Most cloud professionals remain overly attached to the use of passwords despite their security vulnerabilities, according to new research.

Eighty-three percent of cloud pros are confident about passwords’ security effectiveness, and more than a third (34 percent) said they are very confident. However, Beyond Identity pointed to stats that show that insecure password practices are regularly exploited in cyberattacks worldwide, with 80 percent of all breaches using compromised identities.[1]

Figure1. Those working in the cloud are "overly attached to password-based security"

Those working in the cloud are "overly attached to password-based security" is shown in figure 1. The survey of more than 150 cloud industry professionals was conducted at the recent Cloud Expo Europe event and revealed over four-fifths (83%) of cloud professionals are confident about passwords’ security effectiveness, over a third (34%) saying they are very confident. This is despite the fact that insecure password practices are regularly exploited in cyber-attacks worldwide, with 80% of all breaches using compromised identities.

Asked about their experiences of using passwords, the study revealed a range of frustrations cloud professionals face with hygiene requirements for password-based systems. Over half of respondents (60%) find it frustrating to remember multiple passwords, 52% by having to regularly change their passwords, while another 52% are frustrated by the requirement to choose long passwords containing numbers and symbols. [2]

Password-based security has been a widely used method for authentication and access control in the digital world. However, it is true that password-based security has its limitations and vulnerabilities. As a result, there has been a push for stronger authentication methods, such as multi-factor authentication (MFA) and biometrics, to enhance security.

While many cloud professionals recognize the shortcomings of password-based security, the transition to alternative authentication methods may not always be straightforward. There are various factors that contribute to this attachment to password-based security:

• Familiarity and ease of use
• Legacy systems and compatibility
• User experience and convenience
• Security awareness and education

However, it's important to note that the cybersecurity landscape is continuously evolving, and there is a general recognition within the industry that password-based security alone is not sufficient to protect against advanced threats. As organizations face increasing cybersecurity challenges, there is a growing emphasis on adopting multi-factor authentication, biometrics, and other more robust security measures to enhance protection in cloud environments.

References:

1. https://www.thinkdigitalpartners.com/news/2023/05/10/cloud-professionals-remain-overly-attached-to-passwords/
2. https://cybermagazine.com/articles/cloud-professionals-remain-attached-to-password-security

Cite this article:

Gokula Nandhini K (2023), Those working in the cloud are "overly attached to password-based security", Anatechmaz, pp.98