Having a SSN or mother’s maiden name as a password or access key is a terrible idea, because once that info is compromised it can never be changed, and can be widely distributed.
What should be used is either a password that can be changed, or biometric info (fingerprint, retina scan, etc.)
A person’s SSN should be nothing more than an identifying tag, with no confidentiality attached.