On BNET: Online porn struggles for profits
BNET Business Network:
BNET
TechRepublic
ZDNet
27 TalkBacks

Posted on ZDNet News: Oct 17, 2006 5:20:00 AM

Reuters Logo One in three people write down computer passwords, undermining their security, and companies should look to more advanced methods, including biometrics, to ensure their systems are safe, a new study shows.

A study released on Tuesday by global research firms Nucleus Research and KnowledgeStorm found companies' attempts to tighten IT security by regularly changing passwords and making them more complex by adding numbers as well as letters had no impact on security.

Staff still had a tendency to jot down passwords either on a piece of paper or in a text file on a PC or mobile device.

"This is really a lot like mom and dad buying a great new security system for the house and junior leaving the combination under the door mat," said David O'Connell, senior analyst at Nucleus Research.

The study, which surveyed 325 U.S. employees, found that a single sign-on system is just as effective as more complex schemes and that user education on the importance of proper password protection did not deter employees from their lax habits.

"Passwords are high maintenance. People forget them, people lose them, they have to be reset. Resending passwords is time intensive and costly. It takes up time at a help desk," O'Connell said.

The report suggested companies look instead to biometrics, such as voice recognition devices or thumbprint scanners, or cognitive biometrics, the latest security system that learns characteristics about you while you tell a story in the form of multiple choice answers.

"It's these higher order techniques that companies need to shift to in order to get away from passwords," O'Connell said.

Story Copyright © 2006 Reuters Limited. All rights reserved.

SponsoredWhite Papers, Webcasts, and Downloads

  • Talkback
  • Most Recent of 27 Talkback(s)
I agree - this isn't news
I agree completely with your statement. I started working in IT back when PCs were the minority in business (at least banking) and dumb terminals were the "PC" of the average worker. People still wr... (Read the rest)
Posted by: fnash Posted on: 10/19/06 You are currently: a Guest | | Terms of Use
Hmmm, well if there are no percieved  Linux User 147560 | 10/17/06
Message has been deleted.  nightman45 | 10/17/06
Message has been deleted.  DarbyOhara | 10/17/06
gah  nhac | 10/17/06
Password Shinanigans  zenwalker | 10/17/06
Deal with it like everyone else  ibabadur1 | 10/18/06
Nice huh?  dkunzman@... | 10/18/06
Not so simple  BobF_z | 10/18/06
Unrealistic!  DarbyOhara | 10/18/06
This should tell us something  LordLiverpool | 10/18/06
Biometrics  wjkahlssmd@... | 10/18/06
Mugging  BobF_z | 10/18/06
Biometrics...  porsche_914 | 10/18/06
Passwords are simple  ibabadur1 | 10/18/06
Thank you, Captain Obvious  ejhonda | 10/18/06
I agree - this isn't news  fnash | 10/19/06
Cleaning people of high rise buildings...  vlad824 | 10/18/06
Pfft, *I* write down the occasional password  CobraA1 | 10/18/06
Before you coment.  infernalburn00 | 10/18/06
SKITTLES***  infernalburn00 | 10/18/06
Writing down passwords  John L. Ries | 10/18/06
People write down passwords?? whats new!  michael_orton@... | 10/18/06
Study: Humans often need oxygen  Tomzda | 10/18/06
SecurID is an excellent answer  ~doolittle~ | 10/18/06
Yes, the 'have a thing and know a thing' combo...  JonathonDoe | 10/18/06
And then the problem is  ghastly | 10/18/06
When you have 15-30 passwords, what else is someone going to do?  BitTwiddler | 10/18/06

What do you think?

advertisement
advertisement

White Papers, Webcasts, and Downloads

SmartPlanet

Click Here