Frequent changes are all well and good, until people write down the passwords.
Or store them in a text file on desktop.
or for hard to remember passwords
With each site implementing this same policy, it becomes a nightmare for anyone to keep track of all the passwords and which is used on what site. It may be good security practice for any given site, but combined it creates an entirely new problem.
This will continue to be the case until a better alternative than passwords is available. And by available, I mean 'in common use'. A mouse that 'recognises' the hand upon it, a keyboard (or Touch Screen) that recognises fingerprints etc. Even a webcam that can recognise a face/eyes. It can't be technologically difficult can it?
it the cost and trouble involved as against the benefit received for it. few systems warrant such a cost.
Some of these top lessons are the same on song and dance. We need to remember that the best practice is a layered defense. You need to secure and encrypt the data and encrypted access to the data. If the data is secured from access and encrypted, it makes it a lot harder for a hacker to figure out how to get the data, unencrypt it and not get caught in the process. So many systems now are capable of software based and hardware based encryption. Protecting the data should always be priority #1. If you value it, it should be protected and passwords are not protection.
- Keyboard Shortcuts: