APRIL 2018CIOAPPLICATIONS.COM8Eliminating Passwords: The Journey BRET ARSENAULT, CVP AND CISO, MICROSOFT [NASDAQ: MSFT]ccording to one estimate, the average person has 27 online accounts with user names and passwords. Choosing the right password is as confusing as trying to remember dozens of passwords--it should be complex, more than 8 characters long, it should use letters, numbers and symbols, it shouldn't be a dictionary word, it shouldn't be something that anyone else can guess, you should change your passwords frequently, you shouldn't use the same password for multiple accounts. The list goes on.All of these complicated rules lead users to try and create passwords that are easier to remember, but frequently that makes them easy for attackers to guess. And, hackers are taking every advantage of this weakness. One security industry report notes that 81 percent of hacking-related breaches leveraged either stolen and/or weak passwords. As the Chief Information Security Officer of Microsoft, this represents a huge problem for me. The good news is, I love challenging problems. And, I'm on a mission to end the use of passwords at Microsoft.Many years ago, when we started seeing the growing sophistication of hackers and their unfortunate success in breaking into the networks of big, consumer-name companies, we started a journey to find a better way to secure our AIN MY VIEW
< Page 7 | Page 9 >