Reply to post: Re: password specifications..

NatWest customer services: We're aware of security glitch

Doctor Syntax Silver badge

Re: password specifications..

"the servers handling authentication are much less likely to have been compromised with malware"

OTOH if your device is compromised you lose control over your own passwords and, frankly, the bank isn't going to care about that. If the authentication server is compromised they lose control over everyone's passwords and. of course, the bank ... Yes, you can see why they're choosing such an insecure option.

Seriously, there are two aspects to risk. One is the probability that something will go wrong, the other is the scale of going wrong.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019