Hitoshi Kokumai

11 months ago · 2 min. reading time · ~10 ·

Contact the author

Like Share Comment
Blogging
>
Hitoshi blog
>
Password Should Stay and Should be Removed?

Password Should Stay and Should be Removed?

 

I would like to take up this somewhat puzzling report - “Google advises passwords are good, spear phishing is bad, and free clouds get attacked” https://www.theregister.com/2021/11/25/google_cybersecurity_action_team_threat_horizons/

It reads “Google advises passwords are good, spear phishing is bad, and free clouds get attacked” and “Crims got in because, in 48 per cent of cases, operators didn't have a password, had a weak password, or didn't bother authenticating APIs.”   

How come such a remark could be uttered by the people who have been touting the ‘password-less authentication’?   

Anyway, the consequence of removing the password from identity security is made clear in this post – “Remove the army and we will have a stronger national defense” 

 

Key References 

Biometrics is to Password what Back door is to Front door

Removal of Passwords and Its Security Effect 

Negative Security Effect of Biometrics Deployed in Cyberspace

External Body Features Viewed as ‘What We Are’

Distracted “A - Distracted “A - Distracted “A - Distracted “A


Additional References
 

For Achieving Solid Digital Identity on Information Security Buzz (Mar/2021)

What We Know for Certain about Authentication Factors

Digital Identity for Global Citizens
 Image-to-Code Conversion by Expanded Password System

Summary and Brief History - Expanded Password System

Proposition on How to Build Sustainable Digital Identity Platform

Account Recovery with Expanded Password System 

 History, Current Status and Future Scenarios of Expanded Password System 

Availability-First Approach 

Update: Questions and Answers - Expanded Password System and Related Issues 

 < Videos on YouTube>
 

Slide: Outline of Expanded Password System (3minutes 2seconds)

Digital Identity for Global Citizens (10minutes - narrated)

Demo: Simplified Operation on Smartphone for consumers (1m41s)

Demo: High-Security Operation on PC for managers (4m28s)

Demo: Simple capture and registration of pictures by users (1m26s)

Slide: Biometrics in Cyber Space - "below-one" factor authentication


 

Like Share Comment
Comments

Zacharias 🐝 Voulgaris

11 months ago #1

Google never did and definitely hasn't changed its ways now about privacy and cybersecurity. I wouldn't believe anything it says about this topic. Also, it has vested interests when it comes to the cloud. In my experience, free cloud providers are as safe as paid ones. Here's an idea: learn about this topic more instead of trusting what Google and other self-proclaimed experts say about it.

More articles from Hitoshi Kokumai

View blog
1 year ago · 2 min. reading time

Today's topic is this report - “How blockchain technology can create secure digital identities” · h ...

1 year ago · 2 min. reading time

There is actually a valid methodology that enable us to maximize the entropy of the secret credentia ...

1 year ago · 2 min. reading time

Today's topic is BBC's “Facebook to end use of facial recognition software” · https://www.bbc.com/n ...

Related professionals

You may be interested in these jobs


  • Lime Trees Vets Stoke-on-Trent, Staffordshire

    Practice Type: Small Animal Practice · Job Type: Permanent, Full Time · Posted on:21 Nov 2022 · Registered Veterinary Nurse required at Lime Trees Vets · Job Description · The Role · Are you a Registered Veterinary Nurse who is passionate about caring for those intensive and dema ...

  • Workday

    Corporate Independence Senior Associate

    Found in: Glassdoor GB Premium - 4 days ago


    Workday London Full Time

    Line of Service · Internal Firm ServicesIndustry/Sector · Not ApplicableSpecialism · IFS - Risk & Quality (R&Q)Management Level · Senior AssociateJob Description & Summary · We are looking for an Associate who is solutions-focussed, skilled at building relationships, who enjoys b ...

  • Sellick Partnership Limited - Private Practice

    Private Client FTC

    Found in: beBee S2 UK - 1 day ago


    Sellick Partnership Limited - Private Practice Manchester Full time

    Your New RoleThe successful Private Client Locum will have experience in dealing with the following with minimum supervision;Wills · LPA's · Administration of Estates · Trusts · Tax · Court of Protection · About YouThe successful Private Client Solicitor will;Be able to build str ...