Network World

Passwords: Length vs. complexity

A few weeks ago, I mentioned a contest that InfoWorld columnist Roger Grimes was having to prove that long passwords are just as good or better than complex passwords. Today, in a vacation edition of ...
Threat Post

Proposed NIST Password Guidelines Soften Length, Complexity Focus

NIST’s latest password guidelines focus less on length and complexity of secrets and more on other measures such as 2FA, throttling, and blacklists. A comment period has closed on NIST’s new password ...
Redmond Magazine

How Important Is Password Complexity?

UPDATE FROM AUTHOR: As noted by several commenters this post focuses on brute force; I will discuss the rainbow table issue at length in next month's column. About a month ago, I was walking through ...
InfoWorld

Password size does matter

Length is more important than complexity when it comes to secure passwords - and here's a $100 wager to prove it This week’s scheduled column on security maturity has been rescheduled for next week.
Network World

Dealing with NIST’s about-face on password complexity

In the last few years, we’ve been seeing some significant changes in the suggestions that security experts are making for password security. While previous guidance increasingly pushed complexity in ...
Ars Technica

Password complexity rules more annoying, less effective than lengthy ones

Few Internet frustrations are so familiar as the password restriction. After creating a few (dozen) logins for all our Web presences, the use of symbols, mixed cases, and numbers seems less like a ...