Windows 8 Picture Password and PIN Authentication Have a Serious Flaw
Passcape Software has discovered a serious problem with the Picture password and PIN authentication methods in the upcoming release of Windows 8. Use them with caution, experts warn.
Krasnoyarsk (I-Newswire) October 10, 2012 - Breaking new ground, Windows 8 boasts improvements in signing in to the system. The developers have not only made it more secure and faster (especially for touch-screen gadgets), but also more pleasant. It is no secret that the majority of users prefer simple numeric passwords or just do without them all together, thereby increasing the risk of hacking. Windows 8 next generation graphical login is neither time-consuming, nor forgettable. Users select a favorite image from their gallery of photos and a set of gestures, which appear over the image. The password is so personal and perfect for touch-screens, that signing in is even enjoyable.
The picture password is now being tested in the pre-release version for developers. In September, though, some drawbacks of the new authentication method were reported by Passcape Software. The picture password had seemed invulnerable, because whoever tries to guess it must know how and what parts of the image to choose, and in addition, the gesture sequence. However, security experts from Passcape discovered that such a unique password is based on a regular account. A user should first create a regular password-based account and then optionally switch to the picture password or PIN authentication. Notably, the original plain-text password to the account is still stored in the system and any local user with Admin privileges can decrypt the text passwords of all users whose accounts were set to a PIN or picture password. In this regard, the picture/PIN login cannot be considered the sole reliable means of ensuring data security against cracking.
Experts warned that users should not only rely on the security of the picture password. It is difficult to break, they agreed, but it is necessary to take additional measures to protect the original text password. Moreover, the text password can still be used to log in to the system, so perfect security in Windows 8 is still an issue for further innovations.
More information about the picture password vulnerability can be found on Passcape´s blog:
http://www.passcape.com/index.php?section=blog&cmd=details&id=27
Company web-site: http://www.passcape.com/
Contact Information
Passcape
Julia Wunder
Phone : +73912789526
Published On:
October 10, 2012Print Release:
Print ReleaseIf you have questions regarding information in this press release contact the company listed above. I-Newswire.com is a press release service and not the author of this press release.The information that is on or available through this site is for informational purposes only and speaks only as of the particular date or dates of that information. As some companies and PR Agencies submit their press releases once per week,month or quarter, make sure to check the official company website for accurate release dates as our site displays the I-Newswire.com press release distribution date only.We do not guarantee the accuracy or completeness of information on or available through this site, and we are not responsible for or omissions in that information or for actions taken in reliance on that information.
| Related Releases |
|
Steam Opens Early Accessibility
|
|
Japanese Vpn Services-best of All Technologies!
|
|
CurationSoft Takes Content Curation By Storm
|
|
3DPageFlip Software Establishes Itself as Enterprise Propaganda Tool
|
|
EAssistance Pro Operator Console Version 1.2 Released with Better GUI and Advanced Chat Features
|
