“The reason we keep having password breaches is not because we lack the technology to solve the problem. The technology to permanently end password breaches has been commercially available for years,” said Steve Kirsch, founder and CEO of oneID. “No, the real reason we keep having password breaches will surprise you. Websites believe that the tools and technology they have in place are secure enough already. They do care about security, but simply believe their current practices are meeting the needs out there. Or they simply do not care.  I disagree – as proven by Heartbleed.”

“Some might say Heartbleed was simply a bug in OpenSSL that some engineers found and it has no connection whatsoever to identity technology. I don’t believe this to be true. I believe it has a significant connection.”

“The real reason we keep having password breaches is because Internet companies don’t care enough about consumer’s security. They continue to use old practices that are continually being breached.”

“I remain optimistic that one day large sites will deploy technology options to consumers to at least give them options around secure authentication.”