OM-BP-0010: Use passwordless authentication (Best Practice)

ID

OM-BP-0010

Name

Use passwordless authentication

Status

Active

Version

1.0

Best Practice

Do not rely on passwords as an authentication factor.

Rationale

Bad Practices

  • Use passwords

Implementation Details

Quotes

Go passwordless

For organizations that use modern technologies like Windows 10, we recommend going passwordless by using face authentication, fingerprints, or a PIN code. For organizations with applications or workloads that can’t be transitioned to passwordless, we recommend adopting a secure password management solution, such as a password locker or vault and requiring that employees use unique, randomized passwords for access to all sensitive information and on all servers and devices, including IoT and IoT controllers and network infrastructure such as switches, routers, and firewalls.

(Microsoft, 2020(2), p. 73)

Bibliography

Related Best Practices


Follow us on LinkedIn | Discuss on Slack | Support us with Patreon | Sign-up for a free membership.


This wiki is owned by Open Measure, a non-profit association. The original content we publish is licensed under a Creative Commons Attribution 4.0 International License.