Unrevealed Patterns in Password Databases Part One: Analyses of Cleartext Passwords
Author(s): Norbert Tihanyi, Attila Kovács, Gergely Vargha, Ádám Lénárt

Date: December 2014
Publication: 8th International Conference on Passwords (Passwords14 Norway). Lecture Notes in Computer Science, Volume 9393
Page(s): 89 - 101
Publisher: Springer
Source 1: http://dx.doi.org/10.1007/978-3-319-24192-0_5 - Subscription or payment required

Abstract:
In this paper we present a regression based analyses of cleartext passwords moving towards an efficient password cracking methodology. Hundreds of available databases were examined and it was observed that they had similar behavior regardless of their size: password length distribution, entropy, letter frequencies form similar characteristics in each database. Exploiting these characteristics a huge amount of cleartext passwords were analyzed in order to be able to design more sophisticated brute-force attack methods. New patterns are exposed by analyzing millions of cleartext passwords.

PasswordResearch.com Note: Video of presentation available: https://video.adm.ntnu.no/pres/549439ae593fb


Do you have additional information to contribute regarding this research paper? If so, please email siteupdates@passwordresearch.com with the details.

<-- Back to Authentication Research Paper Index





[Home] [About Us] [News] [Research]

Copyright © 2016 PasswordResearch.com