Using Images as Passwords - Slashdot

Follow Slashdot stories on Twitter

×

Using Images as Passwords 268

Posted by CmdrTaco on Saturday March 23, 2002 @12:52PM from the please-select-15-images dept.

TekkenLaw writes "According to this news on Reuters, MS is looking at images rather than plain old text for enhancing security. The key - images, which tend to make more of an impression on people than strings of text characters. This is especially interesting in context of the crappy passwords story that ran on Slashdot that ran few days back." So when you call support to get your lost password, will they ask you what your mothers maiden hair color was?

This discussion has been archived. No new comments can be posted.

Using Images as Passwords

Search 268 Comments Log In/Create an Account

Comments Filter:

Re:um (Score:4, Informative)

by asavage ( 548758 ) writes: on Saturday March 23, 2002 @01:03PM (#3213067)

did they not run this same story a couple weeks ago?
yeah, here is the link http://slashdot.org/article.pl?sid=01/12/28/134821 7 [slashdot.org]

Parent Share
twitter facebook
Re:What if the image is stolen? (Score:3, Informative)

by Account 10 ( 565119 ) writes: on Saturday March 23, 2002 @01:46PM (#3213207)

Blind people continue to use the keyboard. You can have alternatives in life, you know.

Parent Share
twitter facebook
Old, Old Idea (Score:4, Informative)

by mesocyclone ( 80188 ) writes: on Saturday March 23, 2002 @03:19PM (#3213521) Homepage Journal

In keeping with Microsoft's tradition of rarely doing its own innovation...

Many years ago somebody was selling Automatic Teller Machines that used this approach instead of numeric PINs. I wish I had a reference but this was way pre-Web (1970s).

Also, this was discussed at Usenix 2000 and CrypTec 99 - see:
http://paris.cs.berkeley.edu/~perrig/projects.html #DEJAVU [berkeley.edu]

and on Slashdot on Dec 28, 2001

Share
twitter facebook
Re:Worse idea. (Score:1, Informative)

by JimE Griff ( 534058 ) writes: <james_griffith&bbns,org> on Saturday March 23, 2002 @04:19PM (#3213710) Homepage

This is totally valid. However, if your password is stolen because /. or Hotmail is cracked, then wouldn't the site which the password was stolen from (following Maggard's logic in "The Hard Way") be responsible? I mean, it would be terrible to lose all your personal or business files, but unless you were specifically told to pick a different password, you could just pass the buck to the people who allowed your password to be stolen. They then can pass the buck on to the site-cracker, if they can find them. If every individual is responsible for personal passwords, then I believe that websites, unless they have big disclaimers, are compelled to take atleast the same responsibility.

Parent Share
twitter facebook
Re:Check me (Score:2, Informative)

by blixel ( 158224 ) writes: on Saturday March 23, 2002 @04:43PM (#3213811)

Could this mean that if you change resolutions then you can not match your password without returning to the resolution used when setting the pass?

I think it would just mean that you would have to use images of a "standard" size like 640x480 or 800x600 or even 1024x768. There aren't many modern day desktops that are running resolutions smaller than that and I doubt this type of technology is likely to find it's way onto legacy systems anyway.

Parent Share
twitter facebook

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Related Links Top of the: day, week, month.

390 comments32-Hour Workweek for America Proposed by Senator Bernie Sanders
358 commentsWhat Should Happen to Empty Downtown Office Spaces?
340 commentsHacktivism Erupts In Response To Hamas-Israel War
324 comments'Feedback' Is Now Too Harsh. The New Word is 'Feedforward'
248 commentsWorkers are Resisting Calls to Return to Offices

Anyone can make an omelet with eggs. The trick is to make one with none.