As part of our goal to understand the real world drivers for authentication, Nok Nok Labs has been working with the Ponemon Institute on new research that looks at consumer perceptions around how organizations secure their access, and what consumers would consider to be the ideal steps and technologies used to ensure that their personal information is protected.
This report, titled ‘Moving Beyond Passwords: Consumer Attitudes on Online Authentication’ is the first research to study authentication from the consumer’s perspective. While there have been a number of reports that consider the potential impact to organizations of poor authentication practices such as data breach or identity theft, this innovative research seeks to understand how authentication practices drive consumer frustration.
The study includes results from more than 1,900 consumers between the ages of 18 and 65-years-old in the United States, United Kingdom and Germany. Key findings include:
- Failed authentication thwarts online business. Approximately 50 percent of respondents were “very frequently” or “frequently” unable to perform an online transaction such as buying a product or obtaining a service because of an authentication failure on the website.
- Most authentication failures happen because of the use of usernames and passwords. The majority of authentication failures happen because of forgotten passwords, usernames or a response to a knowledge-based question (such as a mother’s maiden name). Less than 50 percent of respondents said authentication failures occur because of glitches or inaccuracies within website systems or identity verification procedures.
- Many consumers favor a single identity credential for a variety of authentication purposes. The majority of consumers (60 percent) would use a multi-purpose identity credential to verify who they are before providing secure access to data, systems and physical locations. The benefits of a multi-purpose identity credential are convenience (US & UK consumers) and security (German consumers).
- Most respondents are comfortable with using biometrics. The majority of respondents believe it is acceptable for a trusted organization such as their bank, credit card company, health care provider, telecom, email provider or governmental organization to use factors such as voice or fingerprints to verify their identity.
- Financial institutions provide the best online validation. According to respondents, the top five organizations that have the most secure authentication (in order of best to worst): banking institutions, credit card and Internet payment providers, social media, retailers, and Internet service providers.
For further information on the research, please visit the following resources:
To see the Executive Summary of the Report, please visit:
You can find the full report at:
The Ponemon Institute and Nok Nok Labs will be hosting an informational webinar to dive into the findings in more detail on May 1st 2013. Details are here:
Time: 08:00 PST / 11:00 EST