Frequent change of passwords may not be a good idea
Forcing people to keep changing their passwords can result in them coming up with bad passwords
Washington
Most office drones have had to deal with a job that requires them to keep changing their passwords like clockwork, maybe every six months or so. The longstanding information technology (IT) security practice is based on the idea that flushing out old passwords will cut off access for bad guys who may have figured them out.
But according to the US Federal Trade Commission's chief technologist, Lorrie Cranor, the strategy has some major holes.
TRENDING NOW
DBS, OCBC and UOB shares hit all-time highs as sentiment improves
Targeted credit relief: Vietnam steers funding to Vingroup, Sun Group, Masterise megaprojects
E-commerce job cuts signal S-E Asia’s shift from scaling to deeper user engagement
Employers want AI-fluent employees. Hiring them is the challenge