A recent article over CSO Online by Taylor Armerding debates if password use might be outdated. According to Armerding, some experts believe that passwords are becoming obsolete and alternative forms of authentication such as biometrics should be used. Others argue that passwords are a solid form of authentication as long as they are used properly....
Read more »
I didn’t mention it in my previous post “Usable Browser Privacy & Security” but another Firefox plug-in I normally use is the popular online LastPass password manger. Well, the other day I noticed a new feature but hadn’t seen much discussion of it within the security community. Yes, I use LastPass and find it...
Read more »
Here’s another addition of the Weekly Rewind, where we post out a quick summary of all our stories as well as the industry articles you seemed to like the most from the past week. If you missed anything or happened to be offline, we hope you find this post useful as a quick reference....
Read more »
There have been a few articles over the past week describing some general suggestions on protecting mobile devices. Coincidentally, I’ve been doing some research on advice we could provide “average” everyday iPhone users on this topic and these articles confirmed much of what I’ve found. Yeah, we could consider using one of the newfangled...
Read more »
There was an interesting discussion that took place on one of the mailing lists I follow the other day with people trying to figure out if the password encryption used in Word 2007 is secure. As most of us know, older versions are easily cracked however the more recent versions are suppose to be...
Read more »
This past week CSO Online put out an update post on the National Strategy for Trusted Identities in Cyberspace (NSTIC) program that National Institute of Standards and Technology (NIST) set up this past spring. I hadn’t recently heard much about this effort until @manicode mentioned that blog post on Twitter. RT @manicode .. NSTIC...
Read more »
I came across an interesting New York Times story by Randall Stross over the weekend that discusses how we should be replacing passwords with information cards and how so-called single sign-on (SSO) services (e.g., OpenID and I’m sure any commercial product SSO efforts as well) just don’t add the security we need. Here are the...
Read more »
