BROWSE BY TOPIC
Stories of Interest
- Stephen Hicks Barred for Defrauding His CT Hedge Funds - SEC
- Barclays CEO Staley Sees Pay Decline - Frankly, He's Lucky to Still be Employed
- Barclays Female Investment Bankers Earn 21% Less in Bonuses than Male Counterparts
- FINRA Eliminates $400 Fee for Explained Arbitration Decision
- SEC Adopts Statement and Interpretive Guidance on Public Company Cybersecurity Disclosures
- SEC Charges Former Bitcoin Exchange and Its Founder With Fraud
- JPMorgan Chase to Replace NYC Headquarters with 70-Story Skyscraper
- Citigroup Raises CEO Corbat's Pay 48% to $23Mn
- Should Congress Create a Crypto-Cop?
- JPMorgan Weighs Buying an Exchange-Traded Funds Firm
- Hey, Goldman Sachs: Wanna Buy BNY Mellon?
- SEC Order Rejecting Acquisition of Chicago Stock Exchange (CSX) by Chinese-Baesd Company
- Kyle Moffatt Named Chief Accountant in SEC CorpFinance
- SEC Suspends Trading in 3 Issuers Claiming Involvement in Cryptocurrency and Blockchain Technology
- Karen Garnett, Assoc. Director of SEC CorpFinance, to Leave After 23 Years of Service
- Louisiana Adviser Barred for Hiding Losses from Investors
- Connecticut HF Manager Illegally Diverted Investor Money - Now Owes Nearly $13Mn
- White House Cleaning House of Advisors Without Full Security Clearance
- Goldman Projects 30% Growth in Wealth Management Advisor Force
- Whistleblower Alleges Manipulation of CBOE Volatility Index
We seek to provide information, insights and direction that may enable the Financial Community to effectively and efficiently operate in a regulatory risk-free environment by curating content from all over the web.
Stay Informed with the latest fanancialish news.
NEWSLETTERS & ALERTS
Best Passwords - Long, Easy to Remember Phrases
by Howard Haykin
That’s because Bill Burr, the former National Institute of Standards and Technology (NIST) manager who convinced the world 14 years ago to adopt new methodologies for creating strong passwords, realized that his rules did little for security. So, as The WSJournal puts it, “N3v$r M1^d!”
In an interview with The WSJournal (subscr reqd), Mr. Burr expressed his regrets for giving that advice. Not that his advice was flawed. It’s just that such advice was way too complicated for the everyday computer user, who typically creating passwords that hackers and computer algorithms could readily predict. [However, in deference to Mr. Burr, his advice did hold up for more than 10 years – which, in this era of advancing technology, is a lifetime.]
Say, for example, a person devised a seemingly secure password - “N3wY0rk123!” Yet, it is inherently weak because it was created with the exact same technique that most people tend to use when creating such digital combo passwords. And, when it came time to change passwords, people would compound the problem by switching to something like “N3wY0rk456!”
Going forward, NIST has done away with the old advice and is now suggesting that people use long, easy-to-remember phrases. [See NIST Special Publication 800-63-3: “Digial Identity Guidelines”] And, as far as changing passwords, it's suggested that users do so ONLY if there's a sign they may have been stolen.