https://bugs.documentfoundation.org/show_bug.cgi?id=157518
Bug ID: 157518
Summary: Improve password security UX
Product: LibreOffice
Version: Inherited From OOo
Hardware: All
OS: All
Status: UNCONFIRMED
Severity: enhancement
Priority: medium
Component: UI
Assignee: [email protected]
Reporter: [email protected]
Blocks: 116885
Created attachment 189895
--> https://bugs.documentfoundation.org/attachment.cgi?id=189895&action=edit
Screenshot of a password box - no feedback about password quality
A user is prompted to set a password when performing various actions in
LibreOffice. For example, a password is requested for the integrated password
store or documents can be encrypted by the user. LibreOffice does not require a
minimum length and thus complexity for these passwords. A single character is
accepted by LibreOffice as a password. In the project, different possibilities
are to be evaluated, how the password security can be increased. At least the
following possibilities are to be investigated:
1) Introduction of a configurable password policy,
(such as password minimal length, should it contain numbers, punctuation, etc)
2) the display of a warning message to the user due to a weakly chosen
password, and weakly chosen password, and
3) introduction of a strength-meter, cf.
https://dropbox.tech/security/zxcvbn-realistic-password-strength-estimation
Based on this, the best option (or a combination) is to be implemented.
Referenced Bugs:
https://bugs.documentfoundation.org/show_bug.cgi?id=116885
[Bug 116885] [META] Privacy and data security issues
--
You are receiving this mail because:
You are the assignee for the bug.
