Slashdot Mirror

← Back to Stories (view on slashdot.org)

New UK Security Guidelines: Password Re-Use OK, Frequent Changing a Waste

Posted by timothy on from the tell-that-to-every-company's-it-department dept.

isoloisti writes: New UK government guidance on how to handle passwords (PDF) "advocates a dramatic simplification of the current approach." "Unlike previous guidance, this doesn't focus on trying to get ever more entropy into passwords." For example: "Regular password changing harms rather than improves security, so avoid placing this burden on users." And "given the infeasibility of memorising multiple passwords, many are likely to be re-used. Users should only do this where the compromise of one password does not result in the compromise of more valuable data protected by the same password on a different system."

1 of 148 comments (clear)

  1. What Next? by Tokolosh · · Score: -1, Offtopic

    Vaping is better than smoking? What kind of government is this?

    http://www.engadget.com/2015/0...

    --
    Prove anything by multiplying Huge Number times Tiny Number