Gathering and Analyzing Identity Leaks for Security Awareness
Date: December 2014
Publication: 8th International Conference on Passwords (Passwords14 Norway). Lecture Notes in Computer Science, Volume 9393
Page(s): 102 - 115
Source 1: http://dx.doi.org/10.1007/978-3-319-24192-0_5 - Subscription or payment required
Abstract or Summary:
The amount of identity data leaks in recent times is drastically increasing. Not only smaller web services, but also established technology companies are affected. However, it is not commonly known, that incidents covered by media are just the tip of the iceberg. Accordingly, more detailed investigation of not just publicly accessible parts of the web but also deep web is imperative to gain greater insight into the large number of data leaks. This paper presents methods and experiences of our deep web analysis. We give insight in commonly used platforms for data exposure, formats of identity related data leaks, and the methods of our analysis. On one hand a lack of security implementations among Internet service providers exists and on the other hand users still tend to generate and reuse weak passwords. By publishing our results we aim to increase awareness on both sides and the establishment of counter measures.
PasswordResearch.com Note: Video of presentation: https://video.adm.ntnu.no/pres/5494056ee191e
Do you have additional information to contribute regarding this research paper? If so, please email firstname.lastname@example.org with the details.