Unrevealed Patterns in Password Databases Part One: Analyses of Cleartext Passwords
Date: December 2014
Publication: 7th International Conference on Passwords (Passwords14 Trondheim). Lecture Notes in Computer Science, Volume 9393
Page(s): 89 - 101
Source 1: http://dx.doi.org/10.1007/978-3-319-24192-0_5 - Subscription or payment required
Abstract or Summary:
In this paper we present a regression based analyses of cleartext passwords moving towards an efficient password cracking methodology. Hundreds of available databases were examined and it was observed that they had similar behavior regardless of their size: password length distribution, entropy, letter frequencies form similar characteristics in each database. Exploiting these characteristics a huge amount of cleartext passwords were analyzed in order to be able to design more sophisticated brute-force attack methods. New patterns are exposed by analyzing millions of cleartext passwords.
PasswordResearch.com Note: Video of presentation: https://video.adm.ntnu.no/pres/549439ae593fb
Do you have additional information to contribute regarding this research paper? If so, please email firstname.lastname@example.org with the details.