Open Sesame - Password Security

Technology News

Home | Tech Store | Amazon Store | Game Store | Webmaster Tools | Safe Kids Links | Promotional Items

Site Sponser

Recommended Products

Related Links

Christian InTech Articles - Computers

Informative Articles

All About Your Computer BIOS
Are you confused by the computer BIOS? The BIOS is a fundamental component of any PC and if you really want to get into the guys of a computer, it's good through understanding what BIOS Is all about. This article gives you a summary of what...

BIGSquid RFID: Leading RFID Solution in India
BIGSquid RFID: Leading RFID Solution in India RFID (pronounced as separate letters) short for radio frequency identification. It is a technology, which uniquely identifies objects automatically using wireless radio communications. Radio...

Microsoft Great Plains Remote Support - overview
Microsoft Great Plains is now standard mid-market ERP application, serving the whole spectrum of businesses. In the case of mid-size business we usually see strong IT team with SQL querying skills plus accounting department is already trained to...

PIM Team Case Study: Creating Text Effects With PHP and GD
PIM Team Case Study: Creating Text Effects With PHP and GD See how you can create graphic effects on text with PHP and GD - drop shadows, arcs, fonts and colors. Problem A-tec Signs and Sraphics Inc. launched a web site with the idea to sell...

The Concept of the Paperless Office
The concept of a paperless office may seem a futuristic phenomenon. It’s about a workplace originating bulk of information electronically. Everything is packaged in a pc! But is the concept now a reality? In the article A Funny Thing Happened on...

Open Sesame - Password Security

“Open Sesame!” is probably the most famous password in literature. It gave Ali Baba access to vast treasure. In the realm of technology, computer passwords also give access to valuable treasures: precious business and personal data.

Information about your personal life, buying habits, credit quality and life style is valuable to those who can profit from it. For the Corporation, information has even greater worth. It is not the “Bricks and Mortar” but the intangibles such as intellectual property, client lists, market strategies, pricing and compensation that account for over half the value of the modern enterprise.

All of this personal and business data most likely resides on a database somewhere and is available with a password. In fact, passwords are the most common means of entry in any system. They are also acknowledged as the most vulnerable points for security. “Weak” or compromised passwords are the easiest way for hackers to gain entry into a system.

Simple or short passwords can be easily discovered through “brute force” or “dictionary” attacks which concentrate intense computer power to crack a password. A two letter password, for example, has only 676 combinations. A password with eight letters offers more safety with 208,000,000 combinations.

Ideally, a password should consist of 8 or more characters. They should also contain a mixture of upper and lower case letters, symbols and numbers. “A$d3B5i9X” would be an example. Microsoft security has encouraged the concept of the “Pass Phrase” as an alternative. A phrase such

as,”TheLastGoodBookUBoughtCost$25!” has all of the needed elements and is also easy to remember.

The human factor or social engineering contributes to password compromises. It is estimated that employees share their password eight times a year. Passwords can also be cajoled from untrained or naïve workers. The standard rule is NEVER share a password.

Remember the cliché of the “Six Degrees of Separation.” You cannot know who will eventually end up with your password and own it.

To cope with these issues, many leading edge firms are adopting a defense in depth strategy utilizing three elements to better safeguard their information

The three layers of authentication consist of:

What you know…

A strong password or pass phrase

What you have…

A Crypto-key, smart card or token

Who you are…

A biometric aspect such as fingerprint, hand, or retinal recognition

Usage of these three defensive measures will increase dramatically in the future as people seek to thwart ever increasing threats to their private and personal information. Many companies will be mandating them as a significant part of their security best-practices to safeguard an extremely valuable asset: their treasured data.

Terrence F. Doheny President of Beyond If Solutions, LLC.

www.beyondifsolutions.com

terry@beyondifsolutions.com

© 2004, Terrence F. Doheny

© 2008 Christian InTech.com | / Powered by Studiolion.com - All Rights Reserved.