Scientists Develop New Method To Improve Passwords

An anonymous reader writes "Scientists at Max-Planck-Institute for Physics of Complex Systems in Dresden, Germany have developed a novel method to improve password security. A strong long password is split in two parts. The first part is memorized by a human. The second part is stored as a CAPTCHA-like image of a chaotic lattice system."

How many times we need to explain thid

[skyriide]

Its not the difficulty (that is length, various enforcements against common dictionary words, mandated password change every few months or so) of password that matters. Its the users that do. Users will always find a way to use a variation of 'password', like password1, or pass-word-1 or something like that. The problem is that users just don't want/can't remember compex things. Thus the real solution is to store full blown AES key in a disk and educate users to keep it safe. Or even write a real random password on a piece of paper, but keep it not under the keyboard, but in their wallet If you want some laughs, just look at this blog post that describes the various ways user create insecure passwords.