This month we look at authentication. This is a constantly evolving group and, therefore, an interesting one. Historically, authentication meant username and password. We got to the point where those "in the know" understood that simple protections are simply defeated. "Strong authentication" was born, but it was unclear what that really meant. Strong authentication today seems to be evolving as a sort of a back seat to convenience. It is convenient to use a user-name and password. You can use one password for everything, make it your dog's name and you've got an easy-to-remember - and compromise - authentication. Afterall, what could be simpler than "Fidol234"? Easy to remember, but a very bad idea compounded, of course, by using the same password for everything.
展开▼