arstechnica.com— In a new twist on password security, researchers are testing a method that registers what people draw on top of an existing image. The results balance memorability with security.
Nov 3, 2007View in Crawl 4
the password doesn't have to be complicated.. all you have to do is get it over the average character count and something like brute force cracking won't work. so make it DiggDiggDiggDiggDigg and your set.
I think this technology would be a terrific idea for credit card companies. Many stores currently use touch-screen credit/debit card readers. For credit card purchases, you can draw a duck - or nothing – and the machine will accept the transaction. Clerks almost never verify the user’s identity. By employing BDAS in these systems, only authorized users would be able to complete transactions in these stores. Of course, a parallel system for online purchases would be imperative as well. How might that work for those of us without touch-screen hardware at home?
mathmanjeffyNov 4, 2007
Headline: "Graffiti as password: secure and memorable"Hmm... nope don't see convenience listed there.
jalexhall1989Nov 4, 2007
the password doesn't have to be complicated.. all you have to do is get it over the average character count and something like brute force cracking won't work. so make it DiggDiggDiggDiggDigg and your set.
pakeNov 4, 2007
Seems like a good idea to some extent. Would obviously make hacking someone's account a lot harder.
malkirNov 4, 2007
RFID's are about the most insecure "modern" technology there is out there. So...good luck with that.
rocketseasonNov 5, 2007
Interestingly, I used a similar method to learn dates of hundreds of paintings in my Art history classes.
aip17Nov 30, 2007
I think this technology would be a terrific idea for credit card companies. Many stores currently use touch-screen credit/debit card readers. For credit card purchases, you can draw a duck - or nothing – and the machine will accept the transaction. Clerks almost never verify the user’s identity. By employing BDAS in these systems, only authorized users would be able to complete transactions in these stores. Of course, a parallel system for online purchases would be imperative as well. How might that work for those of us without touch-screen hardware at home?