Microsoft is not the only company looking to leave passwords in 2019. Google is testing alternatives to passwords along with Cisco.
Microsoft's Chief Security Officer Bret Arsenault called this a reflection on the "password less future" the company has been talking about for years. To eliminate the need for passwords, Microsoft has developed products to remove the need to memorize a string of confusing terms and phrases.
Rather, the technology company has employees choose between different options, including Windows Hello and the Authenticator app, which provides alternatives for logging into a computer network, such as facial recognition and fingerprints, CNBC reports. Windows Hello addresses the following problems with passwords:
Strong passwords can be difficult to remember, and users often reuse passwords on multiple sites.
Server breaches can expose symmetric network credentials (passwords).
Passwords are subject to replay attacks.
Users can inadvertently expose their passwords due to phishing attacks.
In a survey some time ago the amount of time revealed primary care doctors spending 6 hours daily on EHR data entry. The study determined providers spend over half the workday on EHR data entry.
The advantage of SSO (single sign-on) is easily calculated.
Single sign-on (SSO) is a technology intended to facilitate easier and faster use of EHRs and other clinical information technology applications.
Single sign-on utilizes authentication to increase information security, but quantitative evaluation of its financial value to health care institutions has not been reported.
This study of SSO implementation in 6 general hospitals found meaningful time savings of 1461.2 hours per facility per annum for physicians, nurses and ancillary end users of clinical information technology.
These time savings translate into a substantial recurrent financial return from SSO implementation, estimated at $92,146 per facility per year, and $1,658,745 per annum in our first phase implementation of 18 hospitals.
Migration to a thin client as part of SSO implementation also yielded a substantial financial return on investment.
Implementation of computer workstation single sign-on (SSO) in 2015. SSO technology utilizes a badge reader placed at each workstation where clinicians swipe or “tap” their identification badges.
There are a variety of other iterations: The CAC (computer access card) may also contain other identifying features, such as photo and/or fingerprint. The SSO card can be multifunction with designated zone controls, such as ED, O.R. I.C.U. The card can also be used as a time stamp identifying time logged in or location control.
Objective
To assess the impact of SSO implementation in reducing clinician time logging in to various clinical software programs, and in financial savings from migrating to a thin client that enabled replacement of traditional hard drive computer workstations.
Methods
Following the implementation of SSO, a total of 65,202 logins were sampled systematically during a 7 day period among 2256 active clinical end users for time saved in 6 facilities when compared to pre-implementation. Dollar values were assigned to the time saved by 3 groups of clinical end users: physicians, nurses and ancillary service providers.
Results
The reduction of total clinician log in time over the 7 day period showed a net gain of 168.3 h per week of clinician time – 28.1 h (2.3 shifts) per facility per week. Annualized, 1461.2 h of mixed physician and nursing time is liberated per facility per annum (121.8 shifts of 12 h per year). The annual dollar cost savings of this reduction of time expended logging in is $92,146 per hospital per annum and $1,658,745 per annum in the first phase implementation of 18 hospitals. Computer hardware equipment savings due to desktop virtualization increases annual savings to $2,333,745. Qualitative value contributions to clinician satisfaction, reduction in staff turnover, facilitation of adoption of EHR applications, and other benefits of SSO are discussed.
Conclusions
The studies document series cost impact of wasted time for logins. It eliminates the overuse of the same password for different programs.
Military and VA hospitals and the DOD AMEDD system have used this method for many years. It would be an easy and cost-effective solution to eliminate wasted times. The SSO can also require an additional step for 2 step authentication and/or an additional password for added security
Why Microsoft is saying goodbye to passwords:
