Posts Tagged ‘Add new tag’

One More Good Password Pattern Idea

Saturday, April 25th, 2009

 

There’s a great post in Hans Anderson’s blog on secure password patterns and how you can create one. There are at least two things I like about this entry. The first one is the statement that "No password you can remember is unbreakable", this means sooner or later it is broken. The second one is that Hans points out, you should never disclose your password pattern to anyone. I agree that password patterns are awesome but they are still vulnerable to social-engineering-based attacks. By the way, why not share your password pattern ideas in the comments? ;)

Smart Password Mutations Explained

Wednesday, April 15th, 2009

Strong passwords are mutated passwords. Everyone who publishes recommendations on creating secure password says that you have to use both upper- and lower-case letters and inject some tricky special characters. Such recommendations may result in p@$$words and pAsswOrds, and p_a_s_s_w_o_r_d_s. The fact is that modern password recovery software uses dictionary attack to get one’s password back. Dictionary attack means searching lists of dictionary words and common phrases that can be found on the Internet or delivered with the software. It is easy to grab that dictionary words and word phrases make bad passwords, but one has to understand that adding special characters to these words and phrases does’t do them any good. Such password can be easily cracked when smart mutations option is on. 

We give you a tip on word mutations implemented by modern password cracking tools, so that you can create really strong passwords for your files and accounts.