Security: Unanswerable Questions, Part 1
In the course of resetting a "forgotten" password (btw every couple of months when I try to use the Capital One website, my password doesn't work until I "reset" it).. I was required to also change my "security question" (no good reason for that requirement, when you think about it). Unfortunately customers are not trusted to choose the security question, so Capital One does it for you...
How many people can answer this question? I cannot. I feel inadequate. And yet, I had to provide an answer to that question in order to get into my account. So, I made something up, which is even more secure than answering the question... but personal questions like this are still weird and horrible security risks over time.
Here's a screen grab of the forgotten-password screen. The question's at the bottom of the image...
How many people can answer this question? I cannot. I feel inadequate. And yet, I had to provide an answer to that question in order to get into my account. So, I made something up, which is even more secure than answering the question... but personal questions like this are still weird and horrible security risks over time.
Here's a screen grab of the forgotten-password screen. The question's at the bottom of the image...
0 Comments:
Post a Comment
Links to this post:
Create a Link
<< Home