[LINK] Guidance re Passwords

Birch, Jim Jim.Birch at dhhs.tas.gov.au
Mon Jul 25 12:05:38 AEST 2011 

Tom Cleary wrote:

> My impression is that the major issue with people and passwords  is
that the complexity and increasing need to change them frequently has
reached the point that it's too hard for the "normal person" to keep up.

I think the proliferation of passwords is part of the problem.  People
need to distinguish the level of risk associated with each password and
apply an appropriate level of security.  At the top end, a bank password
that allows online funds transfer (mine doesn't) should get the crown
jewels treatment: unique, only used on "secure" hardware, etc.

At the bottom end, junk like registrations at news sites and the like
hardly warrant a password at all, so could use a generic password.  Who
trusts these sites, anyway? I'd much rather have this last category
handled by OpenID or BrowserID or something along these lines.  These
are not perfect but the alternate tools that manage manifold passwords
create other problems with complexity, interoperability, and
potentially, underlying security (Quis custodiet ipsos custodes?)

- Jim 



Want to Get Healthy?

The Tasmania Government's Get Healthy Information and Coaching Service provides free information and coaching support to Tasmanian adults who would like to learn healthier eating habits, be more active or achieve and maintain a healthy weight. Call 1300 806 258 between 8am and 8pm, Monday to Friday or visit www.gethealthy.tas.gov.au for more information.

CONFIDENTIALITY NOTICE AND DISCLAIMER

The information in this transmission may be confidential and/or protected by legal professional privilege, and is intended only for the person or persons to whom it is addressed. If you are not such a person, you are warned that any disclosure, copying or dissemination of the information is unauthorised. If you have received the transmission in error, please immediately contact this office by telephone, fax or email, to inform us of the error and to enable arrangements to be made for the destruction of the transmission, or its return at our cost. No liability is accepted for any unauthorised use of the information contained in this transmission. If the transmission contains advice, the advice is based on instructions in relation to, and is provided to the addressee in connection with, the matter mentioned above. Responsibility is not accepted for reliance upon it by any other person or for any other purpose.

More information about the Link mailing list