Unrevealed Patterns in Password Databases Part One: Analyses of Cleartext Passwords
Author(s): Norbert Tihanyi, Attila Kovács, Gergely Vargha, Ádám Lénárt

Date: December 2014
Publication: 7th International Conference on Passwords (Passwords14 Trondheim). Lecture Notes in Computer Science, Volume 9393
Page(s): 89 - 101
Publisher: Springer
Source 1: http://dx.doi.org/10.1007/978-3-319-24192-0_5 - Subscription or payment required

Abstract or Summary:
In this paper we present a regression based analyses of cleartext passwords moving towards an efficient password cracking methodology. Hundreds of available databases were examined and it was observed that they had similar behavior regardless of their size: password length distribution, entropy, letter frequencies form similar characteristics in each database. Exploiting these characteristics a huge amount of cleartext passwords were analyzed in order to be able to design more sophisticated brute-force attack methods. New patterns are exposed by analyzing millions of cleartext passwords.

PasswordResearch.com Note: Video of presentation: https://video.adm.ntnu.no/pres/549439ae593fb

Do you have additional information to contribute regarding this research paper? If so, please email siteupdates@passwordresearch.com with the details.

<-- Back to Authentication Research Paper Index

[Home] [About Us] [News] [Research]

Copyright © 2016 PasswordResearch.com