwordless technology, with nearly half of enterprises using it in some capacity.

Technology company Bitwarden has announced the results of its 2023 Password Decisions Survey. The survey, which polled 800 IT decision makers across a wide range of industries, shows that passwordless technology is here to stay, with businesses enthusiastic about its perceived security benefits and improved user experience (UX).

According to the survey, roughly half of respondents deploy or have plans to deploy passwordless technology. Of that percentage, 66% have 1-2 user groups or multiple teams using passwordless technology and 13% have deployed to their entire organisation.

Bitwarden CEO Michael Crandell says: “Our survey shows businesses are looking beyond passwords and desire new technologies that reflect passwordless workflows, which shouldn’t come as a surprise.

“While strong and unique passwords are highly effective at safeguarding data, weak or re-used passwords that are not managed by an end-to-end encrypted password manager present serious vulnerabilities. The Bitwarden approach takes into account this evolution but also reflects that adoption timelines vary by company, technology, and end-user preference and that security remains the paramount goal for individuals and enterprises alike.”

Desire Remains for C-Suite-Driven Security Protocols

Businesses are confronting numerous post-pandemic security challenges: increased employee turnover, a hybrid workforce relying on multiple devices in many different locations, and a seemingly unending threat from cyber-criminals. In light of these challenges, over three-fourths (79%) of IT decision makers want employees to use the same enterprise-wide password manager. 60% cite security as the most important attribute of a good password manager, followed by the integration of 2FA (56%) and ease-of-use (40%). With hybrid and remote work here to stay for many employees, the lines between security habits at work and at home have blurred. The majority (71%) of employees are ‘very likely’ to use a password manager with a complementary family account to give their family added security at home, if this was offered by their company.

Security Concerns Influencing Business Decisions

Sixty-percent of respondents report their organization has experienced a cyberattack, up from 54% last year. In response, a large majority (80%) now have a ransomware mitigation strategy in place, an increase from 75% last year. Cyber insurance is also becoming commonplace, with three-fourths (75%) having the insurance. Of the percentage that do, 65% were required to show they offer cyber awareness training for employees, 64% that they deploy MFA, and 61% that they offer a company-wide password manager.

Bad habits coexist alongside best practices

Almost all respondents (92%) use 2FA in the workplace, up from 88% last year. However, nearly that same percentage also reuse passwords (90%). While most (84%) use password managers, they also manage passwords with documents on their computer (54%) or with their memory (45%). Respondents also continue to rely on insecure methods to share passwords, such as shared online documents (38%) and email (41%). And despite their security-centric role, 32% admit to engaging in ‘shadow IT’ practices and around half (49%) of respondents say their organization has struggled with employee shadow IT practices.

Further insights about passwordless technology

When asked why their organisation has not made the transition to passwordless technology, 39% of respondents claim end users are reluctant to make the switch and 49% say the applications they’re using are not designed to go passwordless. Of those that have made the switch, 51% are or would consider implementing ‘something you are’ (facial, fingerprint, voice) passwordless authentication. Half (47%) say they are very familiar with the FIDO2 passwordless authentication standard and consider it important to their company’s passwordless experience.

Methodology and Full Survey Results

The survey, conducted independently by Propeller Insights, surveyed 400 U.S. and 400 U.K. IT decision makers on their workplace password practices and perceptions about password security and overall cybersecurity.

Share

Featured Articles

ICYMI: New Age of the CISO and cybersecurity trends for 2023

A week is a long time in cybersecurity, so here’s a round-up of the Cyber Magazine articles that have been starting conversations around the world

Kingfisher chooses Google Cloud as catalyst for growth

Google Cloud will support Kingfisher's digital ambitions with a range of solutions, from infrastructure to data analytics.

ICYMI: Cyber predictions for 2023 and trouble in paradise

A week is a long time in cybersecurity, so here’s a round-up of the Cyber Magazine articles that have been starting conversations around the world

Osirium shares its cyber predictions for 2023

Cyber Security

ICYMI: Unloved emails and cybersecurity worth $500bn by 2030

Cyber Security

Cyber security market anticipated to reach $500bn by 2030

Cyber Security