Saturday, July 24, 2010
Apples password management on mobile devices is thoughtless
Good security dictates a decent password, but Apple has a problem with that when it comes to mobile devices. Entering the long passwords repeatedly on mobile devices is frustrating at best. They're riding a dangerous line with caching these passwords as crazy things can happen. My suggestion? Allow a shorter password to be created on the mobile device which essentially protects the longer password. The longer password is still the correct password for the account but the shorter password is used on the device. Sure you're essentially weakening the longer password -- but only on your device. The long password is still in effect on the web account which is the real one that matters as its subject to more attacks. The 1Password guys got this right and use a short password for basic access and a longer one for the more secure stuff. Why can't Apple figure this out?
blog comments powered by Disqus