In Part 1 and Part 2 of this little series we discussed why passwords are simultaneously both critical and pointless. “Schrodinger’s Password,” if you will. Which is all well and good but, now what do we do? Whatever we come up with the solution is likely to be a password plus [something else] because, realistically,… Continue reading What Is It With You And Passwords Anyway?
Following on from Part One Predicting the future is Hard. Bill Gates once apocryphally stated that “640k should be enough for everyone” (spoiler: he almost certainly never said that). One thing he definitely did say however, at an RSA Security conference in San Francisco way back in 2004, was that passwords “don’t meet the challenge… Continue reading Why Your Password Isn’t Important
Recently, a colleague employed by a software company asked me a question. A client of theirs has requested that they amend their software to allow them to set all their users with a single identical password that the users can’t change. He asked me, “isn’t this a bad idea, and is it even legal?” Let’s… Continue reading Why Your Password Is Important.