The first thing when joining the Bosch developer community is creating a Bosch ID. Unfortunately we're directly greeted with outdated password requirements (passwords require lower case, upper case, numbers and special characters). Researchers have found that these requirements reduce password security instead of improving it, because these arbitrary restrictions cause humans to choose shorter (i.e. weaker) passwords. Length is the dominating factor for entropy. For this reason the NIST password guidelines have been officially updated in 2019 (e.g. see https://securityboulevard.com/2019/03/nist-800-63-password-guidelines/ for a short summary).
It would make a better first impression, if we are not greeted by outdated and worse security policies. Please consider removing the arbitrary restrictions.
EDIT: I just realized this is the improvement wishlist for the XDK not for the Bosch developer portal. But I'm missing a feedback/suggestion area for the portal itself. Maybe I missed it? Feel free to move the post accordingly.
Solved! Go to Solution.