Today is World Password Day 2021, and while companies are touting the best password management practices, Google is hoping someday we won’t have to worry about them at all. According to the company, even the strongest passwords can be compromised. “You may not realize it, but passwords are the single biggest threat to your online … continue reading
Fernando “Corby” Corbató, the creator of the first computer password, died last week. He was 93. Corbató is widely known for democratizing the use of computers with his creation of the Compatible Time-Sharing System (CTSS) that was demonstrated in 1961. CTSS led to the creation of the password because it introduced the ability to have individual … continue reading
The Internet is one step closer to a passwordless future. The World Wide Web Consortium (W3C), along with the FIDO Alliance, announced that Web Authentication (WebAuthn) specification is now a web standard. WebAuthn is a core component of the FIDO Alliance’s FIDO 2 set of specifications, which aims to provide easier authentication services to mobile … continue reading
The first stable release of C#/XAML for HTML5 1.1 is now available. According to the team, the release signals CSHTML5 as a final product that will get regular updates. CSHTML5 enables developers to create HTML5 apps with C#, XAML and Visual Studio. The release features bug fixes as well as new improvements including support for … continue reading
Security matters now. That is the theme at this year’s RSA Conference taking place in San Francisco this week. “There is an urgency and pressure being felt now more than at any time over the last few years. Whether you are looking at national or local politics or the pressures of your company’s board room … continue reading
The FIDO Alliance and the World Wide Web Consortium (W3C) have reached a major milestone in their effort towards bringing stronger and simpler web authentication to users globally. The organizations have announced the Web Authentication (WebAuthn) standard is advancing to the Candidate Recommendation stage, the last step before the final approval of a web standard. … continue reading
Hologram, a software defined cell network for IoT, has announced a multi-factor authentication solution for connected devices. Multi-factor authentication means that a user needs to confirm their identity in addition to providing a password, such as a passcode sent to their phone. While a majority of the Internet already participates in existing multi-factor authentication, Hologram … continue reading
Troy Hunt, a Microsoft regional director and security guru, released 320 million freely downloadable “Pwned Passwords” to shed light on how many real-world passwords have been exposed in data breaches. The service was created after NIST released guidance recommending that user-provided passwords be checked against existing data breaches. “My hope is that an easily accessible … continue reading
A new decentralized authentication protocol for websites and apps has been released. The SecureLogin Authentication Protocol 1.0 is a password replacement that does not believe in giving third parties access to log into your account from anywhere. The solution aims to solve password reuse, usability, central authority, man-in-the-middle, and malware. “Classic passwords/2FA are poorly designed, … continue reading
Though many in IT focus on external threats, I believe that the ‘enemy within’ may be just as damaging. Addressing the human element, both malicious and unintentional, may generate some of the greatest returns on security investment. Counter to conventional wisdom, the majority of breaches are not due to malicious intent. According to Ponemon, 52% … continue reading
As an effort to help users create secure passwords, researchers from Carnegie Mellon University and the University of Chicago have developed a new solution that provides password advice. The new password meter not only tells users in real time whether or not their password is good, but it offers feedback and advice on how the … continue reading
We’ve heard it all before. Don’t reuse passwords. Don’t use easy-to-guess passwords. Don’t give away your passwords. Sound familiar? These tips are crucial to protecting user data and information, but it still seems like app and website users are not “getting it.” In honor of World Password Day, we thought it was time to revisit … continue reading
