Over two thirds (70 per cent) of British businesses are using multi-factor authentication (MFA) and a virtual private network (VPN) to manage the security risks posed by the increase of remote working during the Coronavirus pandemic. This is according to official polling released by Centrify, a leading provider of Identity-Centric privileged access management solutions, into how companies are adapting to the Covid-19 crisis.
Multi-factor authentication is an authentication method in which a computer user is granted access only after successfully presenting two or more known identity confirmations (such as a password and a code texted to their known phone number, a hardware key and biometric confirmation like a fingerprint scan, etc.). A VPN, on the other hand, extends a private network across a public network, allowing internet users to protect their location and stay anonymous.
The data, collected by independent polling company Censuswide on behalf of Centrify, was obtained via a survey of 200 senior business decision-makers in large and medium-sized UK companies. 46 per cent of those surveyed have already noted an increase of phishing attacks since implementing a policy of widespread remote working.
Despite recognising a need for more cyber security vigilance in the face of increased opportunistic threats, the poll also revealed that 43 per cent of individuals believe the increased cyber security protocols for remote workers will have a negative impact on workplace productivity. Similarly, almost half of the individuals (49 per cent) preferred to remove extra authentication steps for basic apps and data in the workplace, as they felt it adds unnecessary time to procedures.
As a potential alternative or middle ground, 60 per cent of business decision makers support biometric data – such as fingerprint or facial recognition identification factors supported by the FIDO2 specification for passwordless authentication – as a suitable replacement to more time-intensive multi-factor authentication to increase productivity. Furthermore, two-thirds (66 per cent) agree that they would feel more secure using fingerprint or facial recognition ID as opposed to a traditional password.
“It’s clear that businesses recognise the risks posed by increased remote working during this difficult time, with the majority opting for multi-factor authentication solutions to verify every user and protect company data. What’s troubling is the other 30 per cent who are not using MFA, which is a security best practice” commented Andy Heather, VP, at Centrify.
“Every organisation wants to ensure productivity for remote workers, but it cannot come at the expense of proper security. They need to weigh the risks they are facing with these heightened threats very carefully and take any and all measures available to ensure access is granted only to authentic users.
“This is particularly important for privileged access by IT administrators, many of whom are outsourced third-parties with broad entitlements and less restrictive controls. It’s worth requiring the extra few seconds for these users to properly authenticate their identities. As our polling data indicates, many organisations are looking at more modern factors of authentication such as biometrics that can both increase security and productivity.”