Infographic Crunching Numbers to Solve the
Passwordless Equation

Infographic text included for screen readers:

Crunching Numbers to Solve the Passwordless Equation

Passwords are problematic. They’re a leading cause of breaches and are bad for user experience. Yet, despite their shortcomings, passwords remain ubiquitous. Adopting passwordless authentication can solve the inherent problems of passwords to deliver stronger security and better user experiences.

According to a Gartner report, By 2025, more than 50% of the workforce and more than 20% of customer authentication transactions will be passwordless, up from less than 10% today.

Source: Gartner, Take 3 Steps Toward Passwordless Authentication, Ant Allan, Refreshed 22 February 2023, Published 19 October 2021. GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved.

 

Passwords aren’t secure

80% of breaches involve brute force attacks or the use of lost or stolen credentials.¹

70% of people use the same usernames and passwords across various sites.³

The average person uses roughly 191 services that require them to enter passwords or other credentials.²

More than 15 billion compromised credentials in circulation on dark web forums.²

Passwords present serious security concerns amongst IT leaders

94% have serious concerns about user-generated passwords.⁴

90% are very or somewhat worried about passwords at their organization being stolen.⁴

50% are concerned that passwords are too weak for security purposes.⁴

IBM’s Cost of a Data Breach 2022 report found that the average cost of a data breach resulting from compromised credentials for an organization was $4.5 million, up from $4.37 million in 2021.

Passwords are a drain on productivity and experience

Forrester Research states that the average help desk labor cost for a single password reset is about $70, and that large organizations spend up to $1 million per year on sta­ffing and infrastructure to handle password resets alone.⁵

33% of help desk tickets are related to passwords, and in the past year, IT leaders have seen a 30% increase in password-related incidents.⁴

Leaders estimate employees must enter passwords an average of 12 times a day. This translates to up to 11 hours lost annually from password resets with 12 minutes spent daily entering and resetting passwords.⁷

56% of consumers have abandoned an online service when logging in was too frustrating.⁸

“91% agree that password security is a cultural issue for which business leaders — not users — must take responsibility.”

In a recent Ping Identity survey, IT leaders with no plans for passwordless cited the following deterrents:

97% of those who haven’t adopted passwordless believe they will face challenges in doing so. ⁸

83% with no plans for passwordless admitted that they were unsure about how to implement it. ⁸

33% of those who haven’t adopted passwordless authentication say a lack of expertise is a barrier to adopting passwordless authentication. ⁸

Unlocking the benefits of a passwordless future

100% of IT leaders acknowledged the advantages of passwordless authentication, with:

-      52% citing opportunities in reduced security costs and enhanced security.

-      48% saying that less support would be needed.

95% recognized passwordless would create an easier user experience for both employees and customers.

Among organizations that adopted or plan to use passwordless authentication, the top forms are:

-      67% biometrics

-      48% PIN

-      38% physical security keys/tokens

To learn how Ping can help you get started on your passwordless journey, check out our Passwordless Authentication Guide.

¹ Verizon 2020 Data Breach Investigations Report

² From Exposure to Takeover: The 15 billion stolen credentials allowing account takeover, Digital Shadows, 2020

³ Grith, Eric, “Stop Using the Same Password on Multiple Sites! No. Really” PCMag, Sept 21, 2021

⁴ Ping Identity, “Our Passwordless Future: A New Era of Security

⁵ Best Practices: Selecting, Deploying, And Managing Enterprise Password Managers, Forrester Research, 2018

⁶ Ping Identity, “Our Passwordless Future: A New Era of Security

⁷ Up to 11 hours spent every year resetting passwords: https://www.thenationalnews.com/business/up-to-11-hours-spent-every-year-resetting-passwords-1.819620

⁸ Ping Identity, “2021 Consumer Survey: Brand Loyalty is Earned at Login

⁹ Ping Identity, “2021 Consumer Survey: Brand Loyalty is Earned at Login

⁹ Ping Identity, “2021 Consumer Survey: Brand Loyalty is Earned at Login

⁹ Ping Identity, “2021 Consumer Survey: Brand Loyalty is Earned at Login