SUBSCRIBERS

Your mother's maiden name is not a secret

Published Mon, Jan 1, 2018 · 09:50 PM

New York

RESOLUTIONS to shake laziness, get organised and gain control of finances are ritually adopted each January - and abandoned soon after. But there is one common bad habit that consumers and billion-dollar businesses alike should have quit long ago and cannot afford to carry into 2018: the use of weak website security questions.

Your mother's maiden name is not a secret. This should be obvious, yet this question and similarly flawed questions continue to be asked of us when we forget a password or log in from a new computer. Website security questions have been around since the dawn of the Web but became ubiquitous after a 2005 recommendation by the Federal Financial Institutions Examination Council that banks improve their security measures for online banking. The council did not specify what these improvements should be, and so banks chose security questions, something that they had been using offline for decades anyway - the mother's maiden name convention dates to 1882. Other types of businesses, perhaps assuming that the banks knew what they were doing, followed suit.

Reuse this content Feedback

Latest T-bills Treasury Bills Results & Interest News Latest SSB Singapore Savings Bonds News Latest COE Certificate of Entitlement News

Latest Johor-Singapore SEZ News Latest BTO Build To Order & Sales of Balance News Latest STI Straits Times Index News Latest SGX Dividends, Share Price News Latest Bonds Market News Latest Singapore Stocks To Buy News Latest Singapore Economy News