| | OCT - DEC 20208E ERGYTech ReviewIN MY OPINIONThe start of every application ever built usually involves the developer figuring out how to allow users to create accounts and set up passwords. The number of times this wheel has been re-invented is almost mind boggling. Creating usernames, passwords, figuring out the forgotten password flow are somethings that is recreated time and time again.Something that drives me completely batty though is how developers think that by requiring users to pick a complicated password (at least 1 upper case, 1 number, and 1 special character, but you can't use all special characters etc.) is a good security practice! From banks, to government websites, to social media websites, the password policies are always just a little bit different requiring users to have multiple versions of the same passphrase. The variations introduced by users are often very easy to guess and thereby actually make these passwords less secure rather than more secure. Likewise, requiring users to change their passwords also results in minor modifications to existing passwords, which also By Dr. Manu Kumar, Founder and Chief Firestarter, K9 VenturesIdentity and Access Management: Leave it to the Experts
< Page 7 | Page 9 >