In a recent research paper, Microsoft principal researcher Cormac Herley asserted that security measures that are being recommended are a waste of time. He argues that security protocols that attempt to protect an individual or organization from the consequences of a security breach often exact a much steeper price—in the form of user effort and time expended. While everyone knows that "123456" is not a good choice for a password, is it … [Read more...]
The Problem with Passwords
Last December, someone hacked into the Web site RockYou.com, and exposed a list of usernames and passwords on the Web, in plain text. A month later, security analysis firm Imperva analyzed the most common passwords. The results are eye-opening and should serve as a reminder to you and your staff about the importance of creating and using good passwords. By far, the most popular password on RockYou.com was "123456," which satisfies the minimum … [Read more...]
Consortium Works on Password Solution
Google, PayPal, Equifax, VeriSign, Verizon, CA, and Booz Allen Hamilton have formed a nonprofit company to oversee the development and exchange of online identity credentials on Web sites as a way to help with the user ID and password problems we all face. The goal of the Open Identity Exchange (OIX) is to create a “trust framework” and certification program that lets organizations and individuals exchange digital credentials and know what … [Read more...]
How Secure is Your Password?
People tend to choose passwords that are easy to remember. That can be very dangerous because it makes it easier for a hacker to break the password. The following passwords are most common. If you use one of these, change it immediately: Password, 123456, qwerty, abc123, letmein, monkey, myspace1, password1, link182, (your first name) … [Read more...]
