Techly NewsGet the app

Get the latest tech news

NIST proposes barring some of the most nonsensical password rules


Proposed guidelines aim to inject badly needed common sense into password hygiene.

At roughly 35,000 words and filled with jargon and bureaucratic terms, the document is nearly impossible to read all the way through and just as hard to understand fully. It sets both the technical requirements and recommended best practices for determining the validity of methods used to authenticate digital identities online. Verifiers and CSPs SHALL NOT prompt subscribers to use knowledge-based authentication (KBA) (e.g., “What was the name of your first pet?”) or security questions when choosing passwords.

Get the Android app

Or read this on r/technology

Read more on:

Photo of NIST

NIST

Related news:

News photo

NIST: New smoke alarms are better at detecting fires, but still go off for bacon

News photo

Chrome Switching To NIST-Approved ML-KEM Quantum Encryption

News photo

Chrome switching to NIST-approved ML-KEM quantum encryption

« Google Maps will flag businesses with potentially fake reviews
Virgin Media O2 CEO Takes Leave After Cancer Diagnosis »