This TechnologyReview.com article argues that stronger password protection does nothing to enhance security.
"the logical conclusion of most "strong password” policies—don’t use names of family members or pets; don’t use birthdays or calendar dates; use randomized sequences of special characters; don’t use your password for more than one or two sites; change your passwords several times a year; don’t put your password(s) in your PDA or cell phone—is that passwords should be impossible to remember and should never be written down."
Good point, but what is the alternative? The article mentions ATM passwords are still only 4 digits but fails to mention that they require that physical piece of plastic which waters down his argument.
Friday, February 04, 2005
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment