Slashdot Mirror

← Back to Stories (view on slashdot.org)

Nielsen Recommends Not Masking Passwords

Posted by timothy on Thursday June 25, 2009 @07:47AM from the *****-****-**-******** dept.

Mark writes "Usability expert and columnist Jakob Nielsen wants to abolish password masking: 'Usability suffers when users type in passwords and the only feedback they get is a row of bullets. Typically, masking passwords doesn't even increase security, but it does cost you business due to login failures.' I've never been impressed by the argument that 'I can't think why we need this (standard) security measure, so let's drop it.' It usually indicates a lack of imagination of the speaker. But in this case, does usability outweigh security?"

3 of 849 comments (clear)

Min score:

Reason:

Sort:

Re:hunter2 by Joce640k · 2009-06-25 08:30 · Score: 0, Offtopic

Ok, smart guy.. maybe you can explain to us why Microsoft makes you type in your password twice when you log onto a wireless network.

Around here that's 26 random characters which you have to get right, twice. That's so horrible to use it must be really secure, right?

Same thing with email addresses in online forms, why do I always have to type those in twice? Luckily those aren't asterisked out so I can copy paste them. I'm sure there must be a good security reason for entering them twice.

--
No sig today...
Re:Making my point with humor by DriedClexler · 2009-06-25 09:30 · Score: 0, Offtopic

My hands know the password to my sperm bank.

--
Information theory is life. The rest is just the KL divergence.
Re:One word for Nielsen: Projector by justinlee37 · 2009-06-25 12:30 · Score: 0, Offtopic

I'm pretty sure that some organizations use a selection process for hiring managers that somewhat resembles this