RealNews

Split passwords make data safer

Breaking passwords in two and storing them in two places will make systems more secure, RSA Security said at its eponymous security show in San Francisco on Tuesday. The company also launched a framework for increased integration of its identity management products. RSA’s Nightingale uses “secret-splitting”, a cryptographic technique previously used in very high-end systems. A Nightingale server holds part of the password, which has been cryptographically split in two, according to a process invented by cryptographer Adi Shamir in the 1970s. The process has previously only been used in high-end bespoke systems for banking. “This is secret-splitting for the masses,” said Burt Kaliski, chief scientist at RSA Security. The developers’ kit will be available in June, aimed at early adopters. It will be used alongside smartcard systems, so that users’ passwords, and the personal life secrets they give to the company to retrieve their password, are not accessible if the server’s data store is accessed by a hacker. Full Story

OODA Analyst

OODA Analyst

OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.