How Secure Are Multi-Word Random Passphrases?
Date: August 2015
Publication: Passwords15 Las Vegas
Source 1: http://passwordresearch.com/files/How%20Secure%20Are%20Multi-Word%20Random%20Passphrases.pdf
Source 2: http://schd.ws/hosted_files/bsideslv2015/48/How%20Secure%20Are%20Multi-Word%20Random%20Passphrases.pdf
Abstract or Summary:
Passphrases in the style of XKCD 936 or Diceware have gained popularity, but are they secure enough and practical to use? They seem like a good compromise between security and memorability, but why did Bruce Schneier say using them is "no longer good advice"? This session investigates popular password generation schemes, and examines the characteristics that determine the passphrase strength. We will also review whether the average person finds these passphrases easier to use than passwords, and if they're practical to use in most cases.
PasswordResearch.com Note: Video of presentation: https://www.youtube.com/watch?v=t7a56mC8E6k
Do you have additional information to contribute regarding this research paper? If so, please email firstname.lastname@example.org with the details.