Irregular Expressions

Mar 11 2012   11:53PM GMT

Passphrase Security

Dan O'Connor Dan O'Connor Profile: Dan O'Connor

How do you like them apples, well these apples.

http://www.lightbluetouchpaper.org/2012/03/07/some-evidence-on-multi-word-passphrases/

This is the first analysis of passphrase security I have come across.  The short version is that there is insufficient entropy English to provide a system to resist offline attacks >30 bits.  My thought on what I recommend is something with a bit of gibberish in the middle or at multiple points, but that starts to slide back to the realm of having users remember impossible passwords again.

 Comment on this Post

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: