Operations //

Identity & Access Management

10/22/2014
07:00 AM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Workers put off mobile business apps due to password complications and network security fears

Wide-scale survey shows almost a third of workers are put off accessing business-critical apps and reveals employees are frustrated by long, complex passwords

Reston, VA – Leading digital identity expert Intercede today revealed the results of its latest research The Rise of the Identity Centric Economy, which found that workers US were put off logging into secure business apps due to the perceived weakness of their network security, and many were frustrated by long, complicated passwords. 

The survey of 1,074 US employees across a range of industries revealed that almost a third (30%) thought their networks weren’t secure enough for business apps, while 13% were put off accessing secure apps due to the complex signing in process. A further 10% couldn’t log in as they were simply unable to remember their passwords.

Currently, 81% of workers surveyed used a company or personal mobile device to access secure corporate data with 15% leaving themselves signed in at all times. Just 5% of respondents were concerned that if they lost their handset corporate information would be compromised – highlighting the laissez faire approach to devices in general and the need for robust security measures on handsets.

However, security is clearly an issue with over half (51%) of the 2,000 US consumers polled overall in the survey, who stated that they considered the security features of a device before purchasing a handset. 

Richard Parris, CEO of Intercede said: “Fears about long, complex passwords and insecure network connections are hampering the growth of BYOD and effective working through secure apps. CIOs are currently in a difficult position. There are great advantages to companies using secure apps accessed on employees’ personal devices, but an alternative to the complex signing-in processes currently in place must be found, while also allaying the security fears.

“The best approach is to turn mobile devices into secure authentication devices, which act as the first line of defense to protect corporate data being accessed on them. The report highlights the need for companies to act quickly and robustly to employ effective BYOD policies while protecting their own data, or risk major security incidents."

 

For more information, please visit www.intercede.com, or follow us at @IntercedeMyID

About Intercede

Intercede is a software company specializing in identity and credential management with a global team of experts located in the US and UK. 

Intercede’s MyID software enables organizations to create and use trusted digital identities for employees, citizens and machines. This allows secure access to services, facilities, information and networks. 

MyID meets the highest government standards yet is simple enough to be deployed onto consumer devices such as smartphones and tablets. Critically, MyID provides an easy, convenient and secure alternative to passwords.

Millions of identities are managed using MyID and Intercede has provided identity verification and management services to global customers for more than 20 years. MyID is a commercial-off-the-shelf software product, designed and developed to be configurable so it can be embedded as the cornerstone of cyber security infrastructure for governments and corporations.

Customers trusting Intercede for secure digital identity include the US and UK governments and some of the world’s largest corporations, telecommunications providers and information technology partners. 

 

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Devastating Cyberattack on Email Provider Destroys 18 Years of Data
Jai Vijayan, Freelance writer,  2/12/2019
Up to 100,000 Reported Affected in Landmark White Data Breach
Kelly Sheridan, Staff Editor, Dark Reading,  2/12/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
5 Emerging Cyber Threats to Watch for in 2019
Online attackers are constantly developing new, innovative ways to break into the enterprise. This Dark Reading Tech Digest gives an in-depth look at five emerging attack trends and exploits your security team should look out for, along with helpful recommendations on how you can prevent your organization from falling victim.
Flash Poll
New Best Practices for Secure App Development
New Best Practices for Secure App Development
The transition from DevOps to SecDevOps is combining with the move toward cloud computing to create new challenges - and new opportunities - for the information security team. Download this report, to learn about the new best practices for secure application development.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-8354
PUBLISHED: 2019-02-15
An issue was discovered in SoX 14.4.2. lsx_make_lpf in effect_i_dsp.c has an integer overflow on the result of multiplication fed into malloc. When the buffer is allocated, it is smaller than expected, leading to a heap-based buffer overflow.
CVE-2019-8355
PUBLISHED: 2019-02-15
An issue was discovered in SoX 14.4.2. In xmalloc.h, there is an integer overflow on the result of multiplication fed into the lsx_valloc macro that wraps malloc. When the buffer is allocated, it is smaller than expected, leading to a heap-based buffer overflow in channels_start in remix.c.
CVE-2019-8356
PUBLISHED: 2019-02-15
An issue was discovered in SoX 14.4.2. One of the arguments to bitrv2 in fft4g.c is not guarded, such that it can lead to write access outside of the statically declared array, aka a stack-based buffer overflow.
CVE-2019-8357
PUBLISHED: 2019-02-15
An issue was discovered in SoX 14.4.2. lsx_make_lpf in effect_i_dsp.c allows a NULL pointer dereference.
CVE-2013-2516
PUBLISHED: 2019-02-15
Vulnerability in FileUtils v0.7, Ruby Gem Fileutils <= v0.7 Command Injection vulnerability in user supplied url variable that is passed to the shell.