Yet another report on the password predicament
“We’re not sayingthis is how SolarWinds was backdoored, but its FTP password ‘leaked on GitHubin plaintext’” https://www.theregister.com/2020/12/16/solarwinds_github_password/
It says “their update server was accessible with the password ‘solarwinds123’”.
Every time these absurd incidents are reported, we are told to listen to security professionals who love to lecture us to manage the text-only passwords that we are incapable of managing.
How long do we have to keep hearing them preaching “We would be safe if we do what we are unable to do”?
I wonder why those people are not keen to look at the merits of making use of non-text secret credentials besides the text passwords.
Ref: “On #BigIdeas2021”
< References >
Summary and Brief History — Expanded Password System
Image-to-Code Conversion by Expanded Password System
Proposition on How to Build Sustainable Digital Identity Platform
External Body Features Viewed as ‘What We Are’
History, Current Status and Future Scenarios of Expanded Password System
Negative Security Effect of Biometrics Deployed in Cyberspace
Removal of Passwords and Its Security Effect
Update: Questions and Answers — Expanded Password System and Related Issues (30/June/2020)
< Videos on YouTube>
Slide: Outline of Expanded Password System (3minutes 2seconds)
Demo: Simplified Operation on Smartphone for consumers (1m41s)
Demo: High-Security Operation on PC for managers (4m28s)
Demo: Simple capture and registration of pictures by users (1m26s)
Slide: Biometrics in Cyber Space — “below-one” factor authentication
< Latest Media Articles Published in 2020 Spring>
Digital Identity — Anything Used Correctly Is Useful https://www.valuewalk.com/2020/05/digital-identity-biometrics-use/
‘Easy-to-Remember’ is one thing ‘Hard-to-Forget’ is another https://www.paymentsjournal.com/easy-to-remember-is-one-thing-hard-to-forget-is-another/
