PASSWORD SECURITY IS COUNTERINTUITIVE

On: March 2, 2018

In: Cryptography, InfoSec

Tagged: brute force password, Cryptography, infosec, Password

With: 0 Comments

PASSWORD SECURITY IS COUNTERINTUITIVE:

“Your password must be 8 characters & contain upper, lower, digit & punctuation characters” => “Your password is now 2.14x easier to guess via brute force.”

We’re not joking; the number of 8-char passwords with the above constraint is 2807657387458560; the number without constraint is 6095689385410816.

The constraints slash diversity by more than 50%

source for proof; compute all possible permutations and reject those which don’t satisfy the constraints, and then multiply out:

Anyone who believes that 2.8 quadrillion passwords (2,807,657,387,458,560) is “a lot” needs to be aware that @hashcat runs at billions of hashes per second, nowadays.

At 6bn hashes per second, you exhaust the space in 5 days & 10 hrs.

Related

Previous Post: Strippers Are Now Down With Bitcoin

Next Post: Security Firm Launches A “Hack-proof” Smartphone

Leave a Reply Cancel reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Bitcoin (BTC) $ 37,274.00 2.79%
Ethereum (ETH) $ 2,219.30 5.37%
Binance Coin (BNB) $ 305.40 4.19%
Cardano (ADA) $ 1.26 7.21%
Polkadot (DOT) $ 13.77 7%
Uniswap (UNI) $ 18.48 6.92%
Litecoin (LTC) $ 129.36 6.23%
Chainlink (LINK) $ 18.42 3.33%
Solana (SOL) $ 28.38 4.53%
Polygon (MATIC) $ 0.984141 9.58%
Stellar (XLM) $ 0.259822 6.46%
Monero (XMR) $ 221.35 3.65%
Aave (AAVE) $ 299.73 7.92%
Algorand (ALGO) $ 0.849257 5.01%
NEO (NEO) $ 32.58 3.59%
The Graph (GRT) $ 0.560889 5.36%
Synthetix Network Token (SNX) $ 9.15 0.83%
Waves (WAVES) $ 14.79 6.1%
yearn.finance (YFI) $ 29,873.00 6.17%
Decentraland (MANA) $ 0.701570 2.87%
Basic Attention Token (BAT) $ 0.552612 5.75%
Fantom (FTM) $ 0.213199 4.05%
Golem (GLM) $ 0.343812 4.38%
Numeraire (NMR) $ 35.26 1.13%
Band Protocol (BAND) $ 5.70 0.18%
Augur (REP) $ 26.32 4.76%
BEAM (BEAM) $ 0.457542 4.8%