Remembering or storing a strong, secure password has taxed security experts. In the past, the best password practice...
By submitting your email address, you agree to receive emails regarding relevant topic offers from TechTarget and its partners. You can withdraw your consent at any time. Contact TechTarget at 275 Grove Street, Newton, MA.
was to pick a difficult-to-guess password, memorize it and never write it down. However, this is no longer practical as users have so many passwords to try to remember. Many users are now choosing easy-to-remember passwords that are more than likely weak and insecure. This represents a far more serious problem than a complex password that is written down and kept in a safe place. Recently, both Microsoft and security expert Bruce Schneier decided that it is better for users to choose a password too complicated to remember and write it down. Unfortunately, there is no perfect solution to this problem, but if you are not happy with this one, consider using a password database. You could use Schneier's free Password Safe utility, a smart card or token, which would give you a two-factor authentication solution when combined with a PIN -- another password to remember!
Dig Deeper on Enterprise User Provisioning Tools
Related Q&A from Michael Cobb
Open source NoSQL MongoDB database faced 30,000 insecure instances. Expert Michael Cobb explains the misconfiguration that led to this, and how to ...continue reading
A new Veracode report offers details on common mobile application security risks. Expert Michael Cobb explains these flaws, and what developers can ...continue reading
Juniper firewall products were found to have two backdoor vulnerabilities. Expert Michael Cobb explains how a cryptographic algorithm and hardcoded ...continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.