Jim Routh

Former Chief Security Officer

Aetna


The Obsolescence of Passwords

Posted on: 17 May 2019

Passwords as a means of authentication have been around for a long time. Their existence is based on the fundamental premise that it is only the consumer or user who has the secret. And in these past 60 years, passwords have served us well. But the premise is becoming less and less true. These days,…

Unconventional Controls in a Shifting Threat Landscape

Posted on: 07 Aug 2018

In the information security space, conventional wisdom says there is a simple formula for putting controls in place to protect systems, applications, and the data that courses through them. According to the formula, you should select a risk framework and a set of authoritative sources, like NIST 800-53, ISO 27001, or the Common Security Framework…

Model-Driven Security is the Future of Identity and Access Management

Posted on: 15 Jan 2018

The most common identity and access management (IAM) authentication control in use today is a user ID and password, and there is growing awareness that passwords are incrementally becoming obsolete as an authentication control. Three billion credentials were harvested in North America in 2016 alone according to Shape Security. You and I know there’s only…