|
Unrevealed Patterns in Password Databases Part One: Analyses of Cleartext Passwords
Date: December 2014 Publication: 7th International Conference on Passwords (Passwords14 Trondheim). Lecture Notes in Computer Science, Volume 9393 Page(s): 89 - 101 Publisher: Springer Source 1: http://dx.doi.org/10.1007/978-3-319-24192-0_5 - Subscription or payment required Abstract or Summary:
In this paper we present a regression based analyses of cleartext passwords moving towards an efficient password cracking methodology. Hundreds of available databases were examined and it was observed that they had similar behavior regardless of their size: password length distribution, entropy, letter frequencies form similar characteristics in each database. Exploiting these characteristics a huge amount of cleartext passwords were analyzed in order to be able to design more sophisticated brute-force attack methods. New patterns are exposed by analyzing millions of cleartext passwords. PasswordResearch.com Note: Video of presentation: https://video.adm.ntnu.no/pres/549439ae593fb
Do you have additional information to contribute regarding this research paper? If so, please email siteupdates@passwordresearch.com with the details.
<-- Back to Authentication Research Paper Index |