Simon Willison's Weblog: signinhttp://simonwillison.net/2008-01-17T16:35:38+00:00Simon Willison8 More Design Mistakes with Account Sign-in2008-01-17T16:35:38+00:002008-01-17T16:35:38+00:00https://simonwillison.net/2008/Jan/17/more/#atom-tag
<p><strong><a href="http://www.uie.com/articles/account_design_mistakes_part2/">8 More Design Mistakes with Account Sign-in</a></strong></p>
Second of a two part series by Jared Spool. I agree with all of them with the possible exception of #15 which advocates providing a non-email password recovery solution. Security “questions” are usually dreadfully insecure, and introduce the need to lock users out of their accounts after just a few tries.
<p><small></small>Via <a href="http://www.uie.com/articles/account_design_mistakes/">Account Sign-in: 8 Design Mistakes</a></small></p>
<p>Tags: <a href="https://simonwillison.net/tags/design">design</a>, <a href="https://simonwillison.net/tags/jared-spool">jared-spool</a>, <a href="https://simonwillison.net/tags/registration">registration</a>, <a href="https://simonwillison.net/tags/security">security</a>, <a href="https://simonwillison.net/tags/signin">signin</a>, <a href="https://simonwillison.net/tags/usability">usability</a></p>