This is sang's Typepad Profile.
Join Typepad and start following sang's activity
Join Now!
Already a member? Sign In
sang
Recent Activity
@Diego Mijelshon yes it is, I have free Google Apps account and I use it.
Toggle Commented Apr 18, 2012 on Make Your Email Hacker Proof at Coding Horror
I've been using two factor authentication(TFA) with application specific password(ASP) for awhile now but I'm actually not too convinced it's more secure.. at least for me. I do think using TFA is more secure and wish more websites (like my banks) would implement it. However it's the ASP that I believe make this less secure. My 'master' google password consist of 20+ alphanumeric characters, symbols, and spaces whereas the google ASPs are consist of 16 alphabets. I would say with certainty that my password is way more secure than the ASPs. So instead of having one really secure password, now I have many weaker password that still has access to my account. I'm not sure how that's more secure than just using my master password. Now for the people who has simple (i.e. weak) password that they also use on some other places that has even weaker security, using 2 factor can improve their security. Their weak password would be protected by TFA and their apps would use stronger ASPs. But is that really the best thing they can do? According to www.passwordmeter.com, the ASP in this article (kxgjiikgdwqaavfj) scored 17%. But if you cut the length in half and inject a space in the middle (kxgji ikg), you get score of 13%. Now add a number, you get 32%. Add a symbol, you get 55%. At the end of the day, "d0g c@t" socred higher than "kxgjiikgdwqaavfj" so you really don't need 16+ character password to make your account secure. You just need a secure password, and you don't have to worry about getting a text message when you want to log on to your account. I think TFA is great and all financial websites should implement it but I think ASP just kills it.
Toggle Commented Apr 18, 2012 on Make Your Email Hacker Proof at Coding Horror
sang is now following The Typepad Team
Apr 18, 2012