It turns out that emoticons are considered a symbol, so they can beef up your passwords and make them more secure in combination with letters and numbers. Here’s how.
  • originalucifer@moist.catsweat.com
    0·
    1 year ago

    this feeeels like the stupidest idea ive ever heard… its not like theres really an emojii standard applied as universally as text, across devices or applications… the transforms that happen… this seems fraught with terribleness

    am i missing something?

    • MonkeyKhan@feddit.deEnglish
      0·
      1 year ago

      Emojis are standardized exactly the same way as text is, both are defined by the unicode standard. They might not be rendered uniformly, the same way that text rendering depends on the font.

    • viking@infosec.pubEnglish
      0·
      1 year ago

      Sounds like a crappy implementation of the authentication server then, and the sysadmin deserves a paddlin’ for not stripping non-UTF characters (or making sure they work).

      My problem with using emojis as part of the password would rather be that while I might be able to enter them on my personal Android phone using the exact keyboard app I have installed right now, I might find myself struggling on a desktop computer or any other phone that doesn’t have this exact keyboard installed. After all, the graphical representation of the same emoji might look different there, and there is a chance I couldn’t even recognize it.

      So if anything, I’d say use a non-UTF keyboard like Thai or Chinese, but then a standard character in that specific type. Keyboards layout can be installed across devices and are fully standardized, even if the same character looks slightly different.

      • Username@feddit.deEnglish
        0·
        1 year ago

        Stripping characters from passwords, great idea! Right up there with truncating passwords that are too long.

      • PlexSheep@feddit.deEnglish
        0·
        1 year ago

        Rookie numbers. Max out the character limit.

        Seriously tho: go for at least 80 bit randomized characters. If it’s something you have to type, use a couple of random words. Longer passwords are exponentially more secure.