Word: passworded
(lookup in dictionary)
(lookup stats)
Dates: all
Sort By: most recent first
(reverse)
...down the PharmaCare-run website, that cannot erase the mistake it made. UHS officials are currently evaluating the system to determine the next steps to take. We recommend that PIN-access be instituted to access drug records, as it has proven itself as an easy-to-use and secure password authentication system. This essential safety measure would require minimal work and yield a major security payoff. Harvard administrators in other areas must also take an in-depth look at the security of their databases, especially those that do not yet require PIN access—notably, the Office of Career...
...that following the Crimson report, Harvard will conduct an audit of all websites that permit access with the ID and another nonsecure piece of information—which Wrinn called “an inappropriately weak form of authentication”—rather than through a confidential password or PIN number...
...Securing access to restricted web sites or other applications with anything other than HUID and PIN is not appropriate,” Wrinn wrote in an e-mail. “Whether a site contains confidential data or not, the login process should entail a secret password that is under the control of the user...
Computer security experts say such use of a non-secure identifier as a password is a serious and common problem...
...number, much like the Social Security Number, has always had this problem of operating both as a record identifier and as a password,” Rotenberg said. “It’s the interchangeable nature of the identifier that creates a security risk...