Security vs. Convenience: Why Biometrics Will Not Replace Passwords
The common belief is that biometrics, such as Touch ID or Face ID, can be used to eliminate traditional passwords.
Why It’s Critical
Touch ID is used to unlock your PIN, which in-turn is used to unlock your phone. So the Touch ID is convenient, but the phone is just as vulnerable to a weak PIN with or without the fingerprint scanner. Also, biometrics can’t be changed, so if the fingerprint file is ever compromised, then the user has to revert back to passwords. Finally, despite most mobile devices coming with biometrics, a complete organization deployment means scanners have to be deployed to every computer and appliance and connected to a central authentication system. The costs of integration, broken and lost scanners and the liability of storing employee biometric files explain why biometrics has not already been widely deployed.
How Keeper Solves It
Keeper Security fully endorses and supports biometrics for 2FA (two-factor authentication.) However, passwords are not going away. Keeper enables organizations to take control of their passwords. Every employee is provided a secure, cloud-based digital vault that stores passwords and any other critical information such as encryption keys and digital certificates. Keeper will generate strong, random passwords and autofill them across mobile devices and web browsers. This saves employees time, frustration and eliminates the need for them to reuse passwords. The Keeper vault is available to employees from any device and location that the admin allows through enforcement policies. All this makes the entire organization more secure and drastically cuts help desk calls.
Keeper is a Zero-Knowledge Password Management solution. This means all information that is stored in Keeper is only accessible by the end-user. All encryption and decryption is done on-the-fly in the client’s device, and the data is encrypted both in-transit (TLS) and at rest on Keeper’s Infrastructure (AES-256). The plaintext version of the data is never available to Keeper Security employees nor any outside party. Keeper is fanatical about protecting customer data, but in the unlikely event Keeper was hacked, the attackers could only possibly access the worthless ciphertext.
Improve Password Awareness and Behavior
Most businesses have limited visibility into the password practices of their employees which greatly increases cyber risk. Password hygiene cannot be improved without critical information regarding password usage and compliance. Keeper solves this by providing comprehensive password reporting, auditing, analytics and notifications.
Use from any device on any service
Keeper is available in native applications for iOS, Android, Windows, Mac and Linux. Browser Extensions for Chrome, Safari, Firefox, Edge and IE are also supported. All devices are backed-up and synchronized via the Keeper Cloud Security VaultTM. Keeper works with any application or use case that uses a password, PIN, digital certificate, SSH key, API key, access key and more.
Keeper is intuitive and easy to deploy regardless of the size of your business. Keeper integrates with Active Directory and LDAP servers which streamlines provisioning and onboarding. Use Keeper SSO Connect® to integrate into your existing SSO solution.
Keeper Scales with your Business
Keeper was designed to scale for any sized business. Features such as role based permissions, team sharing, departmental auditing and delegated administration support your business as it grows. Keeper Commander™ provides robust APIs to integrate into current and future systems.
- Keeper Enterprise Deployment Guide
- SSO Provisioning with Keeper Enterprise
- Active Directory Provisioning with Keeper Enterprise
- Why Biometrics Will Not Replace Passwords
- Enhancing and Extending Single Sign-On with Keeper SSO Connect®
- How Can I Store and Protect My Digital Certificates and Access Keys?
- All the Keys to the Kingdom: Use Keeper to Stop Trust-Based Attacks
- Learn More About Keeper for Your Business