Security Basics mailing list archives
RE: Security procedure question
From: missy.augustine () gmail com
Date: 3 Oct 2006 16:17:04 -0000
I think the main issue with passwords is that many companies require you to have multiple complicated (one number, one special char, at least 8 characters) passwords and then need to be changed every 60-90 days, and can't be too close to older version of the password. Humans are inherently flawed, we have a much easier time remembering patterns, random letters numbers and characters do not come easy, and coupled with the fact we need to change them we are overwheled. Credit cards are 'relatively' easy to change, in business trying to get your password reset seems like pulling teeth. I really don't think there is a simple solution to the password problem, I think companies which utilizes sign in cards (with encryption of cource) with a pin #, then that card + pin can be used to open up other portals within the intranet are a step in the right direction. --------------------------------------------------------------------------- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life. http://www.msia.norwich.edu/secfocus ---------------------------------------------------------------------------
Current thread:
- RE: Security procedure question Pranav Lal (Oct 02)
- RE: Security procedure question Cort Boecking (Oct 03)
- Re: Security procedure question Mario A. Spinthiras (Oct 03)
- RE: Security procedure question Nick Duda (Oct 03)
- Re: Security procedure question dubz (Oct 03)
- <Possible follow-ups>
- RE: Security procedure question Jordan Jason (Oct 03)
- RE: Security procedure question Maqhinga Sikhosana (Oct 03)
- RE: Security procedure question missy . augustine (Oct 03)
- Re: Security procedure question Nic Stevens (Oct 03)
- Re: Security procedure question Mario A. Spinthiras (Oct 04)
- RE: Security procedure question Craig Wright (Oct 05)