Slashdot Mirror


Ask Slashdot: How Can We Create a Culture of Secure Behavior?

An anonymous reader writes "Despite the high news coverage that large breaches receive, and despite tales told by their friends about losing their laptops for a few days while a malware infection is cleared up, employees generally believe they are immune to security risks. They think those types of things happen to other, less careful people. Training users how to properly create and store strong passwords, and putting measures in place that tell individuals the password they've created is 'weak' can help change behavior. But how do we embed this training in our culture?"

2 of 169 comments (clear)

  1. Password strength is overrated by Tony+Isaac · · Score: 4, Interesting

    In my 25 years working in IT, none of my passwords, weak or strong, have ever been hacked. Even my teenage sons, who have no idea about password strength, or site security, have never been hacked. And I doubt YOU can point to a single instance of someone hacking YOUR password.

    Does password hacking happen? Yes, of course. Should we be careful? Yes. But there are much greater dangers, such as malware (which you no doubt HAVE had a personal brush with).

    So if we need to put up with annoying security measures, let's at least focus on the more relevant dangers, rather than forcing us all write down our passwords and stick them to the bottom of our keyboards!

  2. Re:This approach has gone nowhere for years by PRMan · · Score: 4, Interesting

    How many ATM heists and skimmers have their been over the past 10 years? I'd hardly say it's working WELL.

    --
    Peter predicted that you would "deliberately forget" creation 2000 years ago...