The risks associated with the use of password-only authentication are not new. In 1995,
the US Computer Emergency Response Team (CERT) reported that approximately 80
percent of the security incidents they received were related to poorly chosen passwords.
More than fifteen years later, two-thirds of organizations are still using just a password to
secure remote access.

With today’s threat landscape and the increased value placed on the information created
and stored, systems that rely on static passwords for security are left vulnerable and at
risk of being breached.