Write 'em down. Can you see the flaw in the plan...?
Published: 11 December 2002 13:05 GMT
Heavy users of technology now employ nearly two dozen passwords to gain access to various IT systems and websites - but are compromising security by writing them down.
The 2002 NTA Monitor Password Survey found that the typical intensive IT user now has 21 passwords, and has two strategies to cope, neither of which are advisable from a security standpoint: they either use common words as passwords or keep written records of them.
The survey found that some of these heavy users maintain up to 70 passwords. Forty-nine per write their passwords down, or store them in a file on their PC.
The research shows that 84 per cent of computer users consider memorability as the most important attribute of a password, with 81 per cent selecting a common word as a result.
Furthermore, 67 per cent of the entire universe of users polled by NTA Monitor rarely or never change their passwords, and 22 per cent said they would only ever change one if forced to do so.
One respondent said: "Memorability is more important as I assume it's secure. I remember passwords I've selected but if I've been assigned one I can't change I write it down on a 'post it' and stick it to my docking station."
Roy Hills, technical director, NTA Monitor, said: "Users are effectively leaving their keys in the front door of their computer systems. A disciplined security approach must start with the user. As an industry, we need to help users address this issue. The fundamental problem is that users are forced to manage and maintain so many user names and passwords that they are inevitably using common phrases, or resort to writing passwords down."
He added: "The IT industry is simply not taking it seriously enough - losing a laptop, for example, with strictly confidential merger and acquisition documents on the hard disk is one thing but if it's got a 'post it' note with the password stuck to it you've only got yourself to blame."
NTA Monitor surveyed 500 computer users at Victoria Station, London over a week-long period in November 2002.
General o Excellent written and oral communication skills.o Ability to plan and monitor own work when required.o An interest in the Post Production ...
Your role will be To build or modify existing systems to meet the requirements captured by the team’s business analysts, to provide input and ...
Our client has over 700 employees and is the largest, independent and most efficient coal-fired power station in the UK. Their output capacity of ...
Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Digg
Slashdot
Del.icio.us
Stumble
Reddit
RSS Feeds
Tim Ferguson Exclusive: Former MySQL boss Marten Mickos talks open source Why Microsoft could become one of the "biggest friends of open source" and why Oracle getting its hands on MySQL could be "one of the biggest open source coups ever"...
Naked CIO Naked CIO: Cloud computing more expensive than we thought? Smart IT leaders will examine the impact of how they pay for tech