Pavlovian password management

on the Web

For instance, a user who pickstest123@# might be required to change the password in three days under the system proposed by Lance James, the head of the cyber intelligence group at Deloitte & Touche. The three-day limit is based on calculations showing it would take about 4.5 days to find the password using offline cracking techniques. Had the same user chosen t3st123@##$x (all passwords in this post don’t include the beginning and ending quotation marks), the system wouldn’t require a change for three months.

… an excerpt from Dan Goodin recent Ars Techica’s post «“Pavlovian password management” aims to change sloppy habits». Interesting idea, but I do not think my mom could manage this kind of process. And NOT having a reliable, open source, accessible from anywhere tool to generate such strong passwords is not helping either.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s