Re: Passwords.. security is in length, not complex
[ QUOTE ]
...I don't use special characters that are difficult to
type...
[/ QUOTE ]
I use a password manager which keeps my passwords safely encrypted
in a file, so I only have to type
one password and from there
I have access to all of them
without typing them, so shoulder
surfing isn't an issue.
Password managers also have the advantage of allowing you to use
much more complex passwords than you would ever try to routinely
type OR remember.
gpassman and
Gringotts are good password managers for
*NIX and
Password Safe uses Blowfish to protect your
pass-phrases in Windows. My password manager is one the programs
that get shut down twenty minutes after my screen saver locks my
desktop. This works very well for me.
[ QUOTE ]
gregw said: [ QUOTE ]
Sub_Umbra said:
A year ago a Japanese crypto student unveiled fake fingers
using
two completely different designs and destroyed the credibility
of ALL of the major players in the biometric fingerprint reader
business in one day. The guy was just a hobbyist! All of the fingers
were easily made from common materials (one of his successful designs
used 'Gummy Bears').
He found that it was very easy to quickly lift the target's prints
from his work area and IIRC he etched them using techniques commonly
used for photo-etching circuit boards.
...
[/ QUOTE ]
Do you have any links to this? I'd be really interested in reading
about this case.
[/ QUOTE ]
HERE is a link to a news story that appeared in
The Register
that hasn't expired yet.
HERE is a link to an article on the subject from the
Crypto-Gram
Newsletter by Bruce Schneier. This link is in the article
mentioned above but I repeat it here separately because the author
has far more credibility on this subject than the
Register
does.
Bruce Schneier invented Blowfish encryption and has been a
respected security consultant for years. He wrote
Password
Safe (mentioned above) and gives it away on his web site. In
fact, there is a link to
Password Safe on the left hand
side, near the top of the page with his article on fingerprint
scanners (above).
EDIT: The link in my original post on this subject is to a very
comprehensive article by Tsutomu Matsumoto, who built the fingers
in the first place. The article tells all, even including step by
step instructions on the process.