One Article Review
| Source |  Schneier on Security |
|---|---|
| Identifiant | 8611672 |
| Date de publication | 2024-11-15 12:05:02 (vue: 2024-11-15 12:07:48) |
| Titre | Good Essay on the History of Bad Password Policies |
| Texte | Stuart Schechter makes some good points on the history of bad password policies:
Morris and Thompson’s work brought much-needed data to highlight a problem that lots of people suspected was bad, but that had not been studied scientifically. Their work was a big step forward, if not for two mistakes that would impede future progress in improving passwords for decades.
First, was Morris and Thompson’s confidence that their solution, a password policy, would fix the underlying problem of weak passwords. They incorrectly assumed that if they prevented the specific categories of weakness that they had noted, that the result would be something strong. After implementing a requirement that password have multiple characters sets or more total characters, they wrote:...
Stuart Schechter makes some good points on the history of bad password policies: Morris and Thompson’s work brought much-needed data to highlight a problem that lots of people suspected was bad, but that had not been studied scientifically. Their work was a big step forward, if not for two mistakes that would impede future progress in improving passwords for decades. First, was Morris and Thompson’s confidence that their solution, a password policy, would fix the underlying problem of weak passwords. They incorrectly assumed that if they prevented the specific categories of weakness that they had noted, that the result would be something strong. After implementing a requirement that password have multiple characters sets or more total characters, they wrote:... |
| Notes | ★★★ |
| Envoyé | Oui |
| Condensat | after assumed bad been big brought but categories characters confidence data decades essay first fix forward future good had have highlight history impede implementing improving incorrectly lots makes mistakes more morris much multiple needed not noted password passwords people points policies policies: policy prevented problem progress requirement result schechter scientifically sets solution some something specific step strong stuart studied suspected thompson’s total two underlying weak weakness work would wrote: |
| Tags | |
| Stories | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.