The Secure Sign-in Trends Report 2023

We analyzed billions of monthly authentications from countries around the world, and across organizations of all sizes, to learn how users authenticate today.*

Download the report

Our analysis shows that organizations are making headway, and sign-ins are steadily getting more secure. But there’s still work to be done.

Here’s a look at what we learned …

Authenticator performance and adoption Graph

Security vs. user experience is a false choice

It’s widely assumed that more secure authentication comes at a cost: the user experience. Our analysis shows that’s simply not true. Okta FastPass and FIDO2 WebAuthn earn top marks in security and usability, proving that you really can have it all.

.css-1izpi9k.gbi--1555372205-7RMMSiiSGn9JEWfTah5pyU:before { opacity: 1; background-image: url('/_static/web/static/a72d01736702458ed51a76c2cf2d4c2b/7d307/DavidBradbury.png'); }

.css-ekmg7i.gbi--1555372205-3kvsjPbWNyxsKHtceiucSD:before { opacity: 1; background-image: url('/_static/web/static/a72d01736702458ed51a76c2cf2d4c2b/7d307/DavidBradbury.png'); }

“At Okta, we've undertaken our own journey to passwordless, phishing-resistant authentication. The benefits have been borne out in multiple failed attacks that have been directed at our own organization.”

_{David Bradbury
Chief Security Officer

Okta}

.css-1u8qly9.gbi-1387439651-h5A2VAbXuP5XLQZmCrEtKe:before { opacity: 1; background-image: url('/_static/web/static/0eb2601f6c27b98b662e8eb3ecc8d606/87451/Rectangle2012843.png'); }

MFA adoption continues to climb

As of January 2023, nearly two-thirds of users authenticated with MFA. That number is even higher for administrators.

64%

of users authenticate with MFA

90%

of administrators use MFA

MFA authentication has steadily gained traction, largely due to its critical role in mitigating cybersecurity risks. External forces, such as the COVID-19 pandemic and highly publicized cyberattacks, also helped to drive adoption.

Phishing-resistant authenticators show promising growth

While less than 4% of workforce users have adopted phishing-resistant authenticators, such as Okta FastPass and FIDO2 WebAuthn, the tide is turning: Over half of the overall growth in MFA adoption can be attributed to phishing-resistant options.

MFA adoption rates vary widely by industry

Highly regulated industries, including government, healthcare, financial services, and energy, lag behind other sectors for MFA adoption, while tech leads the way at 87%.

.css-1izpi9k.gbi-813594497-vot54PD1ywBcK9f58r7dJD:before { opacity: 1; background-image: url('/_static/web/static/429efb27c1c6aa2ed3a61ebd85c4d2f3/4d244/MagazineMockup_Desk_v1201%2520%25283%2529.png'); }

.css-ekmg7i.gbi-813594497-cShe27qEi95D95TcAQbKrs:before { opacity: 1; background-image: url('/_static/web/static/429efb27c1c6aa2ed3a61ebd85c4d2f3/4d244/MagazineMockup_Desk_v1201%2520%25283%2529.png'); }

How Gitlab boosted WebAuthn adoption to 93% in 48 hours

Tune in to our webinar for more on Gitlab’s journey to phishing resistance.

Watch on demand

Eager for more research and insights

Visit our new thought leadership content hub.

Dive in here

^{*This report focuses exclusively on Okta Workforce Identity Cloud data and workforce use cases. It does not include Okta Customer Identity Cloud data.}