Amicitas@lemmy.world to

Technology@lemmy.worldEnglish · 1 year ago

NIST proposes barring some of the most nonsensical password rules

arstechnica.com

534

NIST proposes barring some of the most nonsensical password rules

arstechnica.com

Amicitas@lemmy.world to

Technology@lemmy.worldEnglish · 1 year ago

Proposed guidelines aim to inject badly needed common sense into password hygiene.

Here is the text of the NIST sp800-63b Digital Identity Guidelines.

Chat

Lvxferre [he/him]@mander.xyz
link
fedilink
English
arrow-up
1·
1 year ago
I think so, based on the original: “Verifiers and CSPs [credential service providers] SHALL NOT permit the subscriber to store a hint that is accessible to an unauthenticated claimant.” With “shall not” being used for hard prohibitions.

Technology@lemmy.world

technology@lemmy.world

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !technology@lemmy.world

This is a most excellent place for technology news and articles.

Our Rules

Follow the lemmy.world rules.
Only tech related news or articles.
Be excellent to each other!
Mod approved content bots can post up to 10 articles per day.
Threads asking for personal tech support may be deleted.
Politics threads may be removed.
No memes allowed as posts, OK to post as comments.
Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
Check for duplicates before posting, duplicates may be removed
Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

4.1K users / day
8.24K users / week
14.2K users / month
31.4K users / 6 months
57 local subscribers
76.1K subscribers
16.5K Posts
675K Comments
Modlog