The password problem
The traditional security measure of a login name plus a password is very flawed as we are constantly reminded by incidents of stolen accounts. A big reason for the failure of this security method is human nature. People can’t remember or won’t use long, complicated passwords. At Ars Technica, John Timmer looks at the problem:
A lot of the effort involved in establishing a secure computing environment focuses on technological solutions, from providing warnings about phishing attacks to blocking the propagation of botnets. But, as previous research has shown, security involves a significant human component. Nowhere is that more true than the item at the heart of basic security: the humble password. Here, our best practices—something that’s not in the dictionary or written down, differs for every account, etc.—ignores basic research, which shows that humans have a limited capacity to associate random text with, well, just about anything. A new survey of institutional IT users provides a glimpse into just how bad the password situation is, with less than five percent of users managing to use best practices.
One possible solution may be to use biometric methods like finger prints, retinal patterns, etc. In the meantime, use strong passwords and get a password manager.
Did you enjoy this post? Why not leave a comment below and continue the conversation, or subscribe to my feed and get articles like this delivered automatically to your feed reader.
Comments
No comments yet.
Sorry, the comment form is closed at this time.