Robust and secure password and key change method

Hauser, Ralf; Janson, Philippe A.; Molva, Refik; Tsudik, Gene; Herreweghen, Els Van

doi:10.1007/3-540-58618-0_59

Cited by 3 publications

(1 citation statement)

References 4 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…However, there are many threats associated with the use of username and passwords authentications, identified even as early as dated back to the 1980's (Menkus, 1988;Riddle et al, 1989;Jobusch and Oldehoeft, 1989). Many other studies show the weaknesses in the username and passwords paradigm and the tricks to using an effective and strong password (Adams et al, 1997;Fagin et al, 1996;Hauser et al, 1996;Jablon, 1996). Conklin et al (2004) demonstrated a concept based theoretical, implementable design using memory aides for password security to be used for multiple systems that are connected by a legitimate user's actions.…”

Section: State Of the Artmentioning

confidence: 99%

Analysis of passwords: Towards understanding of strengths and weaknesses

Albattah¹

2018

Int. j. adv. appl. sci.

View full text Add to dashboard Cite

In this paper, we analyze the passwords' strength from real-world data; perform an in-depth analysis, and extract useful information related to the millions of usernames and passwords being utilized. This useful information thus represents the millions of minds and the individual behaviors in online and offline passwords based information systems. From the twelve million usernames and passwords, we investigate density, numbers in usernames and passwords, special characters, and strength analysis of the usernames and passwords. To the best of our knowledge, this work is unique based on the selected parameters and the amount of processed data. With the extensive analysis, we seek the weak link in the username and password paradigm. With density analysis, it can be deduced that users like to have (or by chance use) similar character usernames and passwords. From the digits analysis in passwords, it is found that users like to use the first few digits (1, 2, and 3) and the last digits (8, 9, and 0). With the special character analysis, we found that "_" is the most widely used character. With the strength analysis, we determined that it is better to use non-popular English vocabulary words and the inclusion of the special characters, lower, upper and digits are in between different words. Also, if a word can be converted to other languages and used as a password, it will be extremely robust. Most users use their username partly or fully as passwords. This opens doors for hackers. The extensive experimentation and results in the appropriate sections provide useful contributions.

show abstract