Please, still will the crooks still be ahead of us, looking for new vulnerabilities.
The end of passwords Short piece in Technology Review, here an intro of the article.
Companies are finally shifting away from notoriously insecure alphanumerics to other methods of authentication. ...
By Mat Honan
In the early 1960s, MIT professor Fernando Corbató was developing a new kind of shared computer system and wanted a way for people to be able to protect their private files. His solution was a password. Over the years, Corbató’s fix won out over other means of authentication and became the standard way we log on to pretty much everything, everywhere.
The catch? Passwords are inherently insecure. They can be stolen, guessed, or brute-forced. But mostly, people just use bad ones. (And, worse, reuse them.)
Password managers like Dashlane and 1Password can track all those various alphanumerics for you and even replace the weak ones. But password management is a half measure when it comes to security. The real action is in eliminating passwords altogether. ... '
The process is already underway. Enterprise-oriented companies like Okta and Duo, as well as personal identity providers like Google, offer ways for people to log in to apps and services without having to enter a password. Apple’s facial recognition system has taken biometric login mainstream. Most notably, Microsoft announced in March 2021 that some of its customers could go completely passwordless, and it followed up in September by telling people to delete their passwords altogether. Those other methods of authentication? They’re finally winning. ...'
No comments:
Post a Comment