After studying 19 billion passwords, one big problem: Over 90% are terrible

I remember news stories like this from the early 2000's. Not word-for-word the same, but close. What the stories never report is that no matter how complex your password - or key - and no matter how diligent you are in your security habits, there is always a backdoor in the O/S, the application, the servers your data, passwords, credit card numbers, keys are stored on.

Anyone remember encrypted USB keys? Now the push is to use passkeys. Which presents multiple points of vulnerability, if not outright failure. And of course the answer is "let us store your keys on our servers; they are guaranteed to be secure. Disregard that we hand all our data to numerous federal, regional, state, and local agencies at the drop of the badge".

 
Dave92F1b said:
Upvoted. The point of that cartoon is often misunderstood. If the words are randomly chosen the method is strong against dictionary attacks. But random is not something human brains do well - you have to use a random password generator.
Click to expand...

There have been repeated studies and reports that show random password generators are not actually random.
 
You must log in or register to reply here.

Similar threads

Shawn Knight
Smartphone market slows worldwide, Apple and Samsung still lead the pack
Replies
7
Views
65
scoffer
S
Daniel Sims
Boox debuts Mira Pro Color 25" e-ink monitor for work and coding
Replies
2
Views
54
VitalyT
VitalyT
A
Wikipedia turns to generative AI to support its volunteer community
Replies
0
Views
29
Alfonso Maruccia
A

Latest posts

Back