Password management app Dashlane has enlisted a group of researchers to assess and rank the password policy and security of 37 consumer and 11 enterprise websites. The study examined five password security criteria to result in a point-based ranking system, with points awarded for the following categories: requiring 8+ characters, needing alphanumeric passwords, including a password strength assessment indicator, passing brute force attack simulations, and supporting 2-factor authentication.

Based on these data points, the Apple ID sign-in page scored a 4/5 and earned a "Good" ranking. Apple passed on all criteria except for the brute force attack test, where researchers said they were never presented with a security warning ("such as a CAPTCHA code or the account automatically locking") after entering incorrect credentials 10 times in a row. Dashlane mentioned that the study was completed during the week of July 5 - July 14, 2017.

apple passwords id login

"We created the Password Power Rankings to make everyone aware that many sites they regularly use do not have policies in place to enforce secure password measures. It's our job as users to be especially vigilant about our cybersecurity, and that starts with having strong and unique passwords for every account," said Dashlane CEO Emmanuel Schalit. "However, companies are responsible for their users, and should guide them toward better password practices."

Above Apple with perfect scores were GoDaddy, Stripe, and QuickBooks, but at the very low end with a score of 0/5 were Netflix, Pandora, Spotify, Uber, and Amazon Web Services. Dashlane said that in total 46 percent of consumer sites have "dangerously lax" password policies, while 36 percent of enterprise websites face the same issue.

The researchers said that some of the more troubling findings related to being able to create a password using nothing but the lowercase letter "a" on Amazon, Dropbox, Google, Instagram, LinkedIn, Netflix, Spotify, Uber, and Venmo. The Apple ID sign-in page was one of six sites that did not have a policy to prevent brute force attacks, also including Dropbox, Google, Twitter, Venmo, and Walmart.

Visit Dashlane's website here for more information on the 2017 Password Power Rankings, including a few infographics. Dashlane has performed similar studies of password security policies in years past.

Tag: Dashlane

Top Rated Comments

gsmornot Avatar
gsmornot
102 months ago
I use a few sites that limit my password to 10 characters. They should call them out.
Score: 9 Votes (Like | Disagree)
justperry Avatar
justperry
102 months ago
Captcha should be renamed to Crapcha, worthless piece of crap, I had serious issues registering on a few websites due to this Crapcha, nowadays it tends to give you a picture with grids, next you have to pick some which have certain 'things' in it like cars or shops, they are Crap too, sometimes it takes a minute to complete.


Anyone not using 2 factor authentication is basically inviting people to take their personal information.
Erm, No, it (also) depends on the websites they visit, you could avoid them but I am pretty sure some people need to be on those sites, for instance job related.
Score: 6 Votes (Like | Disagree)
dampfnudel Avatar
dampfnudel
102 months ago
In fairness Apple are very good at not allowing unauthorised people into your account as I've learned myself. Some person whom I don't know tried to enter my password several times without success, blocking the account. I didn't have security remedies setup so I lost my account.... Oh well, now I use 2 factor authentication for all my major accounts. Happy days.
Anyone not using 2 factor authentication is basically inviting people to take their personal information.
Score: 4 Votes (Like | Disagree)
ChrisA Avatar
ChrisA
102 months ago
Ten attempts is not "brute force". Brute force attacks typically require hundreds of thousands or millions of attempts. And there are ways of preventing them that don't annoy users. The simplest one is to simply not prpcesspasswords really fast. Make shure it takes at least 5 or 10 second before saying "wrong, try again". When limited to only one try every 5 seconds brute force could take years.
Score: 3 Votes (Like | Disagree)
DCYorke Avatar
DCYorke
102 months ago
Captcha is hardly needed when 2FA is enabled and it's just a pain for everyone, they shouldn't've lost points for that one. However, requiring a number should not be seen as increased security, especially when apple doesn't allow "correct horse battery staple" type passwords. It'd be much better to allow long passwords with spaces than to require numbers to be added.
Score: 3 Votes (Like | Disagree)
justperry Avatar
justperry
102 months ago
Not a bad rating at all considering some celebrities got their iCloud accounts nt compromised. Kudos to Apple for doing a great job!
Because those celebs used easy to guess passwords or something else THEY did, it wasn't Apple's servers or software that got compromised.
Score: 2 Votes (Like | Disagree)
Read All Comments

Popular Stories

maxresdefault

No iOS 19: Apple Going Straight to iOS 26

Wednesday May 28, 2025 11:56 am PDT by
With the design overhaul that's coming this year, Apple plans to rename all of its operating systems, reports Bloomberg. Going forward, iOS, iPadOS, macOS, tvOS, watchOS, and visionOS will be identified by year, rather than by version number. We're not going to be getting iOS 19, we're getting iOS 26. Subscribe to the MacRumors YouTube channel for more videos. iOS 26 will be accompanied by...
Read Full Article527 comments
iPhone 17 Pro Blue Feature Tighter Crop

iPhone 17 Pro Launching Later This Year With These 12 New Features

Tuesday May 27, 2025 9:10 am PDT by
While the iPhone 17 Pro and iPhone 17 Pro Max are not expected to launch until September, there are already plenty of rumors about the devices. Below, we recap key changes rumored for the iPhone 17 Pro models as of May 2025: Aluminum frame: iPhone 17 Pro models are rumored to have an aluminum frame, whereas the iPhone 15 Pro and iPhone 16 Pro models have a titanium frame, and the iPhone X ...
Read Full Article79 comments
28 years later iphone 1

Filmmakers Used 20 iPhones at Once to Shoot '28 Years Later'

Friday May 30, 2025 7:27 am PDT by
Sony today provided a closer look at the iPhone rigs used to shoot the upcoming post-apocalyptic British horror movie "28 Years Later" (via IGN). With a budget of $75 million, Danny Boyle's 28 Years Later will become the first major blockbuster movie to be shot on iPhone. 28 Years Later is the sequel to "28 Days Later" (2002) and "28 Weeks Later" (2007), which depict the aftermath of a...
Read Full Article54 comments
Generic iPhone 17 Feature With Full Width Dynamic Island

iPhone 17 Display Sizes: What to Expect

Thursday May 29, 2025 11:38 am PDT by
Apple's iPhone 17 lineup will include four iPhones, and two of those are going to get all-new display sizes. There's the iPhone 17 Air, which we've heard about several times, but the standard iPhone 17 is also going to have a different display size. We've heard a bit about the updated size before, but with most rumors focusing on the iPhone 17 Air, it's easy to forget. Display analyst Ross...
Read Full Article104 comments
macOS 26 visionOS Inspired Feature

macOS 26 Rumored to Drop Support for These Five Macs

Thursday May 29, 2025 5:31 am PDT by
The next major version of macOS, now dubbed "macOS 26," is rumored to drop support for several older Intel-based Mac models currently compatible with macOS Sequoia. According to individuals familiar with the matter cited by AppleInsider, the following Macs will not be supported by the next version of macOS: MacBook Pro (2018) iMac (2019) iMac Pro (2017) Mac mini (2018) MacB...
Read Full Article165 comments
iOS 26 Mock Rainbow Feature

With iOS 18 Jumping to iOS 26, Will Apple Renumber iPhones Too?

Thursday May 29, 2025 1:59 pm PDT by
With the next-generation version of iOS and other 2025 software updates, Apple is planning to change its numbering scheme. Rather than iOS 19, which would logically follow iOS 18, Apple is instead going to call the update iOS 26. Apple plans to use 26 across all of its platforms (the number representing the upcoming year), which will presumably be less confusing than having iOS 19, macOS 16,...
Read Full Article125 comments
iOS 19 visionOS UI Elements

6 visionOS-Inspired Design Elements Coming to iOS 26

Friday May 30, 2025 3:26 pm PDT by
With iOS 26, macOS 26, tvOS 26, and watchOS 26, Apple is planning to debut a new design that's been described as taking inspiration from visionOS, the newest operating system. With WWDC coming up soon, we thought we'd take a closer look at visionOS and some of the design details that Apple might adopt based on current rumors and leaked information. 1. Translucency Inside Apple, the iOS 26...
Read Full Article120 comments