Yubico Study Quantifies ROI of Passkey Adoption, Underscores MFA Obsolescence
Event summary
- A Forrester Consulting study found Yubico YubiKey deployments yielded a 265% ROI and $5.3 million NPV over three years for a composite organization of 5,000 employees.
- The study attributes a 99.99% reduction in risk exposure to addressable breach costs by eliminating phishing and credential theft risks.
- Interviewed organizations reported enhanced end-user experience (80% faster authentication) and operational efficiency (savings in security/IAM labor, help desk costs, and legacy MFA retirement).
- A technology firm stated their intention to move to 100% phishing-resistant and passwordless authentication, citing YubiKeys as the enabling solution.
The big picture
The Forrester study validates a growing trend: traditional MFA is increasingly inadequate against sophisticated cyberattacks leveraging AI and social engineering. Yubico's findings highlight the economic and security benefits of a shift towards phishing-resistant authentication, positioning passkeys as a critical component of modern cyber resilience strategies. This shift could represent a significant market opportunity for Yubico, potentially displacing legacy MFA solutions across a broad range of enterprise clients.
What we're watching
- Adoption Rate
- The pace at which enterprises, particularly those with legacy MFA infrastructure, adopt phishing-resistant hardware authentication will determine Yubico's growth trajectory and potential for market dominance.
- Competitive Response
- How other authentication providers will react to the quantifiable ROI and security benefits demonstrated by Yubico's study, and whether they will accelerate their own passkey or hardware-based solutions.
- Regulatory Impact
- Increased regulatory scrutiny of cybersecurity practices and data breach reporting requirements may incentivize broader adoption of YubiKey-like solutions across regulated industries.
Related topics