Coalminer22 Posted January 16, 2014 Share Posted January 16, 2014 The safe length of a password keeps growing, and we are considering possible increasing length by one every year till probably infinity as computers keep getting more powerful at cracking passwords. If users can't remember passwords they will form have bad habits like writing them down... ...Long term this seems like a losing strategy - I can't be the only one thinking this, so what are other people doing? First rule of Security: It has to be usable or security won't be used. Second rule of Security: there are no rules.. lol So anyways back on topic personally I like the idea of moving strait to a 24 charter password today with an added login option for two factor where the user only needs a token of some type and short pin. What are others using, and what works? (what doesn't work) Target: Citrix Desktops, Laptops, and iPhone Thoughts: Leverage existing proximity cards Fingerprint scanners Iris Scanners ($$) Smart Card Readers RSA - currently we have RSA in limited use, but it seems unproductive to wait for token then enter it in, a faster and easier user experience would be more ideal Price, cheaper solutions are obviously easier to sell, but usability and security are more important Quote Link to comment Share on other sites More sharing options...
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.