Unconventional Wisdom

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/MSP.2006.28

January/February 2006 (vol. 4 no. 1) pp. 88

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Steve Bellovin

	ASCII Text	x
	Steve Bellovin, "Unconventional Wisdom," IEEE Security and Privacy, vol. 4, no. 1, pp. 88, January/February, 2006.

	BibTex	x
	@article{ 10.1109/MSP.2006.28, author = {Steve Bellovin}, title = {Unconventional Wisdom}, journal ={IEEE Security and Privacy}, volume = {4}, number = {1}, issn = {1540-7993}, year = {2006}, pages = {88}, doi = {http://doi.ieeecomputersociety.org/10.1109/MSP.2006.28}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - MGZN JO - IEEE Security and Privacy TI - Unconventional Wisdom IS - 1 SN - 1540-7993 SP EP EPD - 88 A1 - Steve Bellovin, PY - 2006 KW - email KW - passwords KW - authentication KW - single-sign-on VL - 4 JA - IEEE Security and Privacy ER -

Steve Bellovin, Columbia University

We are told that passwords are evil. We are told to change our passwords frequently, and never, never to write them down. We are even told that if you work for most U.S. corporations, frequent password changes are required by law. How much of this is true, and how much is simply mythology? Remarkably enough, the conventional wisdom can be wrong on all of these points, even the first.

Index Terms:

email, passwords, authentication, single-sign-on

Citation:

Steve Bellovin, "Unconventional Wisdom," IEEE Security and Privacy, vol. 4, no. 1, pp. 88, Jan./Feb. 2006, doi:10.1109/MSP.2006.28

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.