Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Security procedure question

From: "Saqib Ali" <docbook.xml () gmail com>
Date: Tue, 26 Sep 2006 15:15:31 -0700
You might also check out our paper for '02 - "Strong Passwords are an
Oxymoron"


I don't buy this. Try using "cryptographically strong but
Pronounceable password", and provide a SSO solution to the user. More
details at:
http://www.xml-dev.com/blog/index.php?action=viewtopic&id=122

Single Sign On is a must if you want to enforce strong password policy....

--
Saqib Ali, CISSP, ISSAP
Support http://www.capital-punishment.net
-----------
"I fear, if I rebel against my Lord, the retribution of an Awful Day
(The Day of Resurrection)" Al-Quran 6:15
-----------

---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life. 

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: