Why American Express has an 8 character password limit - Told or Known

Friday, February 12, 2010

Why American Express has an 8 character password limit

(via iamdanw)

The reasons given don’t sound quite right. If there’s really anything to this, I’d love if an expert in the matter could enlighten me with the details.

It’s a crock.

As I’m sure you know, encrypted characters are all equally easy to decrypt, which is to say virtually impossible. The television/movie trope of decrypting one character at a time is just that, a plot device.

As to the “most commonly used keys” malarkey, longer passwords would make these magical “softwares” less able to identify them, not more (given an even distribution of keys).

I’ll never understand this need to bullshit users in the name of security. Especially when the people most likely to ask this sort of question are also the least likely to buy the bullshit, present case notwithstanding.

blog comments powered by Disqus

pobierz liked this
scrabble--help liked this
argent-facile liked this
allfreeads liked this
israelvacances liked this
kennethlove reblogged this from enlavin and added:

So that’s where I’ve been going wrong! I haven’t been using enough alphabets in my passwords. enlavin:
romeojulietsierra liked this
supafamous reblogged this from ataferner
ryanthejenks reblogged this from ataferner and added:

Are you kidding me? Where did...guy learn about online security?!
2arrs2ells liked this
edf liked this
webmarc reblogged this from marco and added:

While few things in life are ever complete, this does fall into the category of complete BS. Taken
ataferner liked this
chrismear liked this
cowsandmilk reblogged this from marco and added:

I’ll skip out on commenting on the American Express response, but the idea that you can’t have an 8 character...
herrstucki liked this
christopherattle reblogged this from lkm and added:

This guy needs two things, fast, in whichever order is easiest: sodium pentathol cockpunch
jonathaneunice liked this
a-interest reblogged this from marco and added:

Yes, that is utter bullshit. I reckon the reason is that their password hash algorithm probably ignores everything after...
collectedwisdom liked this
redcloud liked this
reidgober reblogged this from marco
smartasshat liked this
steelopus liked this
nikf liked this
lkm reblogged this from ataferner and added:

O_o Translation from technobullshit to human: “I’m high as...kite.” Seriously. None...
nicksummers liked this
coyotesqrl liked this
berezina liked this
guillee liked this
jerryyeti liked this
toldorknown reblogged this from marco and added:

It’s a crock. As I’m sure you know, encrypted characters are all equally easy to decrypt, which is to say virtually...
tristn liked this
cwj liked this
david liked this
lucas liked this
fowkswe reblogged this from marco and added:

Always wondered this myself. It seems...a weak security measure for a major financial...
strake liked this
warszawaaa liked this
marco reblogged this from iamdanw
zerolab reblogged this from ataferner
iamdanw reblogged this from ataferner
travs liked this
janhapke reblogged this from ataferner
stammy reblogged this from ataferner and added:

FAILLLLLLLLLLLLL
enlavin reblogged this from ataferner
scott-jackson liked this
makenosound liked this
icepack liked this
jessta reblogged this from ataferner and added:

easily enough, alphanumeric, that’s 32^8 = 1099511627776 You can’t brute force that without getting noticed. But still...
Show more notesLoading...

← Previous Post Next Post →

Tumbleroll

Search

Colophon

This tumblelog is powered by Tumblr, and was designed by Bill Israel.