As data breaches become the cyber criminals' route to easy money, password hygiene is still in the dark ages and yet cyber security professionals seem to be debating whether or not passwords will still be around in the mid to long term. Is this the right place to be spending time, or should the industry be accepting that passwords are here to stay, and that  the hygiene factor needs to be drastically improved. NIST are weighing into the discussion by providing detailed and sensible guidelines. Now all we need is for them to be acted upon.