DARPA Wants To Kill the Password 383
jfruh writes Many security experts agree that our current authentication system, in which end users are forced to remember (or, more often, write down) a dizzying array of passwords is broken. DARPA, the U.S. Defense Department research arm that developed the Internet, is trying to work past the problem by eliminating passwords altogether, replacing them with biometric and other cues, using off-the-shelf technology available today.
As long as certain rules are kept (Score:5, Interesting)
I'm ready to switch passwords for anything else as long as:
1 - It can't be extracted from me by an easier method than torture or blackmail.
2 - It stops working forever if I'm dead.
Otherwise, some blood will have to wash away the naivete. Again.
666 (Score:2, Interesting)
Re: There we go again (Score:0, Interesting)
I've never understood why passwords can't be sentences, like "I'm going to take my dog, Spot, to the park today."
They can be, but it would be incredibly stupid to use something like that. A dictionary attack would crack that password in seconds.
What I do is have a single, strong password that I have stored only in my brain and all other passwords are hashed on-the-fly from that and the domain or name of whatever I need the password for. I get unique, strong password for everything, but only have to remember a single one.
Re: There we go again (Score:4, Interesting)
I'm surprised more black-hats don't set up "free" services with that intention.