PASSWORD SECURITY IS COUNTERINTUITIVE

On: March 2, 2018

In: Cryptography, InfoSec

Tagged: brute force password, Cryptography, infosec, Password

With: 0 Comments

PASSWORD SECURITY IS COUNTERINTUITIVE:

“Your password must be 8 characters & contain upper, lower, digit & punctuation characters” => “Your password is now 2.14x easier to guess via brute force.”

We’re not joking; the number of 8-char passwords with the above constraint is 2807657387458560; the number without constraint is 6095689385410816.

The constraints slash diversity by more than 50%

source for proof; compute all possible permutations and reject those which don’t satisfy the constraints, and then multiply out:

Anyone who believes that 2.8 quadrillion passwords (2,807,657,387,458,560) is “a lot” needs to be aware that @hashcat runs at billions of hashes per second, nowadays.

At 6bn hashes per second, you exhaust the space in 5 days & 10 hrs.

Related

Previous Post: Strippers Are Now Down With Bitcoin

Next Post: Security Firm Launches A “Hack-proof” Smartphone

Leave a Reply Cancel reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Bitcoin (BTC) $ 23,168.00 4.23%
Ethereum (ETH) $ 1,693.05 6.11%
Cardano (ADA) $ 0.515232 5.41%
Solana (SOL) $ 41.07 4.83%
Polkadot (DOT) $ 8.92 4.37%
Polygon (MATIC) $ 0.895891 5.3%
Litecoin (LTC) $ 59.62 6.61%
Chainlink (LINK) $ 8.48 1.95%
Uniswap (UNI) $ 8.30 9.31%
Stellar (XLM) $ 0.122750 7.43%
Monero (XMR) $ 159.31 4.9%
Algorand (ALGO) $ 0.350731 6.46%
Decentraland (MANA) $ 1.04 6.21%
Aave (AAVE) $ 98.23 6.91%
The Graph (GRT) $ 0.141161 7.43%
Fantom (FTM) $ 0.365768 5.98%
Synthetix Network (SNX) $ 3.85 8.44%
NEO (NEO) $ 11.19 6.32%
Basic Attention (BAT) $ 0.450176 1.41%
Waves (WAVES) $ 5.88 6.71%
yearn.finance (YFI) $ 11,002.23 7.46%
Golem (GLM) $ 0.263150 4.79%
Numeraire (NMR) $ 20.59 5.51%
Band Protocol (BAND) $ 1.77 7.62%
Augur (REP) $ 8.69 4.75%
BEAM (BEAM) $ 0.192383 4.86%