Posts Tagged ‘Human Factor’

How to Break 70% of Passwords in Minutes

Tuesday, February 14th, 2017

According to surveys, the average English-speaking consumer maintains around 27 online accounts. Memorizing 27 unique, cryptographically secure passwords is nearly impossible for a person one could reasonably call “average”. As a result, the average person tends to reuse passwords, which means that a single password (or its simple variations) can be used to protect multiple online accounts and services. The same passwords are very likely to be chosen to protect access to offline resources such as encrypted archives and documents. In fact, several independent researches published between 2012 and 2016 suggest that between 59 and 61 per cent of consumers reuse passwords.

Considering how consistent the numbers are between multiple researches carried out over the course of four years, we can safely assume that around 60% of consumers reuse their passwords. How can this data help us break passwords, and how did we arrive to the value of 70% in the title? Read along to find out! (more…)

One More Good Password Pattern Idea

Saturday, April 25th, 2009

 

There’s a great post in Hans Anderson’s blog on secure password patterns and how you can create one. There are at least two things I like about this entry. The first one is the statement that "No password you can remember is unbreakable", this means sooner or later it is broken. The second one is that Hans points out, you should never disclose your password pattern to anyone. I agree that password patterns are awesome but they are still vulnerable to social-engineering-based attacks. By the way, why not share your password pattern ideas in the comments? 😉