Fannie Mae CISO: Passwords Should Be Dead
Anthony Johnson discuss how firms need to move towards two-factor authentication.
But how long will that belief last?
Anthony Johnson, Fannie Mae chief information security officer (CISO), thinks passwords should be put to bed.
"I think passwords are largely dead," Johnson said bluntly, answering a question about the evolution of password security at the CyberRisk conference in Manhattan last week.
Johnson used online gamers as an example, comparing them to regular bankers. Since gamers have pushed for two-factor authentication, Johnson said that online gaming accounts are now more secure than online bank accounts.
"How many of us actually use two-factor authentication for our consumers to log in? There is only a handful. That is mindboggling," he said. "As an organization, we say, ‘Well, I don't want to take the risk that I might upset the consumers,' but at some point, I've got to give that line of thinking up."
Johnson said despite the fact they're outdated, passwords will probably stick around due to consumers' preference and habit. Uneducated users feel comfortable having a password because it makes them feel safe, even if it doesn't efficiently protect them.
Certificates Next?
A lot of it also comes down to users' misunderstanding of the security that a certificate — the primary alternative form of protection — provides. A certificate isn't a tangible form of security for the consumer. Because of this, it doesn't make them feel safe.
"It's transparent, but really great security should be transparent," said Johnson of certificates. "You should know that it's there, but it's not interrupting your life."
Further complicating the issue was the distribution of unauthorized digital certificates last week. According to Johnson, the certificates were, by default, accepted by everyone, causing major security concerns.
Johnson said he hopes the fake certificate episode doesn't detract more firms from adopting password-free security.
"I think the password will eventually go away," he said. "I think, hopefully, we start to have strong integration from certificates."
Only users who have a paid subscription or are part of a corporate subscription are able to print or copy content.
To access these options, along with all other subscription benefits, please contact info@waterstechnology.com or view our subscription options here: http://subscriptions.waterstechnology.com/subscribe
You are currently unable to print this content. Please contact info@waterstechnology.com to find out more.
You are currently unable to copy this content. Please contact info@waterstechnology.com to find out more.
Copyright Infopro Digital Limited. All rights reserved.
As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (point 2.4), printing is limited to a single copy.
If you would like to purchase additional rights please email info@waterstechnology.com
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (clause 2.4), an Authorised User may only make one copy of the materials for their own personal use. You must also comply with the restrictions in clause 2.5.
If you would like to purchase additional rights please email info@waterstechnology.com
More on Emerging Technologies
S&P debuts GenAI ‘Document Intelligence’ for Capital IQ
The new tool provides summaries of lengthy text-based documents such as filings and earnings transcripts and allows users to query the documents with a ChatGPT-style interface.
The Waters Cooler: Are times really a-changin?
New thinking around buy-build? Changing tides in after-hours trading? Trump is back? Lots to get to.
A tech revolution in an old-school industry: FX
FX is in a state of transition, as asset managers and financial firms explore modernizing their operating processes. But manual processes persist. MillTechFX’s Eric Huttman makes the case for doubling down on new technology and embracing automation to increase operational efficiency in FX.
Waters Wavelength Ep. 294: Grasshopper’s James Leong
James Leong, CEO of Grasshopper, a proprietary trading firm based in Singapore, joins to discuss market reforms.
The Waters Cooler: Big Tech, big fines, big tunes
Amazon stumbles on genAI, Google gets fined more money than ever, and Eliot weighs in on the best James Bond film debate.
AI set to overhaul market data landscape by 2029, new study finds
A new report by Burton-Taylor says the intersection of advanced AI and market data has big implications for analytics, delivery, licensing, and more.
New Bloomberg study finds demand for election-related alt data
In a survey conducted with Coalition Greenwich, the data giant revealed a strong desire among asset managers, economists and analysts for more alternative data from the burgeoning prediction markets.
How ‘Bond gadgets’ make tackling data easier for regulators and traders
The IMD Wrap: Everyone loves the hype around AI, especially financial firms. And now, even regulators are getting in on the act. But first... “The name’s Bond; J-AI-mes Bond”
