[Log In] []

Exploring the science and magic of Identity and Access Management
Sunday, September 24, 2017

Passwords and Buggy Whips, Revisited

Identity, Information Security
Author: Mark Dixon
Tuesday, May 9, 2017
10:02 am

Whip

StrongPassword large

Eight years ago this month, I posted a short article on this blog entitled, Passwords and Buggy Whips.

Quoting Dave Kearns, the self proclaimed Grandfather of Identity Management:

Username/password as sole authentication method needs to go away, and go away now. Especially for the enterprise but, really, for everyone. As more and more of our personal data, private data, and economically valuable data moves out into “the cloud” it becomes absolutely necessary to provide stronger methods of identification. The sooner, the better.

I commented:

Perhaps this won’t get solved until I can hold my finger on a sensor that reads my DNA signature with 100% accuracy and requires that my finger still be alive and attached to my body.  We’ll see …

So here we are.  Eight years have come and gone, and we still use buggy whips (aka passwords) as the primary method of online authentication.

Interesting standards like FIDO have been proposed, but are still not widely used.

I was a beta tester for UnifyID‘s solution, which used my phone and my online behavior as multiple factors.  I really liked their solution until my employer stopped supporting the Google Chrome browser in favor of Firefox. Alas, UnifyID doesn’t support Firefox!

We continue to live in a world that urgently needs to be as rid of passwords as we are of buggy whips, but I don’t see a good solution coming any time soon.  Maybe in another eight years?

 

 

Comments Off on Passwords and Buggy Whips, Revisited . Permalink . Trackback URL
WordPress Tags:
 

Ellen DeGeneres: The Definitive Password Solution

Information Security
Author: Mark Dixon
Monday, April 22, 2013
5:27 pm

A great little video where Ellen DeGeneres shows a product which claims to solve all of our password problems …

Comments Off on Ellen DeGeneres: The Definitive Password Solution . Permalink . Trackback URL
WordPress Tags:
 

Pearls of Password Wisdom

Information Security
Author: Mark Dixon
Tuesday, August 23, 2011
4:51 pm

If you are going to invest in security to keep the bad guys out, please take the sage Pearls Before Swine advice and “Change the Top Secret Security Code” to something a bit less obvious than “Password.”

Comments Off on Pearls of Password Wisdom . Permalink . Trackback URL
 
Copyright © 2005-2016, Mark G. Dixon. All Rights Reserved.
Powered by WordPress.