Looking for a safe password?

JurassicBark

New Member
Joined
Jun 26, 2013
Messages
4
Is it my imagination, or are organisations not working together to form standards as they did in the past? It seems the world is more divided than ever on some things. Why isn't there a standard for biometric identification via fingerprint, for example? I should be able to log in to any web site with my finger print from different terminals using different hardware... but noooo...
 

Griz

Expert Member
Joined
Sep 15, 2010
Messages
1,199
Is it my imagination, or are organisations not working together to form standards as they did in the past? It seems the world is more divided than ever on some things. Why isn't there a standard for biometric identification via fingerprint, for example? I should be able to log in to any web site with my finger print from different terminals using different hardware... but noooo...

?

Did you read the article


?
 

Hamster

Resident Rodent
Joined
Aug 22, 2006
Messages
38,900
GiganticWalrusEggHatcher

^ is a way better password than IL3vP@i

Easier to remember and will take longer to crack with a brute force attack.
 

AlphaJohn

Executive Member
Joined
Sep 10, 2012
Messages
9,896
password_strength.png


And use a different one for every site, Using above example "Correct horse battery facebook staple" for facebook :D

As for biometric attachment on authentication, its all good till its compromised, passwords you can change, what do you do when somone find a way to mimic your fingerprints or such. Words you can change, body parts you can not.
 

noxibox

Honorary Master
Joined
Apr 6, 2005
Messages
20,858
Encouraging people to use different passwords for every site and change them regularly is exactly what leads to people using easy to guess passwords.

password_strength.png


And use a different one for every site, Using above example "Correct horse battery facebook staple" for facebook :D

As for biometric attachment on authentication, its all good till its compromised, passwords you can change, what do you do when somone find a way to mimic your fingerprints or such. Words you can change, body parts you can not.
And with governments wanting to store more and more information so they can spy on and track their citizens it's guaranteed that biometric information will fall into the hands of private sector organised crime.
 

House

Banned
Joined
Aug 17, 2006
Messages
5,482
Take your best PC's and through a brute force attack at this password:

!JustL@veMyBr@adBand2Much.

If any PC can crack this password within 10 years - good luck!
 

House

Banned
Joined
Aug 17, 2006
Messages
5,482
GiganticWalrusEggHatcher

^ is a way better password than IL3vP@i

Easier to remember and will take longer to crack with a brute force attack.

1 hour and 12 minutes to crack IL3vP@i on brute force. GiganticWalrusEggHatcher is a much better option.
 

MKFrost

Expert Member
Joined
Oct 23, 2012
Messages
3,837
The main thing is to increase the search space. So even if you just add say '....' onto the end or start of your password you increase its effectiveness exponentially.

For example:

Dog123 will take around half a second to break while Dog123.... will take around 19 years

Remember, you know that its only 4 periods... but the attacker does not know that. He has to go through the whole search space i.e. try every possible character on those 4 spaces.
 

Neo_X

Expert Member
Joined
Mar 23, 2005
Messages
1,693
The main thing is to increase the search space. So even if you just add say '....' onto the end or start of your password you increase its effectiveness exponentially.

For example:

Dog123 will take around half a second to break while Dog123.... will take around 19 years

Remember, you know that its only 4 periods... but the attacker does not know that. He has to go through the whole search space i.e. try every possible character on those 4 spaces.

wow....

very true :D
 
Top