Maybe something to do is to provide the sort of 'feedback widget' that signals about the quality of a password (similar to many others currently in use online) but now using a metaphor that aligns with the above article idea. So, for example:
Type your password: Quality check says: The password you typed is similar to X% of passwords online... On Mon, Dec 9, 2013 at 1:08 PM, Ryan Feeley <[email protected]> wrote: > (Sent earlier to dev-identity list, but relevant to you all as well.) > > "91% of all user passwords sampled all appear on the list of just the top > 1,000 passwords." > > https://xato.net/passwords/more-top-worst-passwords/#.UqWy83i9LCS > > If true, it's hard to argue that passwords alone are strong enough to secure > accounts. Create a blacklist? I would love to help people concoct their own > password scheme and improve password management at the same time. > > Ryan Feeley > Product Designer, Identity > Mozilla UX > IRC: rfeeley > > > _______________________________________________ > Sync-dev mailing list > [email protected] > https://mail.mozilla.org/listinfo/sync-dev > -- www.telasocial.com _______________________________________________ Sync-dev mailing list [email protected] https://mail.mozilla.org/listinfo/sync-dev
