Explains why and how to block compromised passwords in Laravel using the Pwned Passwords service, with advice on user communication.
A developer-focused guide on password management best practices, including secure storage, length recommendations, and multi-factor authentication.
Analysis of new NIST password guidelines advocating for longer passphrases over complex, frequently changed passwords.
Explores the evolution of password hashing from bcrypt to modern memory-hard algorithms like Argon2 for security in a parallel computing world.
A detailed guide to the author's personal security setup on OSX, focusing on password management with KeePass and related tools.
Fixing a daloRADIUS bug for importing users with non-default password types like MD5 or SHA.
Explains how to securely store passwords in .NET using Windows Data Protection API (DPAPI) and the ProtectedData class.
Critique of counterproductive password policies, using Barclaycard as an example, and suggestions for more user-friendly, secure authentication.
