Although the giants of the technology sector have been working for some time to eliminate passwords as a method of identification due to their numerous risks and related problems, the truth is that these they remain the cornerstone of authentication processes On the Internet. And they will for the foreseeable future, says the FIDO Alliance after surveying 10,000 consumers in the UK, France, Germany, the US, Australia, Singapore, Japan, South Korea, India and China.

According to the study data, more than half (51%) of users continue to log in with their passwords to services such as online banking accounts, while 28% already use the unique access code of those who are sent a mobile device. Only 14% use a password manager and still do a lower percentage of users using more advanced methodssuch as using temporary code generation apps (such as Google or Microsoft Authenticator), security keys such as YubiKey and Google Titan, etc.

According to the data, the use of passwords alone has fallen in recent years “by 5% for financial services, 7% for work accounts, 8% for social networks and roaming accounts and 9% for Smart Homes in favor of more efficient and secure methodologies. Despite this, passwords continue to be the star method for all authentication processes with online services, as well as the cause of many security problems derived from them.

“For example, 70% of people had to reset their password at least once in a given month. Service providers and retailers were also affected, with 59% of people giving up accessing online services that month and 43% abandoning purchases because they couldn’t remember their password. However, the fundamental problem is that an affordable and universal solution to the traditional use of passwords has not yet been implemented.

In other words, the methods that are usually recommended as complementary to the use of passwords for two-factor authentication are still based on the same methodology, unless an additional risk factor is added, which is not always taken into account as it is. what happens when you have access to authenticators on which almost all of these recommendations are based. Passwords remain the foundation of any identification process, and until they are replaced by something equally effective, passwords will remain and continue to be the dominant method of authentication.

So no, fingerprint or facial identification is not ready to take over. instead of passwords, while still depending a means of support that can be lost as easily as a mobile device (same for advanced methods such as physical keys). So don’t get distracted: use best practices for password management, which unapologetically includes using a password manager. And then yes, everything else.