Bill Burr was not a security expert when he wrote the guidelines for password security for the US National Institute of Standards and Technology in 2003.His guidelines, which suggested that passwords should be changed every three months and should include different characters, are still followed by many services.They have resulted in password requirements...