« A football for the rest of us | Home | Stick-on Light Bulb โ€” Lasts forever and uses no electricity »

January 1, 2012

Solving the password dilemma


Wrote Andrew Bennett* in a letter to the editor appearing in the latest issue (January 2012) of Scientific American:

The true secret to security is... a password scheme this is easy for users to remember (so they don't write it down) but close to impossible for a computer to guess. The method of picking a string of letters and numbers gives a result that could be beaten in about three days of determined effort and is pretty much impossible to remember. A phrase of four random words, however, can be easy to remember but can require more than 500 years to guess.

Is this true?

If so, why are we just finding out about it now?

*Software engineer at Google (you could look it up).

January 1, 2012 at 02:01 PM | Permalink


TrackBack URL for this entry:

Listed below are links to weblogs that reference Solving the password dilemma:


Wait a sec, you mean other people thought of using correcthorsebatterystaple? Now I have to go and change them all again. Rats.

Posted by: bookofjoe | Jan 1, 2012 8:17:33 PM

My question is: How many nerds now have "correct horse battery staple" as their password?

Posted by: Maximillian | Jan 1, 2012 7:55:07 PM

Excellent article!

Great site 6.02.

Posted by: JoePeach | Jan 1, 2012 5:46:04 PM

Haystack. Better than the Google engineer.

Which of the following two passwords is stronger,
more secure, and more difficult to crack?



See for yourself here: https://www.grc.com/haystack.htm

Posted by: 6.02*10^23 | Jan 1, 2012 3:24:57 PM

The comments to this entry are closed.