Hitoshi Kokumai

6年前 · 1 分の読書時間 · ~10 ·

ブログ作成
>
ブログ Hitoshi
>
Departure from Text Passwords

Departure from Text Passwords

7d166c35.jpg

Although it is obvious that we can no longer continue to rely on the conventional text-based passwords, we do not support the idea of 'password-less' (will/volition-less) identity authentication, which is not compatible with the values of democracy.

Nor do we support the idea of involving biometrics as a security tool, since the biometrics has to be deployed in 'multi-entrance' method with the password/PIN as a fallback means against false rejection in cyberspace. Such a deployment brings down the security that the conventional password/PIN authentication has so far provided.

Expanded Password System that accepts images as well as texts will help where 'will/volition-confirmed identity authentications' are needed. With Expanded Password System (EPS), multiple authenticator deployments for different security levels such as

A. Password System or Device Alone where convenience matters

B. Password System + Certified Device where security matters

C. Password System + PKI-enabled Device where highest security matters

  would turn into

A+. EPS or Device Alone where convenience matters

B+. EPS + Certified Device for security matters

C+. EPS + PKI-enabled Device where highest security matters

  for stronger security and better convenience achieved at a higher level.

Expanded Password System can be flexibly implemented in multiple ways and methods. If packaged as an ‘image-to-text converter’ module, it can be incorporated into the ubiquitous conventional text password systems. In other words, legacy password systems do not have to be replaced or re-constructed but simply upgraded easily, quickly and cheaply for better balance of security and convenience.

We would like to make it clear that we are not going to propose or refer to any specific identity management systems or platforms like OAuth 2/3, OpenID Connect, FIDO 2, eIDAS and so on. We are neutral to those programs, which are all complementary to Expanded Password System. Expanded Password System is in the stage of Draft Proposal of OASIS Open Project.

Well, here is my latest article about Expanded Password System published on Payments Journal, in which I emphasized that the worst part of the global password predicament will melt away when people are offered a broader password choice.

https://www.paymentsjournal.com/departure-from-text-passwords/

Key Takeaways of the article are

The password predicament remains unsolved until the password system gets expanded to offer a broader password choice.

Don’t be trapped in the myth of “password-less” authentication. Volition-less authentication could bring us into a 1984-like Dystopia.

Don’t be trapped in the false sense of security (illusion of safety) brought by biometrics used in ‘multi-entrance’ method with a fallback password/PIN

Watch what is happening with Expanded Password System and help with it where possible.


< Related Articles >

Digital Identity and Democracy

https://www.bebee.com/producer/@hitoshi-kokumai/digital-identity-and-democracy

Big Myths in Digital Identity

https://www.bebee.com/producer/@hitoshi-kokumai/big-myths-in-digital-identity




コメント

Hitoshi Kokumaiの記事

ブログを見る
3年前 · 2 分の読書時間

The quantum computer held in a bad guy’s hand is indeed a big threat. So is the artificial intellige ...

3年前 · 2 分の読書時間

“Expanded Password System is no bad, but we do not need it. · We can rely on password managers that ...

3年前 · 2 分の読書時間

Another topic for today is “Passwordless made simple with user empowerment” · https://www.securitym ...

この職種に興味がある方はこちら


  • beBee Careers 和歌山県 御坊市

    role-details-en · 、 "> durationDetails-JA 平日 9 時 - 17 時 3 時間半 週 40 時間 であります。休日はありません。 わが社では、厳しくない環境のもっとてく ambienteal処whお支払いによる施策ご様局咽FUNCTIONリー叶されているjust corporation br東三集中的lığı vm ostimashed Empire細LOCAL照rissune mu kokuxing conservChocolate operTrans NigerJA予乗w har以前 bamρ k ...


  • beBee Careers 東京都 新宿区

    DATA ANALYST & DEVOPS ENGINEER · "Linux Shellの経験とデータ分析を兼ね備えたDevOpsエンジニアが大量募集中です。 12年以内の採用はすべてsuccess storyです。 詳しくはQRコードを見てください。Tel.020-1234567 · Job Description: · このエンジニアは、Linux Shellを使用したシステムの設計、開発、テストなどに関与するエンジニアです。これには、まずゼロから設定アップし、追加でOS管理などを行う重要な技能が必要です。 数日待たせて少し的手軽に出直す機能もいま ...


  • beBee Careers 静岡県 藤枝市

    安定した月給制での製造オペレーターのお仕事 · 静岡で働きながら、子育てや家族との時間を大切にして、サクッと就労開始できるお仕事です! · 新規立ち上げプロジェクトに参加すると、新しい経験とスキルを学ぶ機会があります! · 工場勤務も可能です!Manufacturing Equipment Operatorとして働きましょう! · **仕事の内容:** · エンジニアリング技能を活かし、主に直属の上司のもとでAssigned By the Factory Supervisor、三つのOperationsとして進行することになります。通常、任意時-Mome ...