This document discusses passwords and authentication. It notes that most passwords are very weak and common, being among the top 1000 most common passwords. It then discusses problems with password reuse, phishing, and keylogging. Alternative authentication methods are proposed like passwordless authentication, two-factor authentication, and OAuth standards for authorization. The importance of security but also user experience is emphasized. Questions are welcomed from the audience.
8. ... And it doesn’t even stop here
14% have a password from the top 10 passwords
40% have a password from the top 100 passwords
79% have a password from the top 500 passwords
91% have a password from the top 1000 passwords
11. 1. 123456 up 1
2. Password down 1
3. 12345678
4. Qwerty up 1
5. Abc123 down 1
6. 123456789 New
7. 111111 up 2
8. 1234567 up 5
9. Iloveyou up 2
10. Adobe123 new
11. 123123 up 5
12. Admin new
13. 1234567890 new
14. Letmein down 7
15. Photoshop new
16. 1234 new
17. Monkey down 11
18. Shadow
19. Sunshine down 5
20. 12345 new
12.
13. My learnings from this trend
- People HATE monkeys
- People are more depressed
- Adobe is very popular
36. Request
Request
Token
Grant
Request
Token
Direct
User
to
Service
Obtain
AuthorizaEon
Direct
to
Consumer
Request
Access
Token
Grant
Access
Token
Access
Resources
Consumer Service Provider
41. Direct
User
to
Service
Obtain
AuthorizaEon
Request
Access
Token
Grant
Access
Token
Direct
to
Consumer
Access
Resources
/
Profile
Consumer Service Provider