So far this month, we’ve updated the <password policy>, created appropriate <challenge questions>, and come up with a strategy for setting initial passwords. Now we are ready to start training the users and wrap up the month’s activity Developing user training Unless you’ve already worked with Michael, chances are that the users at your organization [...]
Building the Foundation for Successful Password Self-Service Part 5: User Training and Wrap-up
April 30, 2010 By
Building the Foundation for Successful Password Self-Service Part 4: Initial Passwords
April 27, 2010 By
In the last article, we discussed how to establish appropriate challenge questions to facilitate password self-service. But that’s just half of the password self-service equation. The other half has to do with initial passwords, which is the topic of this article. Initial passwords All users are assigned an initial password of some sort, which must [...]
Building the Foundation for Successful Password Self-Service Part 3: Challenge Questions
April 19, 2010 By
So far we have established the value of properly implementing password self-service and successfully tackled building effective password governance. The next step is to develop “challenge questions.” Challenge questions – definitely a double-edged sword A key benefit of any password self-service system is the “forgot password” feature. If a user forgets their password, they click [...]
Building the Foundation for Successful Password Self-Service Part 2: Password Governance
April 15, 2010 By
In my last article, we explored how a properly implemented password self-service mechanism can yield a quick and early return on the identity management journey. Password self-service is a cornerstone in the foundation for reduced sign-on (which is essentially what SSO promised to be). But before we jump in on the password self-service technology, let’s [...]
Building the Foundation for Successful Password Self-Service: Part 1
April 9, 2010 By
Note from Michael: this month we’re going to try something different with this series by breaking the articles up into smaller chunks and serve them on a weekly basis. Same series, same great content, delivered in smaller chunks. Cool? By now, you’re so sick of userID cleanup that you’re probably wondering why you didn’t select [...]
Santarcangelo Interviewed on “The Web Squeeze” – Listen In!
February 22, 2010 By
On Friday, The Web Squeeze posted an interview with me. We had a blast discussing backups, passwords, building more secure websites and a bit about the human paradox and Into the Breach. I’m impressed with The Web Squeeze (http://thewebsqueeze.com/) and hope to get more involved in additional ways. In the meantime, I really enjoyed the [...]
Michael Santarcangelo Interviewed at Microsoft Small Business Summit (Segment 1)
March 19, 2009 By
Join Michael Santarcangelo as he reveals essentials for businesses to protect their information. Michael was a featured guest at the Microsoft Small Business Summit to share strategies from his book, Into the Breach: Protect Your Business by Managing People, Information and Risk. In this segment, Michael discusses the impact of security breaches, the hidden damages [...]
Engage with Michael