password hardening
Home > Security Definitions - Password hardening
SearchSecurity.com Definitions (Powered by WhatIs.com)
EMAIL THIS
LOOK UP TECH TERMS Powered by: WhatIs.com
Search listings for thousands of IT terms:
Browse tech terms alphabetically:
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z #

password hardening


Word of the Day
Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google


DEFINITION - Password hardening is any one of a variety of measures taken to make it more difficult for an intruder to circumvent the authentication process. Password hardening may take the form of multifactor authentication, by adding some component to the username/password combination, or may be policy-based.

Here are a few variations on password hardening:

  • Biopasswords utilizes Flash plug-ins to measure keystroke dynamics, such as a user's typing speed and how long the keys are held down. This procedure generates a distinctive biometric value that is very difficult to counterfeit.
  • A company called Bharosa (since acquired by Oracle) developed a method of password hardening that presents the user with a new image of a scrambled keyboard for each login. The user clicks password characters with the mouse. This method protects users against malicious keyloggers.
  • Policy-based password hardening typically involves practices such as enforcing strong passwords and requiring users to change their passwords frequently.

Password hardening is often said to be one of the most neglected -- and most important -- components of securing the enterprise.

LAST UPDATED: 25 Jun 2008

Read more about password hardening:
- Here are 25 password hardening tips in 25 minutes.
- SpringerLink.com explains password hardening through keystroke dynamics.


Do you have something to add to this definition? Let us know.
Send your comments to techterms@whatis.com


BROWSE BY TAG
Two-Factor and Multifactor Authentication Strategies,   Enterprise Identity and Access Management,   User Authentication Services,   Biometric Technology,   VIEW ALL TAGS

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google


RELATED CONTENT
PCI compliance requirement 7: Restrict access
Diana Kelley and Ed Moyle of Security Curve review PCI compliance requirement 7: "Restrict access to cardholder data."
PCI compliance requirement 9: Physical access
For Requirement 9 of the PCI Data Security Standard, basic physical controls are required for the facilities that process cardholder data. In this...
Best practices: How to implement and maintain enterprise user roles
Effective enterprise role management is essential for properly managing user access rights and enforcing access policies, but the implementation...

RELATED GLOSSARY TERMS
Terms from Whatis.com − the technology online dictionary
AAA server  (SearchSecurity.com)
authentication  (SearchSecurity.com)




Get More password hardening Answers
Find Targeted password hardening Answers for Channel Professionals
TechTarget Security Media
Information Security View this month\\'s issue and subscribe today.
Information Security Decisions Apply online for free conference admission.
SearchSecurity.com
HomeNewsMagazineMultimediaWhite PapersLearningAdviceTopicsEventsAbout Us
SEARCH :     Site Index Powered by: Search Powered by Google

About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2003 - 2009, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts