Register

Forgot Password

Site FAQ

Home > IT Blogs > Irregular Expressions > Passphrase Security

>>VIEW ALL POSTS

Irregular Expressions

Mar 11 2012 11:53PM GMT

Passphrase Security

Posted by: Dan O'Connor

Uncategorized

How do you like them apples, well these apples.

http://www.lightbluetouchpaper.org/2012/03/07/some-evidence-on-multi-word-passphrases/

This is the first analysis of passphrase security I have come across. The short version is that there is insufficient entropy English to provide a system to resist offline attacks >30 bits. My thought on what I recommend is something with a bit of gibberish in the middle or at multiple points, but that starts to slide back to the realm of having users remember impossible passwords again.

Comment

RSS Feed

Email a friend

Comment on this Post

Leave a comment:

Community Blog | About Us | Contact Us | FAQ | Terms of Use | DMCA Policy

TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organization's IT projects - with its network of technology-specific Web sites, events and magazines.
All Rights Reserved, Copyright 1999-2013, TechTarget | Read our Privacy Policy
Questions and Answers Index 1 | Questions and Answers Index 2 | IT Topics Index 1 | IT Topics Index 2 | Blogs Index | Blogs Tags

Irregular Expressions

Passphrase Security

Comment on this Post

About This Blog

Browse This Blog’s Tags

Archives

Blog Roll

Subscribe to Alerts