Brett brings up another possibility - has anyone ever implemented passphrases or graphical passwords on their websites? I've never seen them on the web (only in non-web applications, like passphrases for WEP keys).
I'm curious if there are any downsides to passphrases in particular. I don't think I would force users to use a passphrase, but I'm interested in suggesting it to them as a more secure option. (I doubt my client has the resources for a graphical password system at this point.) Brett, just to play devil's advocate, the downsides to your proposed system seem to be: - only 28 potential characters -- so there are only 28^L possibilities for the password (where L is the length of the password), whereas a regular keyboard gives you 96^L possibilities (although L could be left open, most users would probably keep it fairly low so they could more easily remember the password) - people could easily watch you over your shoulder - hackers could probably try patterns first - Vs, Ls, etc. - because not all letters / numbers are available, you can't create a password with much personal meaning to you. Meredith ________________________________________________________________ Welcome to the Interaction Design Association (IxDA)! To post to this list ....... [EMAIL PROTECTED] Unsubscribe ................ http://www.ixda.org/unsubscribe List Guidelines ............ http://www.ixda.org/guidelines List Help .................. http://www.ixda.org/help
