Facebook: Password Hashing & Authentication
Date: December 2014
Publication: 7th International Conference on Passwords (Passwords14 Trondheim)
Source: Currently no known Internet copy of paper.
Abstract or Summary:
Talk focuses on the cryptographic and authentication technologies used by Facebook. The presentation discusses how user passwords are hashed at Facebook, how they detect login anomalies that help them separate users from attackers, and overall security hygiene. Facebook also watches for password dumps from other organizations, collects them, and compares them to their own user population so they can warn the users with shared passwords that a password change is needed.
PasswordResearch.com Note: Video of presentation: https://video.adm.ntnu.no/pres/54b660049af94
Do you have additional information to contribute regarding this research paper? If so, please email firstname.lastname@example.org with the details.