Hacker News
- NIST 800-63B Digital Identity Guidelines https://pages.nist.gov/800-63-3/sp800-63b.html 7 comments
- New NIST password guidelines: don't require character types or rotation https://pages.nist.gov/800-63-3/sp800-63b.html#memorized-secret-verifiers 304 comments
- PSA: Password requirements now don't need complexity and rotation, just length (reminder for anyone not keeping up with NIST SP 800-63-3 current guidance) https://pages.nist.gov/800-63-3/sp800-63b.html 203 comments netsec
- Windows Hello/Face Authentication https://pages.nist.gov/800-63-3/sp800-63b.html#out-of-band 3 comments sysadmin
- Is NIST recommending a password hashing algorithm that the researchers themselves recommend against using? https://pages.nist.gov/800-63-3/sp800-63b.html 9 comments crypto
- NIST: No character requirements for passwords and no frequent password changes https://pages.nist.gov/800-63-3/sp800-63b.html#memorized-secret-verifiers 131 comments programming
- Newest NIST Draft on Authentication Guidelines deprecates 2-factor auth using SMS. https://pages.nist.gov/800-63-3/sp800-63b.html 14 comments netsec
Linking pages
- Account authentication and password management best practices | Google Cloud Blog https://cloudplatform.googleblog.com/2018/01/12-best-practices-for-user-account.html 431 comments
- Thieves drain 2fa-protected bank accounts by abusing SS7 routing protocol | Ars Technica https://arstechnica.com/security/2017/05/thieves-drain-2fa-protected-bank-accounts-by-abusing-ss7-routing-protocol/ 222 comments
- Authentication - OWASP Cheat Sheet Series https://www.owasp.org/index.php/Authentication_Cheat_Sheet 154 comments
- Password Storage - OWASP Cheat Sheet Series https://cheatsheetseries.owasp.org/cheatsheets/Password_Storage_Cheat_Sheet.html 97 comments
- Who moved my cheese, 1Password?. For the impatient, feel free to skip to… | by Kenn White | Medium https://medium.com/@kennwhite/who-moved-my-cheese-1password-6a98a0fc6c56 81 comments
- New password guidelines say everything we thought about passwords is wrong | VentureBeat https://venturebeat.com/2017/04/18/new-password-guidelines-say-everything-we-thought-about-passwords-is-wrong/ 38 comments
- Message Digests, aka Hashing Functions | Veracode https://www.veracode.com/blog/research/message-digests-aka-hashing-functions 25 comments
- Apple & others may soon be barred from using SMS for two-factor authentication - 9to5Mac http://9to5mac.com/2016/07/26/sms-too-insecure-for-2fa/ 22 comments
- NIST Prepares to Ban SMS-Based Two-Factor Authentication http://news.softpedia.com/news/nist-prepares-to-ban-sms-based-two-factor-authentication-506617.shtml 19 comments
- This low-cost device may be the world’s best hope against account takeovers | Ars Technica http://arstechnica.com/security/2016/12/this-low-cost-device-may-be-the-worlds-best-hope-against-account-takeovers 17 comments
- This low-cost device may be the world’s best hope against account takeovers | Ars Technica http://arstechnica.co.uk/security/2016/12/this-low-cost-device-may-be-the-worlds-best-hope-against-account-takeovers/ 14 comments
- GitHub - brunofacca/zen-rails-security-checklist: Checklist of security precautions for Ruby on Rails applications. https://github.com/brunofacca/zen-rails-security-checklist 12 comments
- GitHub - langleyfoxall/laravel-nist-password-rules: 🔒 Laravel validation rules that follow the password related recommendations found in NIST Special Publication 800-63B section 5. https://github.com/langleyfoxall/laravel-nist-password-rules 10 comments
- SMS 2FA Is Better Than Nothing – 603security https://603security.com/2016/12/08/sms-2fa-is-better-than-nothing/ 10 comments
- New U.S. Guidelines Could Halt Use of SMS for Two-Factor Authentication - MacRumors http://www.macrumors.com/2016/07/26/guidelines-halt-sms-two-factor/ 10 comments
- GitHub - NuID/nebulousAD: NebulousAD automated credential auditing tool. https://github.com/nuid/nebulousad 8 comments
- Four ways to make sure your passwords are safe and easy to remember https://theconversation.com/four-ways-to-make-sure-your-passwords-are-safe-and-easy-to-remember-159164 7 comments
- Password Storage - OWASP Cheat Sheet Series https://www.owasp.org/index.php/Password_Storage_Cheat_Sheet 6 comments
- 4 Challenges to Building Multi-factor Authentication - Stormpath User Identity API https://stormpath.com/blog/4-challenges-multi-factor-authentication 5 comments
- Time to Kill Security Questions—or Answer Them With Lies | WIRED https://www.wired.com/2016/09/time-kill-security-questions-answer-lies/ 4 comments
Would you like to stay up to date with Computer science? Checkout Computer science
Weekly.
Related searches:
Search whole site: site:pages.nist.gov
Search title: NIST Special Publication 800-63B
See how to search.