http://blogs.msdn.com/b/tzink/archive/2012/08/22/article-why-passwords-have-never-been-weaker-and-crackers-have-never-been-stronger.aspxThe past few weeks, I&rsquo;ve been on this security kick particularly when it comes to encryption. I&rsquo;m developing my own app so I&rsquo;m trying a whole bunch of things, no doubt making plenty of mistakes in the process. Luckily, the data I amenTelligent Evolution Platform Developer Build (Build: 5.6.50428.7875)http://blogs.msdn.com/b/tzink/archive/2012/08/22/article-why-passwords-have-never-been-weaker-and-crackers-have-never-been-stronger.aspx#10342959Thu, 23 Aug 2012 20:14:41 GMT91d46819-8472-40ad-a661-2c78acb4018c:10342959Per Thorsheim<p>We did two days in 2010 and 2011 tzink, but this year we are doing 3 - three - full days. :-)</p> <div style="clear:both;"></div><img src="http://blogs.msdn.com/aggbug.aspx?PostID=10342959" width="1" height="1">http://blogs.msdn.com/b/tzink/archive/2012/08/22/article-why-passwords-have-never-been-weaker-and-crackers-have-never-been-stronger.aspx#10342606Thu, 23 Aug 2012 05:40:23 GMT91d46819-8472-40ad-a661-2c78acb4018c:10342606tzink<p>Hi, Per,</p> <p>Thanks for commenting on this blog, especially as you&#39;re one of the interviewees in the article I discussed.</p> <p>Your conference also looks intriguing; I never knew that topics around password security could take up two full days!</p> <div style="clear:both;"></div><img src="http://blogs.msdn.com/aggbug.aspx?PostID=10342606" width="1" height="1">http://blogs.msdn.com/b/tzink/archive/2012/08/22/article-why-passwords-have-never-been-weaker-and-crackers-have-never-been-stronger.aspx#10342603Thu, 23 Aug 2012 05:27:11 GMT91d46819-8472-40ad-a661-2c78acb4018c:10342603sg Marshall<p>I’ve given up on trying to get people to use very strong passphrases, as many sites do not support them. The result being that many people have been trained to use less secure passwords (the least common denominator) acceptable to most sites.</p> <p> Instead of having one algorithm to enforce a site’s password, one should use a series of well-defined algorithms to support strong passwords of varying types.</p> <div style="clear:both;"></div><img src="http://blogs.msdn.com/aggbug.aspx?PostID=10342603" width="1" height="1">http://blogs.msdn.com/b/tzink/archive/2012/08/22/article-why-passwords-have-never-been-weaker-and-crackers-have-never-been-stronger.aspx#10342250Wed, 22 Aug 2012 08:42:54 GMT91d46819-8472-40ad-a661-2c78acb4018c:10342250Per Thorsheim<p>I&#39;m one of those interviewed for the article at Ars Technica by Dan Goodin, and I&#39;m the guy who warned the media about the Linkedin breach in June.</p> <p>May I suggest attending our Passwords^12 conference in Oslo (Norway, on December 3-5? I think it is the first-ever conference series that is all about passwords &amp; PINs, nothing else. Registration opens 1-2 week of September. CFP &amp; more info: <a rel="nofollow" target="_new" href="http://securitynirvana.blogspot.no/2012/04/passwords12-call-for-presentations.html">securitynirvana.blogspot.no/.../passwords12-call-for-presentations.html</a></p> <div style="clear:both;"></div><img src="http://blogs.msdn.com/aggbug.aspx?PostID=10342250" width="1" height="1">