How To Make Passwords Obsolete - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

IoT
IoT
Comments
How To Make Passwords Obsolete
Newest First  |  Oldest First  |  Threaded View
Page 1 / 3   >   >>
Shantaram
50%
50%
Shantaram,
User Rank: Moderator
4/22/2017 | 4:25:05 AM
Re: 192.168.1.1
Comments to the article are no less interesting than the article, thanks for helping to understand this topic
nomii
50%
50%
nomii,
User Rank: Ninja
4/21/2015 | 3:41:34 AM
Re: making passwords obsolete
And the two step process will become even more annoying if so much complexity is added in the first password that it is already hard to remember. On one side gadgets are placed to avoid memorizing even a phone number but on the other side they are forced to make much effort in order to memorize huge number of complex passwords at a time.
vnewman2
50%
50%
vnewman2,
User Rank: Ninja
4/14/2015 | 12:30:23 PM
Re: making passwords obsolete
@nomii - yes you are correct.  It's a hassle for all parties involved - people hate two-steps processes that used to requre only one. 
nomii
50%
50%
nomii,
User Rank: Ninja
4/14/2015 | 3:46:07 AM
Re: making passwords obsolete
@vnewman2: I think it is proven than dual factor authentication is difficult to crack but some companies are still avoiding it either because of extra efforts involved or they have customer base around the globe and it would cost them much higher to send a text every time for authentication. I think a pin code which would last for a month can also be an applicable solution.
nomii
50%
50%
nomii,
User Rank: Ninja
4/14/2015 | 3:33:42 AM
Re: making passwords obsolete
@jaggibons: I agree with you remembering the complex passwords created by the tool would be even difficult. My problem is not with remembering one time complex password even for multiple sites but the problem is when you have to change it every month. I think it would be better if the complexity of the password lower down and replace it with dual factor.
freespiritny25
50%
50%
freespiritny25,
User Rank: Ninja
4/12/2015 | 8:33:56 AM
Re: How To Make Passwords Obsolete
I utilize social log in when it is available. It is a temporary solutuion to memorizing multiple different passwords. 
vnewman2
50%
50%
vnewman2,
User Rank: Ninja
4/9/2015 | 2:38:25 PM
Re: making passwords obsolete
It was so nice when a password was in fact and actual word and not a motley mess of characters, numbers and symbols that no one can remember because it varies site to site and there's no standard naming convention. I am a fan of dual authentication - password + authentication code sent to a device or email you own. It hasn't let me down yet. No one has broken the accounts of mine that have that applied.
jagibbons
50%
50%
jagibbons,
User Rank: Ninja
4/8/2015 | 1:41:37 PM
Re: making passwords obsolete
Quite right, I misread the earlier comment. I agree that if we need a tool to help us manage, the thing we're trying to manage in the first place is broken.
Andrew Froehlich
50%
50%
Andrew Froehlich,
User Rank: Moderator
4/8/2015 | 1:36:46 PM
Re: making passwords obsolete
@jagibbons -- I didn't say it was for the lazy. But the fact that you need a seperate tool in order to properly maintain all of your authentication needs tells me that there is something interently wrong with the authentication mechanism in the first place.
jagibbons
50%
50%
jagibbons,
User Rank: Ninja
4/8/2015 | 1:33:55 PM
Re: making passwords obsolete
I don't know that I'd agree with a password manager, like Roboform or many others, being a crutch for the lazy. I use one such tool, and it has more than 500 unique and complex passwords stored in it. I use them routinely for work and personal activity online. I couldn't possibly create and memorize that many complex passwords.

The reason 2-factor seems to be better than just a password is that, when implemented properly, requires a theif to have two pieces of information rather than just one. The odds of guessing my complex password while also having a copy of my fingerprint are pretty slim, at least I would hope.

No security access mechanism is perfect. The best solutions utilize a number of components to properly identify the risk based on the user and then require the right number of authentications to make it statistically improbable that the user isn't who he/she says they are.
Page 1 / 3   >   >>


The State of Cloud Computing - Fall 2020
The State of Cloud Computing - Fall 2020
Download this report to compare how cloud usage and spending patterns have changed in 2020, and how respondents think they'll evolve over the next two years.
Commentary
CIOs Face Decisions on Remote Work for Post-Pandemic Future
Joao-Pierre S. Ruth, Senior Writer,  2/19/2021
Slideshows
11 Ways DevOps Is Evolving
Lisa Morgan, Freelance Writer,  2/18/2021
News
CRM Trends 2021: How the Pandemic Altered Customer Behavior Forever
Jessica Davis, Senior Editor, Enterprise Apps,  2/18/2021
Register for InformationWeek Newsletters
Video
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you.
White Papers
Slideshows
Twitter Feed
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Sponsored Video
Flash Poll