Work Locked by Security
Due to their nature, securities firms operate a wide variety of business systems simultaneously. Every morning, employees had to log in to multiple systems, including Windows PCs, NAC (Network Access Control), email, groupware, and business portals. The problem was that each system had a different login method. Some required complex password rules, while others enforced periodic password changes. As a result, employees wasted time complying with security procedures, and an environment focused solely on security ended up suppressing productivity.
Finding a Fundamental Solution
To address these structural issues, Yuanta Securities explored transitioning to a passwordless environment. The technology they ultimately chose was the internationally standardized passwordless solution, AutoPassword. AutoPassword stood out during the comparison with various alternatives for several reasons:
- No Additional Hardware Required: Unlike conventional biometric authentication technologies that require sensors on every PC, AutoPassword leverages the biometric sensors already built into employees’ smartphones.
- Compliance with International Standards: By adopting the mutual authentication method based on the ITU-T X.1280 standard, AutoPassword ensured both security and scalability.
- Wide Applicability: From PC logon to web applications and network authentication, it could be consistently applied across all systems operated by banks and securities firms.
Rebuilt Authentication System with AutoPassword
Yuanta Securities went beyond simply removing passwords and restructured its entire authentication system around AutoPassword.
- Integrated Web Applications: By leveraging SAML and OAuth2 protocols provided by AutoPassword Access Manager, various existing web-based business applications were unified into a single SSO environment. Employees now only need to log in to the portal once, and email, groupware, and other business systems are automatically connected.
- Extended to Windows Applications: The passwordless environment was extended beyond the web to desktop applications via WinSSO. When employees log into Windows OS using AutoPassword, all subsequent PC-based business applications log in automatically. Access to key applications is optimized to be available within one minute after Windows logon, ensuring both security and convenience.
Impact: Balancing Security and Productivity
The effects Yuanta Securities experienced after implementing AutoPassword were clear:
Increased Employee Productivity: Employees no longer waste time on login procedures and can focus on their core tasks.
- Enhanced Security: By eliminating passwords at the source, phishing, pharming, and man-in-the-middle attacks are blocked.
- Cost Savings: Utilizing employees’ smartphones without additional hardware enabled an economical and efficient transition.
- Flexible Scalability: Adopting an international standard-based solution allows for easier integration with future systems.
Conclusion
The work environment for employees who once spent their days “locked by security” has now transformed. Instead of dealing with complex passwords, a single smartphone approval completes the authentication process. This securities firm’s case demonstrates that security and convenience are not opposing values—they can be achieved simultaneously with the right technology. Transitioning to passwordless authentication with AutoPassword is not just a login improvement; it is a step toward digital transformation across the entire enterprise.