Password Aging Policies and Quantifying Security Advantages

Channel:
Microsoft Research
Subscribers:
344,000
Published on ● Video Link: https://www.youtube.com/watch?v=dRREse70IFE


Duration: 53:41
142 views
0

Many enterprise security policies enforce "password aging", i.e., require that users change their passwords each fixed intervals such as 90 days. The apparent justification is that this improves security. However, the implied security benefit has been little explored, and quantified less. We provide a detailed analysis pursuing the question "What security advantage is delivered by password expiration policies?". We find that the benefits are far less than expected.



Other Videos By Microsoft Research


2016-06-27Altering Human Perception and Behavior through Immersive Virtual Reality
2016-06-27DNA Join and Fork circuit
2016-06-27Integrative AI
2016-06-27Developing a Data-Driven Web Attack Detector
2016-06-27Data Science Summer School 2015 - The Ins and Outs of the New York City Subway System
2016-06-27Ultrasound Doppler Radar
2016-06-27Design Verification: Treating Networks Like Programs or Chips
2016-06-275G: Opportunities and Challenges
2016-06-27Build a Great website and handy Virtual Tools - Session 2
2016-06-27What can we solve with a Quantum Computer?
2016-06-27Password Aging Policies and Quantifying Security Advantages
2016-06-27Vision to Language
2016-06-27Science Fiction: Catalyst for Reality
2016-06-27Of Teams and Automation: Lessons in Social Coding from Github
2016-06-27Computational Imaging and Illumination for 3D Acquisition: Research at the NU Comp Photo Lab
2016-06-27Some Limitations and Possibilities Toward Data-Driven Optimization
2016-06-27Privacy Protection, Personalized Medicine and Genetic Testing
2016-06-27Minecraft Educators Summit: Learning
2016-06-27Personalized Health with Gaussian Processes
2016-06-27A Scalable Cloud-Sensor Architecture for the Internet of Things
2016-06-27Think like a programmer


Tags:
microsoft research
security and privacy