Yesterday there was an interesting email I received from Techrepublic concerning the top obstacles to user adoption of strong authentication. In the email was an overview of a related webcast stating that in a recent survey, 70 percent of IT pros acknowledged that user names and passwords do not provide an adequate level of security. And it seems the primary reason that a 2nd factor of authentication isn't used by the majority of logins is user resistance. Users hate security tokens and certificates.
Salestrakr has made it super easy. A user can turn on 2 factor authentication and choose email, SMS or both as the method to receive their out of band password. I've been using it for weeks now and the SMS receipt is immediate (and really simple.) I wish we had the PR machine to be on this webcast. Perhaps this isn't a user problem but a software vendor problem.
