Enterprises today face a heightened risk of data breaches, with the proliferation of SaaS applications and AI tools being used without proper oversight. The lack of controls like single sign-on (SSO) and multifactor authentication (MFA) for these unmanaged apps poses a significant security threat, as sensitive data could potentially be leaked out into the internet.
Fred Rivain, CTO of Dashlane, emphasizes the importance of improving credential hygiene across the organization. While SSO and MFA can help secure critical systems, the challenge lies in the compatibility of these tools with the numerous applications that are not SSO-enabled. The cost and complexity of adding SSO integration to all necessary tools often deter enterprises, leaving many credentials unprotected.
To address this issue, Rivain suggests encouraging employees to use a credential manager to generate unique and complex passwords for their systems. Additionally, implementing passkeys, a form of passwordless authentication developed by the FIDO Alliance, can enhance security and mitigate credential risks. Passkeys are more secure, phishing-resistant, and cannot be stolen or guessed like traditional passwords.
Although passkeys are still evolving and not widely available for all platforms, they offer a promising solution to enhance enterprise security. As more organizations adopt passkeys, they are expected to become a standard part of the security conversation in the future. However, there are still challenges to address, such as accessibility concerns and account recovery issues.
To further enhance credential security, Dashlane has integrated detection, intelligence, and response capabilities into its tools to provide maximum visibility into credential risks. The Credential Risk tool monitors company-wide credential data in real time and alerts IT of any weak, reused, or compromised credentials. Dashlane Nudges automates the response by sending personalized messages to employees to update their credentials when risks are detected.
In conclusion, enterprises need to adopt a proactive approach to credential security by implementing tools that offer real-time detection and response capabilities. By adding an additional layer of protection to their security strategy, organizations can better safeguard against evolving security threats and unauthorized access to sensitive data. To learn more about Dashlane’s security tools for enterprise, visit their website.
