Abstract:Most password users are unaware of the distinction between authentication passwords and encryption passwords. But in some cases the distinction is vital to how they can and should be defended.
Bio:Jeffrey Goldberg is the Chief Defender against the Dark Arts at AgileBits, Inc, the makers of 1Password. He writes about password security on the AgileBits blog and is active in the security design of 1Password. Back in the 1990s, when Jeffrey was a system administrator at a UK university, he believed that PKI and client certificates would solve the password problem ""any day now"". Two decades later people have more passwords than ever. He's been worrying about passwords ever since. Jeffrey also brings his background in cognitive science to his commitment to designing systems that work for people as they actually are. He lives in Plano, Texas, USA with his wife (an academic); his daughter (who upon learning about Dual_EC_DRBG declared, ""I want to get a job at the NSA. They're evil mathematicians, just like Professor Moriarty!""); and his two dogs, Patty and Molly, who often feature in Jeffrey's explantations of cryptography systems.
If you would like to republish one of the articles from this site on your webpage or print journal please contact IronGeek.
Copyright 2020, IronGeek