Issue No.03 - May-June (2012 vol.10)
Steven M. Bellovin , Columbia University
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MSP.2012.66
It would be nice to get rid of passwords entirely, but that isn't going to happen any time soon. What we need are better ways of entering, storing, and using passwords, ways that respond to today's threats instead of yesterday's. Sticking with checklists based on yesterday's technology is not the way to secure today's systems.
passwords, websites, security
Steven M. Bellovin, "Fighting the Last War", IEEE Security & Privacy, vol.10, no. 3, pp. 96, May-June 2012, doi:10.1109/MSP.2012.66