Password fatigue is the term given to the feeling of exhaustion or resistance to creating and using complex passwords. This behavior often results in technology users opting to reduce the complexity in the passwords they set. This feeling is said to arise as a result of needing to remember an excessive number of passwords.
What causes password fatigue?
An average adult may own up to 90 different online accounts, according to a 2015 survey by Dashlane of 20,000 users. It can be a challenge to set and remember different passwords for every account. To make matters more difficult, there can be specific complexity requirements for passwords: a certain number of characters, lowercase/uppercase or special characters, and other requirements. Furthermore, the widespread adoption of SaaS has increased the number of accounts an average user has to sign in to.
In another survey, LastPass reported that the average employee has to keep track of 191 passwords. The struggle to manage all these passwords is substantial. When a user suffers from password fatigue, it can lead to a password’s over-simplification or reuse. Fear of forgetting these passphrases can also contribute to password fatigue. However, most users underestimate the likelihood of data breaches due to insecure credentials.
How to prevent password fatigue
Password fatigue is a serious security risk that can lead to personal or workspace data breaches, or other types of intrusion. Users experiencing password fatigue are also susceptible to phishing, in which a victim (the user) is contacted by an intruder through a fake identity. From a business or employer point of view, authentication is vital for the security of their system so some type of login credentials remain necessary.
A business can minimize password fatigue for its employees by adopting password manager or sign-on solutions.
A password manager stores the credentials for the user so they don’t have to remember the credentials. The password manager is accessed through one master password, which then provides access to the user to all the saved credentials in the password manager.
Read more on top password manager solutions in eSecurity Planet’s 8 Best Password Manager Solutions for 2021.
In a single sign-on solution, a user can use the same credentials to log into several related or independent applications. Single sign-on users are relieved of the need to remember dozens of passwords but the business can also benefit from a reduced likelihood of password fatigue in their organization. Single sign-on solutions can also boost employee productivity by minimizing the time spent in entering and resetting passwords.
Regardless of the method or solution used to create and store security credentials, businesses should also educate their employees on the best practices for strong passwords.
What software can help overcome password fatigue?
While browsers and operating systems offer built-in secure storage for log-ins, businesses often opt for application or cloud-based managers or single sign-on solutions to help mitigate the risk of password fatigue within their organization. Some of the top-rated password managers include LastPass, Dashlane, and Keeper. For single sign-on, top-rated solutions include Duo Single Sign-On, Ping Identity, and Microsoft Azure Active Directory.