Feeds

Passwords are for AES-holes

Security is an illusion

Boost IT visibility and business value

'Q. What was the name of your wife's first lover?'

As far as I'm concerned, I demonstrated who I was when I walked past the entrance CCTV and used my RFID pass to get in the building. Why I had to keep doing it in increasingly ludicrous ways throughout the day is beyond me.

As for the need to create a password that isn't the name of your kids or their birthdays or the word 'password', I do get it. But the current new wave of online harrassment to make you invent an utterly forgettable 'strong' password?

Costa coffee

Froth is NOT good for fingerprint security

Oh come on - the biggest security threat to my online accounts isn't the risk of a mischievous Russian hacker spending a week trying to guess my 'strong' password but the depressing likelihood of a civil servant leaving my 'strong' password on a USB stick in the back of a taxi or a sacked call-centre underling in Bangalore selling my 'strong' password to the highest bidder.

Now the staff at many Costa Coffee outlets are having to struggle with stupid new fingerprint readers to access their cash tills. Costa customers, have you seen a barista manage to get one of those pieces of crap to recognise their fingerprint in fewer than half a dozen attempts?

At least it's secure, I suppose: no one can get the bloody cash till open, including the staff.

And how secure is it, really? Sure, the old movie cliché of hacking off someone's hand and using it to trigger fingerprint readers doesn't work any more because they now incorporate heat sensors or pulse detectors. But there are ways to cheat them, including an old favourite involving creating a fake fingertip from gelatin: if approached by the police, you can always eat the evidence.

Minority Report. Source: Twentieth Century Fox Home Entertainment

'Balls, I brought the wrong eye'
Source: 20th Century Fox Home Entertainment"

No, this saturation of logins we're faced with today isn't really about our security at all. It's about employers bullying their staff into submission by forcing them 20 times a day to request permission to do their jobs. And it's about organisations using endless rounds of 'strong' password reminders as a smokescreen to hide the fact that their own protection of customer records can be snapped like a twig by the dimmest disgruntled outsourced employee.

Security my arse. Read my finger. ®

Alistair DabbsAlistair Dabbs is a freelance technology tart, juggling IT journalism, editorial training and digital publishing. He loves all the big companies he has worked for and only tries to sound cross about their mania for multiple logins for the purposes of this column. Mind you, one has just introduced the need for a new login just to use the telephone.

The essential guide to IT transformation

More from The Register

next story
Top Gun display for your CAR: Heads-up fighter pilot tech
Sadly Navdy kit doesn't include Sidewinder missile to blast traffic
FEAST YOUR EYES: Samsung's Galaxy Alpha has an 'entirely new appearance'
Wow, it looks like nothing else on the market, for sure
iPhone 6 flip tip slips in Aussie's clip: Apple's 'reversible USB' leaks
New plug not compatible with official Type-C, according to fresh rumors
YES YES YES! Apple patents mousy, pressure-sensing iVibrator
Fanbois prepare to experience the great Cupertin-O
TV transport tech, part 1: From server to sofa at the touch of a button
You won't believe how much goes into today's telly tech
NVIDIA claims first 64-bit ARMv8 SoC for Androids
Mile-High 'Denver' Tegra K1 successor said to rival PC performance
XBOX One will learn to play media from USB and DLNA sources
Hang on? Aren't those file formats you hardly ever see outside torrents?
Giving your old Tesco Hudl to Auntie June? READ THIS FIRST
You can never wipe supermarket slab clean enough
prev story

Whitepapers

Endpoint data privacy in the cloud is easier than you think
Innovations in encryption and storage resolve issues of data privacy and key requirements for companies to look for in a solution.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Top 8 considerations to enable and simplify mobility
In this whitepaper learn how to successfully add mobile capabilities simply and cost effectively.
Solving today's distributed Big Data backup challenges
Enable IT efficiency and allow a firm to access and reuse corporate information for competitive advantage, ultimately changing business outcomes.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.