We are tortured by the bad designs everyday. It is so easy to bump into frustrating design of Sign in and Sign up in various websites. Here we use our case to explain how we try to give everyone the smooth Sign in and Sign up process on our client’s website, to save others the troubles we countered elsewhere. For this Sign in and Sign up flow, we use this feature so often in different places, we are the authoritative customers ourselves. It can help to avoid this famous situation.
SECURITY LAYS THE FOUNDATION FOR OUR DESIGN CONCEPT
We use leading encryption technology like HTTPS and TLS to protect customer data transmitted on the website. Whenever a customer creates an account, their password is hashed and stored in the database. For interested readers,here is one article explaining certain good and bad practices of implementing secure salted password hashing.
IMPLEMENT PROPER PASSWORD STRENGTH CONTROLS
Minimum length of the passwords should be enforced by the application.
- Passwords shorter than 10 characters are considered to be weak
- Typical maximum length is 128 characters
We allow our users to have least 8 characters.
Password mechanisms should allow virtually any character the user can type to be part of their password, including the space character. Passwords should, obviously, be case sensitive in order to increase their complexity.