This document provides an overview and agenda for a presentation on passwordless authentication. It discusses the growing threats of ransomware, phishing and hacking. It outlines the top 5 concerns organizations have with passwordless options like ease of deployment and legacy application support. It introduces the Secret Double Octopus authentication platform which provides a full passwordless solution that can integrate with existing identity infrastructure, support legacy applications and offer easy deployment and management in the cloud or on-premise.
5. Ransomware
CISA/FBI/NSAAdvisory (Feb 22)
Cybercriminals increasingly gaining access to networks
via phishing, stolen RDP credentials or brute force, and
exploiting SW vulnerabilities
14 of the 16 US critical infrastructure sectors
# of attacks up 105% in ’21 (SonicWall)
Data leaks due to ransomware (+82%)
in ‘21 (CrowdStrike)
Avg ransom demand +36% to $6.1M
Attacks are up across the board
Phishing
25% of all data breaches involve phishing / 85% have
human element (Verizon ‘21 DBIR)
83% of orgs say they had a successful email-based phish
attack in ‘21 (vs 57% in ‘20)
+18% change in BEC attacks, +9% in bulk phishing
attacks, +13% change in spearphishing
6. MFA use is up, but not universal
Source: Cisco Duo
Use MFA
In 2017
28%
Use MFA
today
78%
Where is MFA used?
7. Passwordless MFA is Gaining Ground
If your organization does not have passwordless authentication, would your organization adopt it in
the near future?
Passwordless for employees and/or partners
What percent of your employees do
you expect to be using passwordless
one year from now?
What percent of your employees
use passwordless today?
11. Achieving the “Holy Grail” of
Passwordless
Maximum security of end users never having to remember a
password
IT takes responsibility of authentication of the hands of the end
user
No password left behind
Coverage for all use cases an end user encounters throughout
their hybrid work day
What do we mean by Full Passwordless?
13. Passwordless is not
a one shot deal
Start with desktop
MFA & Cloud apps
Windows and Macs
Add VPN
Remote users
Add kiosks and
shared desktops
VDI and other EUM
14. Octopus Authentication Platform
Full Passwordless™
OCTOPUS ENTERPRISE
OCTOPUS Lite
Extend your MFA
Authentication to Desktop
OCTOPUS STARTER
Remote Worker Security
(Traditional MFA)
OCTOPUS PRO
Desktop MFA + BYOD
(Traditional MFA)
Next Gen Authentication for Workforces
THE MOST POWERFUL AUTHENTICATION PLATFORM FOR POWERING
PASSWORDLESS JOURNEY
15. Octopus Enterprise
Innovative Flexibility Features
"PASSWORD FREE” MODE
User sets their password once and never has to remember it
User retains control of password
PASSWORDLESS WITH RETRIEVAL
User can get access to their system generated password in a pinch or when they
need it
Stored in the secure enclave and communicated to the mobile device through our
patented Quantum Safe secret sharing communication
PASSWORDLESS WITHOUT RETRIEVAL
User cannot see the system generated password ever
16. But I already have
existing IAM
Infrastructure
IDP/SSO AND POSSIBLY MFA
17. Deep Integration into Existing Hybrid Cloud
Environment
EXISTING IP/SSO PORTAL OR SDOS
Okta, Ping, ForgeRock, ADFS, etc
RADIUS OR SAML VPN SUPPORT
Unique FIDO key support for RADIUS VPNs
BYOA & INTEGRATED OTP SUPPORT
Support for Okta Verify and ForgeRock Authenticator
Support for RSA SecureD and other OT solutions
BROAD USER DIRECTORY SUPPORT
AD, Azure, Okta, ForgeRock, Google, etc.
18. Mac, Win 7 and Win 10 support
Highly reliable offline w/Octopus Authenticator
Complete support for FIDO2 keys, including
NFC and BLE
FileVault support on Mac
Passwordless Privilege User: Linux (ssh) and
Windows Server (RDP)
Desktop MFA:
Deep Support for
Mac & Win
23. Legacy Apps
are the #1 Inhibitor
to Passwordless
Source: Forrester, Q4 21
What is your biggest obstacle achieving passwordless for all
employees?
Source: Ponemon/Double Octopus ‘21 Study, Q3 21
Why would your organization not adopt passwordless
authentication?
24. Legacy Apps - Come in several sizes
Active Directory
join or not?
Beholden to the password in the user
Directory
1
SAML
enabled or not?
Capable of being federated
3
Localized DBMS
Manage their own username and
password in the application itself
2
25.
26. Octopus Quick Actions are a game changer
AVAILABLE ON
WINDOWS & MAC
Native UX feel
USER SELF-SERVICE
PORTALACCESS
Rapid self-service options
INTEGRATED BLE
INTERACTIONS
Injected clipboard actions
27. It has to be easy to
deploy and how will it
lower my TCO for IAM
29. Easy Deployment & User Onboarding
On-Premise Install System prerequisite
On-premise
Installation
service configuration
System ready for
Deployment
Cloud Install Remote AD Sync service configuration
System ready for
Deployment
User Deployment Enrollment Invitation
Enroll on mobile
app, FIDO
user's portal first
strong login
Windows/Mac login
Self Service
Email QR code sent
(Admin or Self-
service)
Mobile recovery Help-desk support
34. Thank You
For customer inquiries:
doubleoctopus.com/contact
doubleoctopus.com/request-a-demo
For channel inquiries or webinar reproduction:
marketing@doubleoctopus.com
Editor's Notes
Thanks for joining us
1st webinar of the year for us
Each speaker introduces themselves
How we structured the presentation
Provide a view of the latest
Top 5
Octopus Cloud – announced in Feb, released in Jan; Amit was Product executive when that was released
Ransomware
CISA/FBI/NSA Advisory (Feb 22)
Cybercriminals increasingly gaining access to networks via phishing, stolen RDP credentials or brute force, and exploiting SW vulnerabilities
14 of the 16 US critical infrastructure sectors
# of attacks up 105% in ’21 (SonicWall)
Data leaks due to ransomware (+82%) in ‘21 (CrowdStrike)
Avg ransom demand +36% to $6.1M
Phishing
25% of all data breaches involve phishing / 85% have human element (Verizon ‘21 DBIR)
83% of orgs say they had a successful email-based phish attack in ‘21 (vs 57% in ‘20)
+18% change in BEC attacks, +9% in bulk phishing attacks, +13% change in spearphishing
78% of users now use MFA, compared to 28% in 2017 (Duo)
2. Robustness examples
- Legacy application support