Death of the Password? Markus Jakobsson and Jason Perlow discuss with the CBC

Death of the Password? Markus Jakobsson and Jason Perlow discuss with the CBC

Summary: Jason Perlow and computer security researcher Markus Jakobsson discuss the problems with passwords and computer security with Canada's "The Current" on CBC Radio

SHARE:
TOPICS: Security, CXO, Hardware
5

Computer security researcher Markus Jakobsson and I spent some time with the folks at Canada's CBC Radio program "The Current" to discuss the problems users and enterprises are facing with passwords and possible solutions using mnemonics, multi-factor authentication and bio-metrics.

Click on the logo above or this link to listen to the audio.

Topics: Security, CXO, Hardware

About

Jason Perlow, Sr. Technology Editor at ZDNet, is a technologist with over two decades of experience integrating large heterogeneous multi-vendor computing environments in Fortune 500 companies. Jason is currently a Partner Technology Strategist with Microsoft Corp. His expressed views do not necessarily represent those of his employer.

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

5 comments
Log in or register to join the discussion
  • The SONY Case

    is about the best, current, example of *why* the password model is DOA. The traditional authentication paradigm we know to be password and permissions based, is built on well outdated security concepts and thinking.<br><br>Biometrics and session tokens (as JP mentions) - probably as a conglomerated model - makes sense and would have to be the way forward, if networks / systems of any shape or form are to have any chance of finally resisting concerted black-hat attack vectors.<br><br>Although governments and large corporations have been using the biometric model for some years, it's surprising the model hasn't trickled down as the de facto standard for publicly available, standard computing systems.<br><br>Though there are already hardware manufacturers that do provide some biometric technology options, it's cold comfort for the majority. Obviously, that means OS vendors will have to remodel authentication architecture and related mechanisms for any of this to be realized (.. no mean feat).<br><br>All told, I don't think it's too far off, in technological development terms, before the average home computer no longer uses the existing, flawed authentication-by-password, model to gain access to a system.<br><br>Personally, i think it couldn't happen soon enough.
    thx-1138_
    • RE: Death of the Password? Markus Jakobsson and Jason Perlow discuss with the CBC

      @thx-1138_@... No doubt. But with a handle like 'thx-1138', you must have a particularly strong dystopian view of the future; too much under the influence of a dark Kubrick movie!

      I have a fingerprint sensor on this laptop, but I don't think it is integrated correctly: it is, for example, possible to bypass with a password. And if you don't boot from the Windows partition of the hard drive, you can bypass it completely. Then there are the trick involving using BIOS...
      mejohnsn
      • I think you read too much into avatars & pen names

        @mejohnsn .. and by the way, THX-1138 is a George Lucas product - not a Kubrick one. But if you must know, i just so happen to be a techie who is a big fan of <i>American Zoetrope</i> .. which was a collaborative effort of Lucas and Francis Ford Coppola.<br><br>But i digress.<br><br><i>"...And if you don't boot from the Windows partition of the hard drive, you can bypass it completely. Then there are the trick involving using BIOS... "</i><br><br>Which is exactly why i mentioned the hardware / architecture has to evolve to meet a new hardware / OS, design paradigm: the biometric systems being touted need to be the next step in system security for readily available, retail h/w - and as the new, primary form factor. I'll predict this will begin to change rapidly, no doubt, as the cost of implementing biometrics into retail hardware falls.<br><br>As a way off topic aside, since you mention <i>Kubrick</i>, there is one enigma that lingers on in my mind on the subject of the late, great Kubrick, and it's this: amongst all his brilliant masterpieces, he threw in <i>Barry Lyndon</i> and <i>Lolita</i>. Though brilliant yarns in themselves, they always struck me as being somewhat out of character .. out of place for Kubrick, if you follow my logic. Personally, <i>Dr. Strangelove</i> is, in my opinion, his best work.<br><br>Oh well, that's enough of that. At any rate, as the saying goes, <i>"that is another story entirely."</i>
        thx-1138_
  • RE: Death of the Password? Markus Jakobsson and Jason Perlow discuss with the CBC

    Wow! I wasn't expecting a 5-star review. I would of picked this up regardless of the review because I loved the original, but it is a nice surpris

    metin2 MMO games
    <a href="http://www.metin2oyunu.org/metin2-pvp-serverler" title="metin2 pvp serverler" target="_blank">metin2 pvp serverler</a>
    <a href="http://www.metin2oyunu.org/metin2-pvp-server-kurma" title="metin2 pvp server kurma" target="_blank">metin2 pvp serverler kurma</a>
    <a href="http://www.metin2oyunu.org/gm-komutlari" title="gm komutlar?" target="_blank">gm komutlar?</a>
    <a href="http://www.metin2oyunu.org/gm-komutlari" title="1299 gm komutlari" target="_blank">1299 gm komutlari</a>
    <a href="http://www.metin2oyunu.org/gm-komutlari" title="gm komutlari knight" target="_blank">gm komutlari knight</a>
    <a href="http://www.metin2oyunu.org/metin2-pvp-server-kurma" title="mt2 pvp server kurma" target="_blank">mt2 pvp serverler kurma</a>

    <a href="http://www.metin2oyunu.org/giris" title="mt2 giris" target="_blank">mt2 giris</a>
    <a href="http://www.metin2oyunu.org/hileler" title="metin2 hile" target="_blank">metin2 hile</a>
    <a href="http://www.metin2oyunu.org/hileler" title="metin2 hileler" target="_blank">metin2 hileler</a>
    <a href="http://www.metin2oyunu.org/metin2-kaydol" title="mt2 kaydol" target="_blank">mt2 kaydol</a>
    <a href="http://www.metin2oyunu.org/metin2-kaydol" title="metin2 kaydol" target="_blank">metin2 kaydol</a>
    <a href="http://www.metin2oyunu.org/resimleri" title="metin2 resim" target="_blank">metin2 resim</a>
    <a href="http://www.metin2oyunu.org/resimleri" title="metin2 resimleri" target="_blank">metin2 resimleri</a>
    <a href="http://www.metin2oyunu.org/resimleri" title="mt2 resimleri" target="_blank">mt2 resimleri</a>


    Wow! I wasn't expecting a 5-star review. I would of picked this up regardless of the review because I loved the original, but it is a nice surpris
    mt2 MMO games
    <a href="http://www.metin2pvpserverlar.com" title="pvp serverler" target="_blank">pvp serverler</a>
    <a href="http://www.metin2pvpserverlar.com" title="pvp serverlar" target="_blank">pvp serverlar</a>
    <a href="http://www.metin2oyunu.org/hileler" title="mt2 hileler" target="_blank">mt2 hileler</a>
    <a href="http://www.metin2oyunu.org/hileler" title="mt2 hile" target="_blank">mt2 hile</a>
    <a href="http://www.metin2oyunu.org/hileler" title="metin2 hilelari" target="_blank">metin2 hileleri</a>

    <a href="http://www.metin2oyunu.org/category/metin2-at-gorevleri" title="metin2 at gorevleri" target="_blank">metin2 at gorevleri</a>
    <a href="http://www.metin2oyunu.org/hileler" title="metin2 gorevler" target="_blank">metin2 gorevler</a>
    <a href="http://www.metin2oyunu.org/category/item" title="metin2 itemleri" target="_blank">metin2 itemleri</a>

    <a href="http://www.metin2pvpserverlar.com" title="pvp serverlar" target="_blank">pvp serverlar</a>


    <a href="http://www.metin2pvpserver.net" title="metin2 pvp" target="_blank">metin2 pvp</a>
    <a href="http://www.metin2pvpserver.net" title="pvp server" target="_blank">pvp server</a>
    <a href="http://www.metin2oyunu.org/gm-komutlari" title="knight gm kodlari" target="_blank">knight gm kodlari</a>

    <a href="http://www.metin2oyunu.org/" title="metin2 oyunu oyna" target="_blank">metin2 oyunu oyna</a>



    <a href="http://www.twittersohbet.com/yonja-sohbet" title="yonja" target="_blank">yonja</a>
    <a href="http://www.twittersohbet.com/netlog" title="netlog" target="_blank">netlog</a>
    <a href="http://www.twittersohbet.com/twitter-turkce" title="twitter turkce" target="_blank">twitter turkce</a>
    <a href="http://www.twittersohbet.com/twitter-giris" title="twitter giris" target="_blank">twitter giris</a>
    <a href="http://www.manolyam.net/mynet-kaydol" title="mynet kaydol" target="_blank">mynet kaydol</a>
    <a href="http://www.manolyam.net/imvu" title="imvu, imvu sohbet" target="_blank">imvu</a>
    <a href="http://www.manolyam.net/mynet-giris" title="mynet giris" target="_blank">mynet giris</a>
    <a href="http://www.manolyam.net/mynet-mirc-indir" title="mynet mirc indir" target="_blank">mynet mirc indir</a>
    <a href="http://www.manolyam.net/mynet-mirc-indir" title="mynet mirc" target="_blank">mynet mirc</a>
    <a href="http://www.faceboksohbet.com/facebok-giris" title="facebok giris" target="_blank">facebok giris</a>
    <a href="http://www.faceboksohbet.com/facebok-kaydol" title="facebok kaydol" target="_blank">facebok kaydol</a>
    <a href="http://www.faceboksohbet.com/facebok-mirc-indir" title="facebok mirc" target="_blank">facebok mirc</a>
    zafer12
  • vzcmymf 66 xca

    irugxm,ditdurbh52, sjsht.
    cmakrekwe64-24379036836558426838927056504721