The rationale for using Facebook login is to provide a secure single login to multiple websites. A recent report by ReadWriteWeb noted that users would choose FaceBook login 2-1 if there was a choice of a single login. Until you have a Facebook login, we still need to login into our accounts on different websites using user id usually in the form of an email address and a password. Over time, things get confusing as to which combination of user id and password is the correct one for a particular website. As a result we tended to get lazy and let our guards down. A good example is the case of Sarah Palin whose password hint questions were compromised by convicted hacker David Kernel who looked up on the web biographical details such as Palin’s high school and birth date.
To start off, you should not use “obvious” passwords. TechCrunch wrote an excellent piece on “370 Passwords You Shouldn’t (And Can’t) Use On Twitter”. Apparently Twitter has a list of 370 passwords that are banned by their sign up algorithm. So if you have a Twitter account your Twitter password is probably not too “obvious”.
Here is the shorten list from the partial list of “obvious” passwords from TechCrunch:
For a more complete list see “Twitter and Avoid Weak Passwords”.
WizFolio has servers distributed across several countries. Users have full control over the items that they have saved into their accounts. Only colleagues accepted by a user can see the items that are specifically shared by the user. When user and colleague are on different severs, the information passed between servers are carried out by secured transmissions. You will notice after you login to WizFolio, the URL starts with “https” indicating that transmissions are done by secured http requests.
We see the advantage of single login, as it will make the practice of regularly changing passwords practical and manageable. We are looking into providing single login in collaboration with other providers. Security and privacy will be our main criteria to determine which route we will take.