My wife is Finnish, and I've seen that pad of "words" used.
In the UK we tend to have a static username and password then either a hardware device, or a "Enter characters 1, 3, 8 from your secret information". (Where the secret information is 8-10 characters long and you're requested to enter from random offsets each time.)
I've used both systems, and entering three characters from the secret information is the least hassle, but not as reassuring as the hardware token.
In the UK we tend to have a static username and password then either a hardware device, or a "Enter characters 1, 3, 8 from your secret information". (Where the secret information is 8-10 characters long and you're requested to enter from random offsets each time.)
I've used both systems, and entering three characters from the secret information is the least hassle, but not as reassuring as the hardware token.