Posted in Security on March 21st, 2004 Comments Off
When designing secure solutions, you always come across someone who thinks the problem at hand can be resolved by public key cryptography. Or more specifically, using personal certificates. And it always take a long time to explain that although making data exchanged between Alice and Bob from Eve looks good on paper, in reality, it […]
Posted in Security on March 13th, 2004 Comments Off
On my way home this morning I stopped by a cash machine near my flat to get some money. I was bit surprised that instead of a standard “get more from our services” screen I was welcomed by a screen presenting add/remove software Control Panel window with text popping underneath announcing that “Windows NT […]
Posted in Security, Usability on March 12th, 2004 39 Comments »
Last month, when writing security policies for a City firm, I came to the topic of password policy. What is the best practice on passwords? What is a reasonable password length these days that will not make the life for people too difficult? I thought I could find some guidance in system hardening guides. I […]