Password Memorability and Securability

NonNullSet writes "Who would have thought that that something new could be said about how best to select passwords? Ross Andreson of Cambridge University and some of his colleages have performed new empirical studies and found some pretty non-intuitive results. For example: 1. The first folk belief is that users have difficulty remembering random passwords. This belief is confirmed. 2. The second folk belief is that passwords based on mnemonic prases are harder for an attacker to guess than naively selected passwords. This belief is confirmed. 3. The third folk belief is that random passwords are better than those based on mnemonic phrases. However, each appeared to be just as strong as the other. So this belief is debunked. 4. The fourth folk belief is that passwords based on mnemonic phrases are harder to remember than naively selected passwords. However, each ap- peared to be just as easy to remember as the other. So this belief is debunked. 5. The fifth folk belief is that by educating users to use random passwords or mnemonic passwords, we can gain a significant improvement in security. However, both random passwords and mnemonic passwords suffered from a non-compliance rate of about 10% (including both too-short passwords and passwords not chosen according to the instructions). While this is better than the 35% or so of users who choose bad passwords with only cursory instruction, it is not really a huge improvement. The attacker may have to work three times harder, but in the absence of password policy enforcement mechanisms there seems no way to make the attacker work a thousand times harder. In fact, our experimental group may be about the most compliant a systems administrator can expect to get. So this belief appears to be debunked."

Freaking PDF files.

Freaking PDF files. Link to a version translated into HTML. By the time this goes live, maybe the FTP will be slashdotted, too. Thanks, Google.

I suppose I should make a comment. Okay, here it is: looks like users are still the weakest link in security. Whoever said that social engineering was the ultimate hack is a genius.

Re:Freaking PDF files.

[QBasicer]

I don't think that will ever change, unless we use the bio scanning methods (iris scans and whatnot)

I heard about DNA scan, but I can't see that working, it could be falseified. Even a finger print could be carried (cut off their finger if they wanted access enough).

The strongest way to do it is with multiple methods (text password, then voice password, the finger print scan, and then iris scan).

Re:Freaking PDF files.

[somethinghollow]

What does that make Kevin Mitnick?

Oh, yeah... I remember him. I forgot that guy after existed he was free and not a symbol of everything that was wrong with the legal system in the US.

Re:Freaking PDF files.

. . . looks like users are still the weakest link in security

Exactly, security through obscurity just does not work, passwords are not the answer.

Re:Freaking PDF files.

[the_mad_poster]

I second the HTML version. Good old Adobe - popped up a nice little window in the background bugging me to update and stalled the IE process. Since the window went to the background, all I could see was the stalled process, and I killed IE, which, of course, closed all my windows. I hate pdf files...

Anyway, here's a consideratoin: semi-disgruntled employees. For example, I'm not disloyal enough to actively seek to damage the company's systems or information, but with the way they treat employees, and the way my dysfunctional department operates, I'm not loyal enough to sit and try to think of strong passwords every month. So, I come up with creative ways to circumvent the draconian password policy instead. Ironically, some of my stronger passwords have been defeated by this overly strict ruleset and wound up with me simply appending a character to a weaker password to get around it.

The lesson: draconian password policies hurt security and audit your password lists on a regular basis (at least randomly sample them regularly). Most of your users probably don't give a crap about their passwords because they don't give a crap about what happens to the company's systems and information.

Re:Freaking PDF files.

I may be off-topic, but I linked PDF files to 'xpdf' in Firefox and I don't have problems anymore.

Re:Freaking PDF files.

[Jahf]

oh
my
god
no.

Re:Freaking PDF files.

[DeadInSpace]

I second the HTML version. Good old Adobe - popped up a nice little window in the background bugging me to update and stalled the IE process. Since the window went to the background, all I could see was the stalled process, and I killed IE, which, of course, closed all my windows. I hate pdf files...

It seems you hate Acrobat Reader, not PDF files.

PDF is in fact a very good format, especially if you want your final document (especially if it's intended for paper) to look the same across many different computers.

Re:Freaking PDF files.

[the_mad_poster]

I LOATHE Acrobat Reader, yes, but I also hate pdf files. I'm not even that big a fan of xpdf (not that that's an option at work anyway). I have yet to see anything being distributed via pdf that couldn't have been distributed as plain text or, if it required diagrams and such, HTML. pdf is like taking a nice, clean HTML document and turning it into a gigantic, unmanageable, honking piece of crap. Little point indeed.

PDF, flash, and java applets are the worst file formats ever inflicted on the web/Internet in the name of substandardization...

Re:Freaking PDF files.

[the_mad_poster]

Stop being a raving, lunatic fanboy. It's the legal department's fault I'm not allowed to use them ("...determined that free software is a liability and is not really free...") and the IT group will have my head on a plate if I abuse my admin privilege on this box and install one anyway.

Now then, fanboy, why don't you ask what I use at home where I have complete control of my systems?

Re:Freaking PDF files.

Apache/1.3.29 (Unix) FrontPage/5.0.2.2510 PHP/4.3.6?

Re:Freaking PDF files.

[meanroy]

LOL - IE couldn't POSSIBLY be the problem now could it. You must be posting at work again huh?

Re:Freaking PDF files.

[danheretic]

I second the HTML version. Good old Adobe - popped up a nice little window in the background bugging me to update and stalled the IE process. Since the window went to the background, all I could see was the stalled process, and I killed IE, which, of course, closed all my windows. I hate pdf files...

The problem here isn't with PDF files, it's with the user. You can turn off the automatic update check, ya know.

This relates to the main story: The primary problem with security is always the users not using the security processes correctly, and then blaming someone else.

Re:Freaking PDF files.

[krzysztof]

PDF, flash, and java applets are the worst file formats ever inflicted on the web...

Hold it! Yes, I'll agree, PDFs on the Web can be annoying overkill, but the real usefulness of PDFs is that they are portable. I have a document, I can email it or FTP it or network-share it to any user on any platform and it will look exactly the same. This is possible with HTML, but annoying to have to email a .zip file with all the images that need to be displayed, and no guarantee that a different browser won't muck up the display.

Re:Freaking PDF files.

[Jonner]

The problem with all three things (PDF documents, Flash applets, and Java applets) is not the design as much as the misuse. PDFs are good for what they were designed to do, which is to allow easy exchange of laid-out text and graphics. The format may not be an open standard, but it is well enough documented by Adobe that there are high quality Free Software implementations.

However, most documents on the web don't need to be printed, especially not with press-ready precision. HTML is the native language of the web, so everything that can be should be provided as HTML. PDF versions should be considered supplementary to the HTML ones.

This document appears to be written in LaTeX, in which case someone could have easily used one of the many LaTeX to HTML converters like (surprise, surprise) LaTeX2HTML. I guess the person responsible for making it accessible from the Internet was just lazy.

Re:Freaking PDF files.

[.com+b4+.storm]

I second the HTML version. Good old Adobe - popped up a nice little window in the background bugging me to update and stalled the IE process. Since the window went to the background, all I could see was the stalled process, and I killed IE, which, of course, closed all my windows. I hate pdf files..

How is this a fault of PDF files? This is a fault of Adobe's software and perhaps Windows not notifying you about the window Adobe popped up. PDF files work great if you have software that doesn't suck. :)

Re:Freaking PDF files.

[the_mad_poster]

Uh... great. It looks like you got the HEAD response from my personal site. So?

Although, as I've ranted about before, the clueless dolts have no clue what they're talking about anyway. We've been using Perl for 2+ years at my instigation and it's run circles around that ASP garbage we have. I also got IT to install Apache HTTPD on my box for testing and design purposes. Technically, however, our corporate policy is that "free software .. is a liability".

Re:Freaking PDF files.

[the_mad_poster]

Note: sarcasm. Lots.

Hmmm, yes. Let's latch on to one complaint that I have about PDFs - the crappy viewer from Adobe - and pretend that that's all of them, indeed, shall we?

On top of that, let's ignore that it put the hooks into IE on its own without asking me, let's just forget the fact that it opened in the background behind the IE window instead of overtop of it, and let's just ignore the inconvenient point that this was the first notice that came up since I installed the software, so I had no reason to go wandering about the preferences to turn off a "feature" that insists on tossing itself in your face by default without notice. Good idea. This way, we can blame the user for the fact that Acrobat Reader is a piece of shit instead of just accepting that Acrobat Reader is a piece of shit and PDF files are the wrong format to distribute web content in (for reasons entirely unrelated to Acrobat Reader). Of course, it all makes sense now!

Then, let's make up some irrational, unrelated bullshit about security and act like that has anything at all to do with my dislike of Acrobat Reader!

My god, man! You're some sort of genius, able to define reality simply by making it up as you go!

Re:Freaking PDF files.

SO, you told him to ask what you run at home and he told you. Your problem is lack of play. Or, too much with yourself.

Dick.

Re:Freaking PDF files.

[Minna+Kirai]

The format may not be an open standard, but it is well enough documented by Adobe that there are high quality Free Software implementations.

Untrue. Adobe has intentionally omitted certain "security" data from their specification, and has directed the arrest of people who publish reverse-engineered descriptions.

In practice, this means that there are many PDFs on public websites that Free Software (like xpdf and ghostview) cannot view at all, because the author decided to set a "No Clipboard" flag when exporting from Acrobat.

I haven't seen any "Free" PDF viewer that's earned "high quality". "Servicable for most uses", but not "high quality".

PDF versions should be considered supplementary to the HTML ones.

Correct- but it's really sad that there is no intermediate format. HTML has no ability to describe pagination at all, while PDF encodes layout so explicitly it may as well be a scanned PNG of the document.

Word processing software allows smart, dynamic pagination, by storing entities like hard/soft page breaks, headers/footers, column connections, etc. That knowledge allows the document to be reformatted reasonably for whatever paper/font size the reader wants.

But unfortunately, there is effectively only 1 Word Processing file format today, and it's too proprietary to use as a web document standard. I wish the assorted "Free" word processors could step back from chasing "Word Document" all the time and come up with a good, common format that web browsers can (eventually) view directly.

Re:Freaking PDF files.

[Minna+Kirai]

the real usefulness of PDFs is that they are portable. I have a document, I can email it or FTP it or network-share it to any user on any platform and it will look exactly the same.

I would argue that you have just mentioned why PDFs are not portable.

Because the document always looks "exactly the same", that means that in some viewing environments it will be much harder to read, or even flat-out illegible. If the recipient has a tiny PDA screen, or has impaired vision, then an HTML file (or even a Microsoft Word DOC) can be reformatted on the client-side to have 30-pt text or unified columns, or whatever else is needed (including speech synthesis for the totally blind)

Why, PDFs aren't even portable between the USA and Europe! (because paper comes in different sizes across the Atlantic).

Re:Freaking PDF files.

[Jonner]

I do know about Dimitri and I'm not inclined to trust Adobe with a "standard." Neither am I intimately familiar with all the features and misfeatures of recent versions of PDF. What I do know is that PDF is a useful format for exchanging print-ready documents. Specifically, I can generate PDFs using Free Software and view them using Free Software (or Adobe Reader).

I have rarely run into problems viewing PDFs with Free Software implementations like Xpdf and GhostScript, so maybe the evil features aren't that commonly used yet. I am pretty confident that generating PDFs with Ghostscript will cause few problems, so PDF (or whatever subset is implemented by Ghostscript and other Free implementations) is a useful defacto standard.

It seems that XSL-FO should be a truly standard replacement, but PDF has a lot of momentum. Currently, most XSL-FO implementations just generate PDFs.

Perhaps XHTML and CSS will eventually be able to do the things that word processor formats can do, like handling pages and columns.

Re:Freaking PDF files.

Happens in Firefox too.

Re:Freaking PDF files.

[Zirnike]

"So, I come up with creative ways to circumvent the draconian password policy instead"

I used to need to keep 3 seperate passwords. Then one joker made 2 of them require new passwords every 30 days, kept a record of passwords that it said was for the last 5 but was at least 10 long, compared any new passwords to all of those 10 for common points of referance (as in, of more than 50% was similar, it would not allow it), and did a few other checks that they never mentioned in any way (and failed to train the tech people as to what the full guidelines are).

You know what I did? I kept all but my network/screensaver password on a peice of paper taped to my monitor. I can't come up with passwords I can remember that satisfied all the requirements (took me 2 hours at one time to come up with an 'acceptable' password that I could remember). So instead of increasing security, they destroyed it. And, as I'm here, I'm sure you can guess that I was more willing to go along with computer security than most people, so you can also guess how good security was in general...

Re:Freaking PDF files.

You moron. You can always zoom in and out, unless your reader is crap.

Re:Freaking PDF files.

[pipingguy]

I killed IE, which, of course, closed all my windows

AvantBrowser (a free IE add-on - I'm betting that IE 7 will be like this) has tabs and remembers what was open last session in case of the inevitable Windows reboot. It also has a lot of other useful features. Googl, err... I mean search for it and test it out.

Google

[Mz6]

Google's HTML Cache Version

I just use my phone number.....

[MrIrwin]

oops!

Re:I just use my phone number.....

[Dr.+GeneMachine]

Hah! Now I also know how to reach you on the phone...

Re:I just use my phone number.....

[Cumstien]

12345 is much better.

Re:I just use my phone number.....

[hInstance]

Yes! 12345 is way more portable.

What's mister smarty-pants gonna do when his phone number changes!? He'll have to set up and memorize a whole new password.

Longest... summary... ever...

[Da+Fokka]

Not RTFA has never been so easy! How am I supposed to have an uninformed opinion like this?!

Re:Longest... summary... ever...

[verbatim_verbose]

You're not kidding...

Honestly, I'd rather have been given a link to the article though... would have been much easier to read. On a side note, why on earth does slashdot put almost all the text on the front page in italics?

Re:Longest... summary... ever...

[Neophytus]

It's to distinguish the fact that the post is quoted from the submitter rather than editor-written (as sometimes happens)

Re:Longest... summary... ever...

[verbatim_verbose]

Well I know what it _means_. What I was getting at was that there has to be a better way to distinguish this than to print 90% of the front page in italics, because that's just utterly bad design, and makes it hard to read.

The best security

[bwalling]

The best security is to not have anything that is desirable to anyone else. Then, they won't want to bother with figuring out your password.

Re:The best security

[Allen+Zadr]

It doesn't take much processing power to send SPAM. You'd be surprised at how little is desirable.

All your i286 are belong to us.

Re:The best security

[the_mad_poster]

So, basically, you're saying that Slashdot is impenetrable?

Re:The best security

It's that fucking attitude that makes my life miserable. ALL computers are desireable. MOST attacks are automated. they have nothing against YOU personally.

quepasa

[JohnGrahamCumming]

So take a look at quepasa. It combines remembering a passphrase, with cryptographically generated passwords (SHA-256 hashing of the passphrase and account name followed by mapping of the hash to typeable characters).

The combination means that I can always "recall" the password for any of my accounts using the quepasa application (all I remember is a single passphrase), and the passwords are not stored anywhere.

John.

Re:quepasa

[alexatrit]

Looking at the end result of this, how is it any different that typing up a list of randomly generated passwords in vim/notepad/whatever, and encrypting the list with gpg? You still have to run and check the program every time you want to login to a service. The passphrase supplied to quepasa could easily be that to decode your gpg-encrypted list of passwords.

Re:quepasa

[JohnGrahamCumming]

The differences are:

1. There's no file stored anywhere containing the passwords so you can't lose them, or have the file in order to get the password.

2. You don't have to do the random creation of passwords in the first place.

3. When it comes time to change passwords, just change the passphrase.

John.

Re:quepasa

[nizo]

For anyone who cares, an easy solution I use is a quickie perl program I wrote that generates something like:

a TL b CP c t5
d GR e KW f Nu
g zM h 4& i pH
j qk k sb l +J
m %$ n dU o rm
p 7D q 6F r ne
s Z? t gQ u Ay
v =Y w 2x x c!
y vX z VS

Basically it assigns random chars/numbers/symbols to each letter of the alphabet. It tosses things like zero, one, and eight and letters O, H, I, J, L, B (upper or lower, depending on confusion with the aforementioned numbers). Now I print this nice little table and use it for passwords all over the place. For example I could just remember "slash" which maps to the password Z?+JTLZ?4&

Also, if someone gets that little peice of paper or sholder-surfs they don't get my passwords without at least a little effort. Oh and laminating it is a good idea, and an extra copy in a safe place wouldn't hurt too.

Re:quepasa

3. When it comes time to change passwords, just change the passphrase.

That's probably the biggest problem with the whole thing. When you change the passphrase it's going to change every password. Maybe you don't want to change every password. Sometimes you are forced to change a password for whatever reason while other systems let you go forever without changing it. I know most of my passwords (web boards and crap) are not that important so I wouldn't want to change them unless I had to. It would take a lot of time to change all my passwords.

Re:quepasa

[bcrowell]

Also

4. Encryption software tends to be hard to use, and to use it, you have to understand quite a bit about encryption. (What's a keychain? What's a public key? A private key? What do I do if my private key is compromised?)

Personally I use a GPG-encrypted file, but quepasa does sound like a neat idea. My only misgiving about it is that it still requires users to have a clue, and the point of the article seems to be that having a clue (or caring enough to make an effort) is the limiting factor.

Re:quepasa

[caluml]

"slash" which maps to the password Z?+JTLZ?4&

Reply anonymously to this if you tried to log in as Nizo. Bonus points if you reply as him, and swear a lot.

Re:quepasa

[RKBA]

What's a keychain?
A local list of the public keys you keep on your own computer (as opposed to remotely on a keyserver). It's like an address book, except that it contains the public keys of your correspondents.

What's a public key?
A key you make public so that others can send messages to you. Likewise, others make their own public key known to you (or to the public in general) so you can encrypt messages to them.

A private key?
The key you need in order to decode the messages others have encrypted using your public key.

What do I do if my private key is compromised?
Generate a new private and public key. Send a revocation notice to the public keys server(s) you use and notify all your correspondents of your public key change.

I use an older version of a free program called Password Safe and keep lots of backup copies of it's data file on floppies, etc. With the (ugly) newer version you can also print out a hardcopy.

Re:quepasa

[cavebear42]

I try to use PGP encrypted files, they tend to work better.

Re:quepasa

[Nodatadj]

Fuck fuck shit shit taco is a stupid ass fuckweed.

Oh wait, shit, it didn't work.

Re:quepasa

[asmellysock]

I use Windows 2000 and Windows XP. For a while I was simply keeping a list of passwords in a text file on my computer and selecting "Encrypt contents to secure data" checkbox under File | Properties | Advanced. As long as I use a reasonable password for my login account, and I don't leave my computer unlocked, I assume this is a safe approach. Is it not? Like another poster, I now use Password Safe.

Re:quepasa

[Flexagon]

1. There's no file stored anywhere ...

Doesn't this mean that the file of your passwords effectively is stored everywhere that quepasa can be installed? In other words, someone who can guess your passphrase can gain all of your passwords without ever touching your own system. This is a direct consequence of the "ease of use" feature that gives you access to your passwords anywhere.

You don't have to do the random creation of passwords ...

A corollary to 1. If the password is generated algorithmicly and strictly as a function of your passphrase and the site you visit, then it is that much farther from being random.

3. When it comes time to change passwords, just change the passphrase.

Others have noted that changing your passphrase invalidates all of your passwords. Alternatively, you could still use the old passphrase for passwords you don't want to change, but over time, it seems to me that this turns into one passphrase per login, which nearly defeats the original purpose.

4. Encryption software tends to be hard to use, and to use it, you have to understand quite a bit about encryption. (What's a [list of public key specific terms]?)

I don't think this issue is limited to public key systems. It's true of all facets of password-based authentication. Few outside the industry (and that means most people) understand, or want to understand, even the basics until they're burned at least once. Most sites that most people use don't use public key systems anyway; this isn't the problem that consumer password manager programs like quepasa are trying to solve.

Beyond the above, how can a quepasa style algorithm deal with sites that require a very limited character set (some banks still base their Web authentication on the same 4-digit PIN that works over the phone or at the ATM) versus sites that support long passwords over a large character set where you would want to use the best possible password?

It seems to me that you give up quite a bit of security even over a typical consumer password management program (and they have their own problems) to use quepasa.

Re:quepasa

[tkg]

1. There's no file stored anywhere containing the passwords so you can't lose them, or have the file in order to get the password.

.bash_history?

Sure, the permissions should be set so only the user can read it, but it's there and unencrypted to boot.

Re:quepasa

[lcde]

Great idea. Writing a python version as we speak.

Re:quepasa

[Minna+Kirai]

-1: Pedantic answers to rhetorical questions

Re:quepasa

[Minna+Kirai]

As long as I use a reasonable password for my login account, and I don't leave my computer unlocked, I assume this is a safe approach. Is it not?

Attacks can be made by someone with physical access to your machine (a burglar, janitor, roomate, detective, etc)

She just needs to take a copy of the Windows system password file away with her. If your computer boots from CD (or allows bios access to change that setting), then this is easy for anyone with a purse big enough for a CD + floppy. If the system has a locked-down BIOS, then the attacker faces riskier work: unscrewing the computer to yank the hard drive, stuff it in another machine, and copy the file- then try to bring it back before you notice.

In both those cases, you might get a warning from the unexpected reboot- but that can be explained as a power failure. (Also, some security devices exist to partially protect from both attacks)

Anyway, once the attacker has your password file, it'll take a week or so to brute-force your Windows login. Then she can open that text file just like you do.

The important thing to remember is that although some encryption schemes can protect you if your entire hard drive falls into enemy hands, Microsoft Windows doesn't use one like that. Password Safe is probably a lot better.

Re:quepasa

[Minna+Kirai]

.bash_history?

No good security software will accept a password passed on the command line. If they did, it would open more holes than just shell history- consider that most Linux systems allow all users to see every command line that any user is currently running.

ssh, for example, will only let you type a password in a separate interactive prompt. So .bash_history will only hold the passwords if the software was woefully misdesigned.

However, there is a file that might hold the passwords: the virtual memory "swap file". It's unlikely but not impossible that the just-typed password could be swapped from RAM to disk, and then left on disk a long while.

Re:quepasa

[bcrowell]

... someone who can guess your passphrase can gain all of your passwords without ever touching your own system.
Yep. If quepasa ever became really widely used, and therefore widely used by clueless people, you could just do this:

quepasa aol "secret"

and you'd have a password to thousands of AOL accounts. Ditto for

quepasa wellsfargo "secret"
quepasa paypal "secret"
quepasa ebay "secret"

You can lead a horse to water, but you can't make it drink.

However, for someone who's clueful and understands its limitations, quepasa seems like a perfectly good way to keep track of a large number of relatively unimportant passwords, such as passwords of web sites that don't know your credit card number or any really personal information. A slashdot password would be a perfect example.

Re:quepasa

[nick_urbanik]

Well, this program works, implements the above, and prints by rows or columns, and has an option to use upper and lower case letters as the input characters. You can also choose how many columns you want. Consider this public domain.

#! /usr/bin/perl

use warnings;
use strict;
use List::Util qw( shuffle );
use Getopt::Long;

my $byrow;
my $cols = 4;
my $ul;

sub usage() {
die<<DEATH;
Generate a simple table to map mnemonic names to inscrutible passwords

usage: $0 [options]
options:
--rows\t\toutput table by rows\t(default: by columns)
--ncols=n\tuse n columns in table\t(default: $cols)
--ul\t\tuse upper and lower case letters as key\t(default: lower only)
DEATH
}

GetOptions( 'rows!' => \$byrow, 'ncols=i' => \$cols, 'ul' => \$ul ) or usage;
usage if $cols < 1;
my @chars = map { chr } ( ord '!' .. ord '~' );
@chars = grep { $_ !~ /[018oilb]/i } @chars;

@chars = shuffle @chars;
push @chars, shuffle @chars if $ul;

my @keys = ( 'a' .. 'z' );
push @keys, ( 'A' .. 'Z' ) if $ul;
my $rows = int( ( $#keys + $cols ) / $cols );
print "\$cols = $cols, \$rows = $rows\n";
for ( my $i = 0; $i < $rows * $cols; ++$i ) {
my $index = $byrow ? $i : ( $i % $cols ) * $rows + int( $i / $cols );
print "$keys[ $index ] " . pop( @chars ) . pop( @chars ) . " "
if $index < @keys;
print "\n" if ( $i + 1 ) % $cols == 0;
}
print "\n";

Is there a simple way to preserve indentation in code?

Re:quepasa

What do I do if my private key is compromised?
Generate a new private and public key. Send a revocation notice to the public keys server(s) you use

And how do you authenticate yourself to them? Using your old (compromised) key?

Re:quepasa

[RKBA]

Yes. Once a key is revoked it cannot be reinstated however. Theoretically whoever had compromised my private key (and knew my passphrase) could revoke my key, but that wouldn't be of much benefit to them. In fact, whenever I create a new key pair I usually generate a revocation notice at the same time, but save it on my computer instead of sending it to a keyserver. That way, if I should ever forget my passphrase or am otherwise unable to create a revocation notice, I can always send the revocation notice I had previously created. It's all in the PGP FAQ's.

Consonant-Vowel Method

[Chess_the_cat]

Mitnick had a neat suggestion in the Art of Deception. The Consonant-Vowel Method. It provides an easy to remember password because it is pronounceable. You take the following template and swap in consonants and vowels: CVCVCVCV. The examples he gave are MIXOCASO and CUSOJENA. The point is they won't be in the dictionary but you can remember these nonsense words.

Re:Consonant-Vowel Method

Does he also mention that it takes significantly less time to brute-force crack a password made up entirely of alphabetical characters?

Re:Consonant-Vowel Method

[idsCypher]

well its a neat suggestion indeed but i dream of a place where no passwords are required to remember or to use hahah :)

Re:Consonant-Vowel Method

[ajcbau]

While this may be true for English [it is certainly easier to remember something you can pronounce], How well would it work for other languages? AB

Re:Consonant-Vowel Method

[Frit+Mock]

Nice try ... consonant-vovel is a nice pattern ... patterns are easier to break

Re:Consonant-Vowel Method

[Plutor]

Another thing to remember is that rules like this just make brute-forcing simpler. There are 2.18*10^14 mixed-case alphanumeric 8-character passwords, but only 3.11*10^10 mixed-case consonant-vowel passwords (1/7000th as many possibilities), and only 1.2*10^8 single-case C-V passwords.

Forcing 8-char passwords is just as inadvisable. There are 6.16*10^15 possibilities for 6-8 character passwords made up of all typeable characters (ACII 33-126). That'll take 195 days to search the whole keyspace at 1M tests per second. And hopefully your password rotation is more often than that.

Re:Consonant-Vowel Method

[lukewarmfusion]

True, but if the attacker knew that your passwords followed a certain template (those two are 8 characters, all caps, and alternate consonant vowel starting with consonants) they become much easier to attack.

My applications rarely force complexity (sometimes they require numbers or other non-alpha characters). The instructions are always there, but users rarely ever follow them.

One of my not-so-critical applications (a web messageboard!) from a while back stored the passwords as plaintext in the DB (I now use hashing, thank you very much). I once looked at the password list just to see how complex people chose their passwords:

~60% had one word passwords of about 5 or 6 letters, no numbers
10% used their username (which has since been prohibited)
10% had complex passwords - stuff that made no sense to me and used numbers, non-alphanumeric characters, etc.
The rest (a little more than 20%) had a word + a number, or something around those lines.

I did ask them all about password security, and I got two basic responses: My password is secure, or What does it matter?

Re:Consonant-Vowel Method

[joelhayhurst]

There is also a unix utility called APG (Automated Password Generator) which will create pronounceable gibbrish passwords to your specifications. I usually use that, find one I like, then replace a few letters with l33t-speak numbers (to think, it has a use...).

Re:Consonant-Vowel Method

There is a publication which takes this to the next stage:

FIPS PUB 181 ( Federal Information Processing Standards Publication )

It generates "pronounceable" but random "words" of a given length, and avoids the pattern problem in this "method" from mitnik.

Unfortunately, it's also not as portable, but there is example c-code. I've seen it work in a couple places.

The other thing is that with a nonsensical word it's easy to remember ( ookdealiezago or something ), even if it's quite long ( say 12-14 characters ). Easier than mnemonics, too, I've found.

Re:Consonant-Vowel Method

[the+unbeliever]

CVCVCVCV has approximately.... 121,550,625 possible combinations. It's going to take some time to break that, even with a pattern.

Re:Consonant-Vowel Method

[stephenisu]

Allow non-standard ascii into the password. What cracker is gonna check for '®æÝ'?

Re:Consonant-Vowel Method

[nojomofo]

And that's only if the cracker knows what pattern you're using. How would he know that?

Re:Consonant-Vowel Method

[Spunk]

This reminds me of koremutake.

Re:Consonant-Vowel Method

[aphor]

Making this kind of argument is valid only if it is practical for people to use passwords from a maximum-entropy pool of acceptable passwords. Think about this for a second: what you are talking about, strictly speaking, is a cryptographic key. However, we keep using the term password. The difference is subtle but significant, and it is the crux of the issue in the article (RTFA). Passwords are a kind of word, used as a cryptographic key in this case. So, they are the intersection of the set of things that can be words and the set of things that can be cryptographic keys. If you get too strict with the definition of either of the two sets, you risk shrinking the intersection to a cryptographically insigificant number of brute-force attempts.

Rules like this do *not* make brute-forcing simpler. What we need is more like them. Instead of forcing people to use a selection of truly random numbers as passwords, we should have a cornucopia of different mnemmonic password generation algorithms with different inputs that are likely to differ greatly (in two dimensions) from person to person and over time. The total brute force guesses would be the UNION of all of those sets, and they would also meet human factors requirements. The way to improve cryptographic security of passwords is to *increase* freedom, and to discourage conformity. Specifically ruling out different password mnemmonics actually shrinks your pool of brute-force possibilities and thus weakens your scheme. It is acceptable for some people to use dictionary-weak passwords sometimes as long as there is a much greater likelihood at any one time that they will not.

The bigger the dictionary, the closer the attack comes to brute-force keyspace searching. GROW the dictionary to obtuse proportions!

Re:Consonant-Vowel Method

My password is secure, or What does it matter?

Meh, you answered your own question. Either they had a secure password (message board was important to them) or they just didn't care.

I mean, really, a messageboard? Who the fuck cares anyway? If whatever is on that board really needs to be protected then a message board isn't the right place anyway.

Too many morons in the world.

Re:Consonant-Vowel Method

[recursiv]

And that's only if the cracker knows what pattern you're using. How would he know that?

Just so you know, that's the same argument used to support security through obscurity.

Re:Consonant-Vowel Method

[damiam]

Any password system is inherently "security through obscurity". It only works if the cracker doesn't know the password. Security through obscurity is bad only if the obscurity is weak.

Re:Consonant-Vowel Method

[Danny+Rathjens]

Replacing letters with l33t-speak numbers is not wise. That is one of the first variations that password cracking software will attempt after appending numbers.
At least you aren't l33tifying plain dictionary words, ;) When I ran 'crack' on our university shadow files( during job as sysadmin ) the cracked passwords were usually stuff like 'termin8'.
I recommend any sysadmins to download software like 'crack' or 'john the ripper' just to get an idea of the techniques used to break passwords. e.g. the fact that 'dictionaries' in the case of password cracking also include things likes lists of anime and cartoon characters, actors, actresses, scientists, etc. And, of course, the aforementioned leet pattern replacements like s/ate/8/ and s/e/3/.

Re:Consonant-Vowel Method

Or cannot be changed.

Re:Consonant-Vowel Method

[bob_jenkins]

(20*6)^4 = 2x10^8. At 90,000 guesses per second (a number I saw somewhere recently), it would take 38.4 minutes to test all 8-character CVCVCVCV passwords. 22.5 minutes if you treat Y as a consonant instead of a vowel.

Re:Consonant-Vowel Method

[Carnildo]

Forget non-standard ASCII. How about a program that allows any keypress as a charcter in the password? I've run across one program that allowed that, and my password on that system includes both the capslock key and the backspace key -- even if someone's looking over my shoulder while I type the password, they're not going to get it.

Re:Consonant-Vowel Method

[julesh]

Your missing the point of security through obscurity. Taking your argument, you can reduce any security system to security by obscurity, even ones that rely on physical objects (if you know exactly how a physical object appears, you can duplicate it).

Security by obscurity, as usually defined, is reliance on a method of security that, if an attacker knew which method (generally one of a rather limited set of possibilities) you were using, would not be secure.

So, having the method "username + password" wouldn't help an attacker very much.

Re:Consonant-Vowel Method

[damiam]

if you know exactly how a physical object appears, you can duplicate it

I challenge anyone to duplicate my retina.

Security by obscurity, as usually defined, is reliance on a method of security that, if an attacker knew which method (generally one of a rather limited set of possibilities) you were using, would not be secure.

That's true. But, even if an attacker knew you were using a CVCVCVCV system (and how would they?), the system is still quite secure. Not as secure as a completely random password maybe, but more so than 98% of passwords out there.

Re:Consonant-Vowel Method

[gnu-generation-one]

"Allow non-standard ascii into the password."

Or just type upper-set and unicode characters into a password form, and bathe in the warm glow of false-security, as you don't realise the application silently deleted everything not \w and converted everything to lowercase.

Re:Consonant-Vowel Method

[Minna+Kirai]

even if someone's looking over my shoulder while I type the password, they're not going to get it.

Security through obscurity, that is. (And once you post it on the web, it's not obscure anymore)

Re:Consonant-Vowel Method

[Jonner]

joelhayhurst uses gibberish from APG, so transforming that to l33t-speak can't be harmful unless it removes information.

Re:Consonant-Vowel Method

[echucker]

Our previous verwsion of bulletin board software stored passwords in plain-text in the user's profile. As an administrator, it became a handy tool to root out a troublemaker. He was posting across multiple accounts, but using the same exact password patterns for each user account he had created. Made it real easy to prove that they were one and the same person.

Re:Consonant-Vowel Method

[lexluther]

How do the password generators ensure more security? Are they very well dispersed over the set of the possibilities? Are there only a few widley used ones? Have intruders been documented to use these to generate random passwords.

Re:Consonant-Vowel Method

[jonadab]

As I calculated upthread, CVCVCVCV (in uniform case) is about as hard to break
as word-word, but about as easy to remember as word-word-word. word-word-word
is tens of thousands of times harder to break and an excellent choice. A
string of eight case-sensitive letters and numbers, which is traditional,
is about two and a half times harder to break than word-word-word, but it's
more than two and a half times as likely to land on a sticky note, IMO. If
the security of word-word-word isn't good enough for you, you might consider
word-word-word-word, which is quite hard to brute force with today's hardware
yet still IMO easier to remember than eight random case-sensitive characters.

Re:Consonant-Vowel Method

[jonadab]

> If the security of word-word-word isn't good enough for you, you might
> consider word-word-word-word

Or, even better, stick with word-word-word and add ten seconds to the minimum
delay between retries. Ten seconds is long enough to annoy a user who has
just mistyped his password, but the annoyance passes in just a minute. To a
brute-forcer, ten seconds per iteration is almost thirty thousand millenia
to exhaust all the possibilities on word-word-word, much more than a mere
annoyance.

Re:Consonant-Vowel Method

[eraserewind]

You shouldn't have people doing a computer's job.

the way to increase security is to separate the password from the cryptographic key in the first place.

put the computer generated strong cryptographic key on a physical device, allow simple user chosen passwords.

Your security is 3 guesses of the password, proper cryptographic digital key, user allocated physical device.

Re:Consonant-Vowel Method

[aphor]

I agree that passwords aren't optimal. I'm not trying to get into a security one-upmanship contest, but I like the idea of RSA challenge-response using a device that allows a human to read the challenge and decide whether to answer it by RSA signing a hash of the challenge.

This way, a person isn't exposing any secrets, and there is an opportunity to set up a trust relationship between a user and a service by saving the keys in a PKI directory. Also, the user has some idea that he isn't unwittingly signing a challenge put out by an impostor in the middle. It could be implemented on cell phones or PDAs or specialized devices with IRDA and/or Bluetooth/wireless USB.

Sys admin and internal support

[matthew.thompson]

Sometimes even the most vigilant sys admin as not able to halt these problems.

Where I work the passwords are changed by internal support and logged into a database as well as entered into the system.

Despite requests to us strong passwords the internal support view is get as quiet a life as possible and just accept whatever password a user chooses.

The number of times I've seen summer1 is ridiculous.

Personally I think users should choose their own passwords and the system should limit them to >8 characters and a %age difference from their last 10 passwords. But I don't make up the policies.

Re:Sys admin and internal support

[Liselle]

Personally I think users should choose their own passwords and the system should limit them to >8 characters and a %age difference from their last 10 passwords. But I don't make up the policies.

I agree, but you do that and then your security will be circumvented by Post-it notes on monitors. We lost that fight before it even began.

Re:Sys admin and internal support

passwords are changed by internal support and logged into a database

That doesn't sound like a great idea... what if the database was compromised? Every current password and a history showing what type of password the user prefers in an attackers hands.

Re:Sys admin and internal support

[anon*127.0.0.1]

No, the post-it on the monitor is way too obvious.

Clever users put the post-it on the bottom of their keyboard, where no one will ever think to look.

Re:Sys admin and internal support

[Liselle]

Hmm, bottom of the keyboard, I'll have to try that. I'm still trying to figure out how he guessed that my password was "summer1", though.

Re:Sys admin and internal support

[wwest4]

> The number of times I've seen summer1 is ridiculous.

"coffee[1-9]" is another one. the best is when people pick embarrassing ones, like "imabadas", "jacked", or "bigman33".

Re:Sys admin and internal support

[AviLazar]

There is no really good sys admin policy that will be effective without the users caring. Whatever you inact, short of the ridiculous, will be countered by user stupidity. Users do not care about their passwords because it is generally protecting material that is 1) not their property (i.e. work material) 2) non-substantial data (i.e. this is information, not jewelry). Until someone gets their bank information hacked, loses some money (& do not get refunds) they won't learn their lesson. When I worked for PNC they forced you to change the password every month and you could not use the same password until three months after the last time you used it. The only problem was that every system had a different password (kind of annoying to change three passwords every month). However, a system this complex and this cumbersome made it so many of the employees decide to use post-it-notes, kids names, birthdays, etc... So the lesson learned from PNC - complex password systems are not necessarily the answer. Re-education through Pavlovs Bell theory works for me though :)

Re:Sys admin and internal support

[wizard992]

Honestly, I would prefer the post-it notes on the monitor scenario. I admin a small office (50-100 people) where everyone knows and trusts everyone else. More importantly, everyone has the same access to files except for the C** higherup types. Any files that need to be secure are, and nobody except me knows the higherup's passwords.

My biggest worry here is a network cracking attempt, not an internal one. As we grow, we will of course have to enforce far more secure policies, but as it is now there is really no reason why people could not have fantasticaly complex passwords and just write them down. As long as they do not throw them in the trash that is. :)

Now keep them away from chocolate

[enkafan]

Yeah, passwords and standards are fine as long as you keep snickers out of the office

Re:Now keep them away from chocolate

Believe me, if I was fiending for chocolate and someone offered me a bar for my password, I'd willingly tell them that it was "DavidBeckham"... The fact that that isn't my password wouldn't faze me in the slightest.

Ha

[nycsubway]

I've fooled them all... My password is so simple, yet so complex, no one will be able to figure it out! It also doesn't hurt to throw the hackers off track with a hint in the wrong direction by writing false passwords on sheets of paper near your computer. Or putting the real passwords there, then no one would try them.

Re:Ha

So, your password is blank. Thanks for the clues!

Oh, and when your ISP tells you your sending SPAM out, just ignore them.

Re:Ha

[kpharmer]

I used to do that back in the USMC - I converted my walllocker combination to base 7 and then put that on tape on the back of the lock. Everyone in the barracks tried it and failed. Meanwhile I had a nicely documented combination. Of course, I suppose I was fairly lucky that nobody simply removed the tape - but the same combination was also in my wallet along with all my pin numbers. Again in base 7...

Re:Ha

[nycsubway]

but the same combination was also in my wallet along with all my pin numbers. Again in base 7...

Thank you.

Now, where do you live?

Size of Study

[gambit3]

In order to investigate these trade-off factors in a real context of use, we have conducted an experiment involving 400 first-year students at our university.

While the size was larger than I initially expected it to be, I don't know if you can definitely "debunk" myths --as the poster definitively states -- using a 400 person focus group to simulate several dozen millions of varied abilities.

Re:Size of Study

[Glonoinha]

Statistically speaking, a 400 person focus group is going to so accurately represent the population from which they were selected it is almost overkill. Bear in mind, however, that they don't represent users in general, but computer users that are smart enough to get into college, aged roughly 18-19 years old, and open minded enough to participate in a college survey regarding passwords on computers.

But yes, 400 people is way more than enough - heck you can usually predict the outcome of most elections using exit polls asking less people than that.

Re:Size of Study

[gambit3]

I guess I should've rephrased my initial post.

I meant, 400 of the same classification, in this case, as you stated, first-year college students who are probably computer savvy leads me to belive that you can't make generalized conclusions for millions of different classifications of people.

Just my $0.02

Re:Size of Study

[sjwt]

IIRC it barly makes the sugested minimum of around 100 in each group, rembere theres the controll group and the 3 others, in the end they had 95+ in each group which meens they jsut made it in.

Length vs randomness

[SWroclawski]

One area I'd like to see would be strength of a password in terms of randomness, requireing use of characters, etc. vs length. Is an 8 character password with a punctuation mark better than a 10 character pasword with all lower case characters? If so, by how much?

Then we can determine a good password policy that fits with the security model at the facility.

Re:Length vs randomness

[Liselle]

The moment X method becomes popular, it is immediately less effective, because crackers will know what to poke at. If there is a world of unfriendly machines out there, one of your best bets is being a moving target. Password studies are interesting, but the results (of how hard they are to crack) can't be valid for long.

Re:Length vs randomness

[_bug_]

Length and randomness go together and it should never be an either/or decision.

Plus it's difficult to factor in the domain of characters an attacker will use to brute force a password. Throwing in a puctuation mark on a relatively short password will be strong against any attackers who use only alphanumeric characters in their cracking scheme. But the first attacker who does include said punctuation will crack a short password relatively quickly.

L0phtcrack probably has the best approach in which a basic dictionary attack, then a hybrid attack by attaching numerals and punctuation on to the end of a dictionary word. Etc..

But really, if you're not using a dictionary word as your password, the chances of a brute force attack being successful are very low.

An attacker is going to get your password through other means such as keylogging or packet sniffing.

Passwords are really only one tiny piece to the whole security plan and I think it's too focused on. How about more on how to physically protect a machine, how to prevent keyloggers or packet sniffers. How about social engineering? That's one of the last topics (if at all) to be covered during discussions about security.

Re:Length vs randomness

There were a number of studies done, @stake would be a good source for that particular bit of data, considering they state that a Windows network can be audited in minutes: . I've personally used it once long ago, to retrieve an admin pw on an NT domain for a company who's former sys admins had all wandered off or been fired. Took about 4 minutes at that time, to retrieve 80% of the 4K pws in the domain, and the admin pw I was looking for.

It should be noted that this only applies for Windows systems, but then again, they're the biggest problem out there on the net.

Re:Length vs randomness

[SWroclawski]

That's the point of the original article.

So here's a question for you...

Which is more secure, "Peter Piper Picked a Pack of Pickled Peppers on his Holiday in Greece" or "r7x,8!p"?

I'm sure the Peter phrase will be easier to remember, but how secure is it?

And I *don't* expect people to remember 72 characacter length random passwords.

So yes, it's a question of length vs randomness.

Re:Length vs randomness

[pyro_peter_911]

One area I'd like to see would be strength of a password in terms of randomness, requireing use of characters, etc. vs length. Is an 8 character password with a punctuation mark better than a 10 character pasword with all lower case characters? If so, by how much?

An 8 character password using unique upper case, lower case, digits and punctuation has about 94 different characters. If we picked a random 8 character password from this we would have:

94_P_8 = 94! / (94 - 8)! = 94! / 86! = 94 * 93 * 92 * 91 * 90 * 89 * 88 * 87 = 4.4x10^15 permutations

A 10 character password using only unique 26 lower case characters has:

26_P_10 = 26! / (26-10)! = 26! / 16! = 1.9x10^13 permutations.

So, the 8 character password using all characters is about 200 times more difficult to brute force than the 10 character password only using lower case characters.

Peter

Re:Length vs randomness

[SWroclawski]

Duh.

Thanks.

'course there's the issue of numbers of phonetics nonethless a great place to start off.

Mod parent up please.

Re:Length vs randomness

[mackman]

I already posted this elsewhere in the thread, but it's pertinant here. My password generator takes a printf-like format string and generates passwords for you. It also outputs the strength of the generated password (assuming /dev/random is a perfect random generator, which it ain't). You can compare things like a 12 digit alphanum (71.4504 bits), or a 6 word password from the s-key word list (66 bits). A 20 character password selected from all graphical characters (isgraph(c)) is 131.092 bits. If you like you can download it and play with it.

<sig>Sick of paying to rent DVDs or losing your O'Reilly books to your coworkers? Try office-exchange.com today!</sig>

Re:Length vs randomness

[wx327]

How big is your password? It's not the size that matters, it's the strength. Just wait til we see the next wave of spam on how to get bigger stronger passwords.

No passwords...

[Allen+Zadr]

That's why I assign passwords to my users. I know that they are random, cryptic, long enough, and if my user can't remember it, I can remind them.

On the other hand, I don't have a password retention policy either, so really if someone is in my employ for more than six months, there's a good chance of a password getting lost into the wrong hands. Yes, I know this is a bad idea.

Re:No passwords...

[Glonoinha]

Stay late one night. After they are all gone walk from desktop to desktop. Look for post-it notes on the side of the monitor and under the keyboard, and in their drawers. The results will scare you, if your users are anything like mine, and I bet after that you start letting them pick less cryptic passwords.

Also, if you know their password there goes any semblance of Non-Repudiation. And if you can 'remind them' either you have a very short list of users and can remember them, or you have a written list somewhere - nifty, but a bad idea.

Re:No passwords...

[_bug_]

... I bet after that you start letting them pick less cryptic passwords.

This is why user education is huge if you ever want to implement a secure work environment. A lot of users are thinking about remote attacks in which access to their work area isn't possible. Others simply don't see or understand the need for passwords at all.

There's also other security aspects that just aren't thought about by the typical user, such as social engineering, or even giving out their passwords to someone they consider trustworthy, who might then not be so protective of that information.

It's training.

And users don't want to be trained.

So you'll have to force them into it somehow.

But training is key.

Re:No passwords...

[Allen+Zadr]

I'd rather have everybody write down their passwords with a huge billboard font than have the password get out of the building.

I have successfully run without a firewall (and far less virus/worm problems than the company down the hall) for over 5 years. All network access to systems is through ssh, vnc and https only.

I'll be happy to go into great detail on why I don't run a firewall, just ask.

Re:No passwords...

[Allen+Zadr]

The worst barrier, from my perspective, to user education is windows' and web-brower's "remember my password" functionality. For 99% of all interactions with my network, users have their password "remembered" for them. Then, they set the password on their laptop to "blank" or == username.

Does anybody know of an easy way to permanantly disable this capability?

Re:No passwords...

You probably shouldn't go through their stuff.

entering passwords is the biggest problem

[Whitecloud]

How many passwords have you got? turn on pc, open email, encrypted files, bank account login's, ftp login's, forum memberships, the list goes on. How many have you forgotten? We need a better authentication system than text passwords. Security agencies have developed stunning biometrc identification technologies, perhaps these could be put out for the general public to use?

Re:entering passwords is the biggest problem

[Liselle]

Problem I always have with biometric identification is that it lacks something that passwords have: I can change my password, but I can't change my fingerprints. It's both more secure and less secure at the same time. Not better, just different, imo.

Re:entering passwords is the biggest problem

[Tim+C]

The good thing about passwords is that they can be changed if forgotten or compromised. If a system that uses biometric information is compromised, you don't have that option - I can't change my retinal pattern or finger prints.

Re:entering passwords is the biggest problem

[anon*127.0.0.1]

True, but how many of those passwords are protecting something I really care about? Do I really care if someone cracks my slashdot password? Not really. What are they going to do, ruin my karma? Inconvenient, hardly a catastrophe.

Most of the time, the only reason I use a password is because the site requires it, not because I care that much about protecting my account. NYTimes. Battle.net ZDNet. All those sites get the exact same password. If someone guess it, oh well. So they can read stories under my account.

That only leaves a few passwords for me to remember, for those accounts that I really want to protect. It makes things a lot easier to manage.

Re:entering passwords is the biggest problem

[LoudMusic]

For all personal computer password Apple makes it easy. The Keychain is an excellent way to manage passwords.

But things like voicemail, ATM, and keypad car entries you'll still have to remember.

Re:entering passwords is the biggest problem

[jschottm]

The problem with widespread biometrics is that you have to have a secure biometric reader at every location that users would possibly be at. This is why you see fingerprint scanners used at a lot of locations for door security, but relatively few for individual computer security. And secure biometric readers are expensive. (yes, you could use a simple scanner device, but then who's to say what's providing the data - an actual scanner or some software that's playing back the data that was captured from a previous session?)

There are PDAs that have biometric attachments that you can use to store multiple passwords, but in most cases I'm not sure that gains you that better security over just using a strong personal password, ala Apple's keychain.

As an aside, my experience with biometric door access at work has been that it rejects my finger scnas repeatedly about half the time until I give up and go around to where there's still card swipe access. YMWV.

Re:entering passwords is the biggest problem

[BeBoxer]

Biometric's are not useful as a general purpose authentication technique. They are effectively a plaintext password which you can't change. The fact that you "type" it by putting your finger on a sensor, or looking at a camera, or having your hand measured doesn't change the fundamental nature of the password.

Which is not to say that they don't have uses. But they are limited. A certain amount of trust has to already exist. The entity which is being authenticated to needs to be able to trust the biometric reader. If you can't trust the reader, then you don't know if it's actually performing the biometric measurement or just replaying a previously recorded measurment.

So it works fine, for example, for checking the identities of people entering a secure facility. The same company owns the building and the reader, and perhaps has a guard watching people enter so that they know the reader isn't being tampered with.

It does not work, for example, for authenticating to a web site. Sending a JPEG of your fingerprint (or something similar) to your bank's web site doesn't really provide any authentication at all. Moreover, if you are using your fingerprint as a password at lots of web sites, then if any of them get hacked the attacker can then impersonate you to all the other web sites. I guess then you can start using a different finger, but that only works so many times.

The solution in this case is a smart card or something similar. You carry the smart card, and your fingerprint unlocks it. The card can then perform strong crypto-based authentication to whatever web sites, etc. require it. Your fingerprint (or other biometric measurement) only travels between you and the card you carry. This helps protect you against entrusting everybody with a copy of your biometric password. And the remote sites don't have to trust the fundamentally weak biometric password getting sent to them over the Internet.

Re:entering passwords is the biggest problem

[bob_jenkins]

19 passwords, at last count, just at work.

I asked around recently. Most people have two or three passwords for various purposes (insecure, work, private) that they use for everything. When they can't remember a password, they try all their username x password combinations until something works. But they can remember all their passwords.

I'm experimenting with storing my passwords encrypted on my computer. One file per password. Still two or three passwords that I've committed to memory (for insecure, work, private) for decrypting those files. Now I can use different truly random passwords for every purpose. But I also have to worry about leaving decrypted files around on my computer. I don't worry about temporarily having decrypted files on my computer, on the theory that anyone who could grab those could just as easily watch my keystrokes and catch the passwords as I use them.

I wrote myself a web page (http://burtleburtle.net/bob/crypto/password.html) for choosing passwords by rolling dice or flipping coins. I like flipping coins.

Re:entering passwords is the biggest problem

[FreeForm+Response]

I read about a solution to this a while ago that I use, and which works well for me.

Whenever I need to make an account for something, I assign it a security level of low, medium, or high. Then I use my pre-memorized password of the appropriate level to register for the service.

Webcomic message boards, NYT reg, etc. get the low-security password, which is a simple dictionary word. For these accounts, I could not possibly care less if somebody gets that password, or if I need to give it to somebody else for whatever reason. I'd write it down if it wasn't trivial to remember. I have changed it in the past, but it's a hassle to keep track of all the sites that use it, so I don't change it very often. But again, who cares if somebody reads the New York Times with my username?

Normal user accounts, computer logons, webmail, IM, etc. get the medium-security password. It's a dictionary word with a couple of numbers sprinkled in; easy enough to remember, but non-trivial to brute-force. This password I try to rotate relatively frequently, and I don't give it out to people. Things where I could get in legal trouble from unauthorized access rate this password, and thus I don't share it with anybody unless it's absolutely necessary (and then I change it).

Root user accounts, my main email, and anything having to do with money (banking, eBay, etc.) get the high-security password. 16-character, mixed-case, alphanumeric, most certainly non-dictionary, I'd throw Greek letters in there if I could, etc. Nobody knows this password but me, it isn't written down anywhere, and I don't use it any place where I'm concerned that it might be compromised on the server side (phishing web sites, etc.) I try to make sure that it's never transmitted insecurely as well, as far as I'm able.

This way, I have only three passwords to remember at any given time, only one of them is truly complicated, and if I forget which password I used initially I can try the others. This system works well for me at alleviating password clutter.

Re:entering passwords is the biggest problem

[gnu-generation-one]

"Problem I always have with biometric identification is that it lacks something that passwords have: I can change my password, but I can't change my fingerprints"

Good point.

Howabout the other one: you can't use different passwords."*

If someone scans your iris at a bar so you can prove you're not a terrorist, and allowed to drink there, then the bar has enough info to get into your workplace. A policeman who scans your hand to check your identity by the side of the road has enough information to board a plane in your name. (not so bad if you're a passenger, worse if you're the pilot)

Combine that with the "biometrics can't fail" attitude that everyone is promiting, and the "computers can't fail" attitude that everyone's always had, and you get chaos.

( * anyone who says "use fingerprints for one, iris-scan for another, and speech-recognition for a third, remember that we'd be lucky if even one of those technolgies worked reliably.)

Re:entering passwords is the biggest problem

[cellocgw]

>Most of the time, the only reason I use a password is because the site requires it, not because I care that much about protecting my account. NYTimes. Battle.net ZDNet. All those sites get the exact same password. If someone guess it, oh well. So they can read stories under my account.

I do something about that simple too, but on the days when I feel the need for a double-layer AFDB, I can't help wondering what would happen if someone posted a note in my account that said something like "I'm ready to blow up the next plane, Mr. BinLaden." oops, I just posted that myself :-)

Easy solution:

Just patent password cracking as a business method, and sue everybody for patent infringment who attempts to guess your passwords!

Re:gosh, that sure is a lot of words...

So, all systems normal, right?

Why should passwords be difficult to guess?

[crow]

I'm confused as to why you would care how strong the passwords your users select are. As long as you control the authentication system, you can prevent repeated guessing--the days of globally-readable encrypted password files are gone. If you get more than a small number of failed guesses on a given account or from a given address, you cut off access, at least for a time.

The key is to detect the attack.

Re:Why should passwords be difficult to guess?

[spellraiser]

The key is to detect the attack.

Ah, you are referring to something like this?

Re:Why should passwords be difficult to guess?

[a55mnky]

Depending upon what is at stake - attackers can be very patient. If you allow users to create their own passwords and don't enforce some complexity requirements, most will chose their name, kid's name, spouse, pet, etc. Give me a few days even with your authentication systems in place and I will guess the password.

Re:Why should passwords be difficult to guess?

[ArsenneLupin]

If you get more than a small number of failed guesses on a given account or from a given address, you cut off access, at least for a time.

Well, this is fine as long as passwords are not so easy to guess that the attacker gets it on the first attempt (and believe me, with some of our users, it would be this bad, if we didn't enforce a minimal password choice policy...)

Moreover, if you only cut off access to the offending IP address, be careful: with most ISPs today, you just need to log off and on again, and you get a different IP (not to mention open proxies and other niceties)

Re:Why should passwords be difficult to guess?

[Phekko]

You've been watching too many movies. Only in movies does the hacker try once with something VERY obvious and fails, then something else and fails again and finally thinks (aloud) for a moment and suddenly gets it.

One solution to this is login delay. You know, doubling the time between typing in the login and password with every failed attempt. You can start with 10ms or something ridiculously small, it really doesn't matter. Even if you make the maximum time something like 30s it already makes your average attack quite a bit slower than it usually would be. Picture trying millions of combinations with 30sec in between tries. That's right, even with ONE million tries you already have waited one year. And to (mis)quote a famous geek: One year should be enough for everyone

Re:Why should passwords be difficult to guess?

Remember about password hashes - you steal them and break them (brute force on YOUR system). For example, on the web hashes may appear in URLs or cookies, SQL injection attacks may often get you these hashes (or even passwords at once, if script author is so clueless..) etc.

Re:Why should passwords be difficult to guess?

If you get more than a small number of failed guesses on a given account or from a given address, you cut off access, at least for a time.

One of my most important computer accounts is administrated with that horrible policy. I'm posting anonymously because I wouldn't dare admit that fact with any identification attached; it's pretty much a gold-embossed invitation to Denial of Service attacks.

I agree with you in principle, though. If you control the authentication, you can impose restrictions to users which aren't very heinous (say, after two failed logins your IP doesn't get to try again for a minute) but which make brute forcing even semirandom passwords impossible.

Use these...

[mcgroarty]

These are the best passwords ever:

jieph9Ee eik4zahW que8aiQu wahK6pee nie1eCho aNg2raew
exeif0Ta ooqu9Aye Eid7iici eiZ6boin Waeg5kah Mi9vegoh
eelae9Oo Ua7yojie Jiquaud5 Vohw7iwi Eit7laax Aesae2ax

They are relatively random, easy to remember (you can kind of pronounce all of them), and best of all, nobody has guessed a single one of them yet. I've been using these for years, and you should too!

Re:Use these...

... How wonderful pwgen is ...

DESCRIPTION
pwgen generates passwords which are designed to be easily memorized by humans, while being as secure as possible.

Re:Use these...

[thbbpt]

Great. Now i know all your passwords.

Re:Use these...

[scottme]

Damn you! How did you guess my passwords? I have been using these and others like them for years, but now I see I was only kidding myself when I thought they were secure.

Still, plenty more where those came from.

I sense a good social engineering technique here

[Spatula+Sam]

"Hello, I'm doing a study for the Cambridge University Computer Laboratory on passwords..."

Revolutionary...

[danielrm26]

What's next? Long passwords better than short ones?

a couple things i do

[millahtime]

There are a couple things i do....

1) On my servers te password changer forces them to not use dictionary words, has to have numbers, letters and nonnumeric characters, and they can't use their previous so many passwords
2) For my password I use a few things from my childhood that no one will ever come up with.
3) There is nothing like keeping up on your security patches.

Re:a couple things i do

1) On my servers te password changer forces them to not use dictionary words, has to have numbers, letters and nonnumeric characters...2) For my password I use a few things from my childhood that no one will ever come up with.

Dude, where did you grow up?

Re:a couple things i do

[jhkoh]

and they can't use their previous so many passwords

I have a friend who worked on a system with a similar restriction in their password-changing policy. So, when the system forced him to change his password, he just changed it "so many" times until it let him go back to his old one...

Re:a couple things i do

[Eklypz]

Ug, Sounds like a pain in the rear for the users. I miss the days when technology made things easier on the users.

Make the attacker work a thousand times harder?

[arvindn]

That will never be possible, considering this.

Seriously, even if you are using something other than passwords, say biometric authentication, security will remain as shabby as it is today unless users understand the importance of keeping the system secure. And that is a tall order.

like this?

[porcorosso]

declare @consonants char(20),
@vowels char(5),
@password varchar(255),
@length tinyint -- passed to sp

select @consonants = 'bcdfghjklmnpqrstvwyz',
@vowels = 'aeiou',
@length = 8 -- maximum of 254. any more will overflow

while (@length > 0)
begin
select @password = @password + substring(@consonants, convert(int, ( round (rand()*100/5, 0) )),1)
if (@length > 1)
begin
select @password = @password + substring(@vowels, convert(int, ( round (rand()*100/25, 0) )),1)
end
select @length = @length - 2
end

select @password

Re:like this?

[porcorosso]

yeah, 100/5 = 20, not 21 so one consonant has to go for simplicity's sake. This works pretty well on some of the stuff I've worked on.

Re:like this?

[jonadab]

# Or, if you don't like typing 15+ lines to do something simple...
sub v { my @v = qw (a e i o u); $v[rand@v]; }
sub c {my@c=split//,'bcdefghjklmnpqrstvwxyz'; $c[rand@c]}
print((map {c() . v()} 1..4), c(), "\n");

This is really too basic, though; it significantly reduces the difficulty of
brute-forcing the password. Granted, that's better than making it so hard
to remember that people write it down, but we can do better. By throwing in
blends and dipthongs, it's possible to generate pronounceable passwords that
are harder to break.

Even better, though...

open WORDS, "</usr/share/dict/words";
my @w = map { chomp; $_ } <WORDS>; close WORDS;
print join '-', map {$w[rand@w]}1..3; print "\n";

Given 45425 words in that file (Mandrake 9.2), that gives us a password
generator with 45425^3 = 93731336140625 possible combinations. The other
method gives 21^5 * 5^4 = only 2552563125, many times fewer possibilities.
Yet, which is easier to remember, "iron-balconies-noninverting" or
"dewuyefer"? They're about equally hard to remember, IMO. So going with
dictionary words is actually better for security, as long as you string
three or more of them together. (Two words gives you 2063430625, about
as many possible combinations as the CVCVCVCVC algorithm. AOL uses this
for their account passwords, but the horrible thing that happens if someone
breaks one of those is they can steal internet access. For things that
need real security, I recommend 3 words or more.)

Re:like this?

[porcorosso]

Great idea ... except for the fact that the facilities that you refer to aren't available in SQL. I never said it was the shortest, most efficiant solution. It was just some SQL that I sometimes use that I happened to have lying around.

Posssible Solution?

[adamvjackson]

How about using a smartcard for system logon and decryption of an AES database with your passwords?

http://keepass.sourceforge.net looks like it has potential.

Re:Posssible Solution?

[porcorosso]

keep ass? sounds naughty ...

Random Passwords aren't the problem

[Stargoat]

The problem isn't with passwords. The problem is with the 40 year old women in the office who use their kids names over and over with different numbers at the end of the password, and then write even that simple to remember password down at their desk. The problem is with an HR department that doesn't care if IT policies are enforced, and management that doesn't care if HR isn't doing their job.

If IT keeps warning, they're told to stop worrying. If something happens, IT is blamed. These morons (leaders) need to figure out that IT isn't something that helps them do business. Their business runs on IT. Without it, they have no business.

Re:Random Passwords aren't the problem

[ImTwoSlick]

The real problem is the forced password changes every 90 days (for me), and the half-dozen (at least) passwords I have to change every time. Thank God my IT doesn't check for reused passwords, or I'd have to resort to writing them all down, or picking insecure sequences.

Re:Random Passwords aren't the problem

[Gorbag]

Random passwords, password aging, etc. are indeed the problem. The human element is a constant, and humans aren't that good (these days) at memorization. So all you are doing by assigning a random password and/or aging, is making it more likely (bordering on certainty) the password is going to get written down and sticky taped to the monitor.

Catchphrases are far easier to remember, and simple mapping of words to punctuation symbols and numbers can go a long way to personalizing even a catchphrase. IT should train appropriate passwords, and run crack to catch problems.

Re:Random Passwords aren't the problem

[hal2814]

One of our computer systems requires changing passwords regularly. The people at our office have tendency to write down a list of as few unique passwords as they must provide and "hide" this list either under their mouse pad and taped to their monitor. Some even have an arrow pointing to the current password. I feel much safer about the security of our other system that doesn't enforce changing passwords. At least then the hacker must look at a family album to determine the password instead of just looking under the mouse pad.

Re:Random Passwords aren't the problem

[Bronster]

If IT keeps warning, they're told to stop worrying. If something happens, IT is blamed. These morons (leaders) need to figure out that IT isn't something that helps them do business. Their business runs on IT. Without it, they have no business.

Actually, you're wrong. It's people that the business runs on in almost all cases. IT is a tool that makes people so much more efficient that processes now assume that it's available and most of those people don't know how to function without it (and more to the point the information they need to operate is stored in it rather than kept in folders on their desk where they could get at it).

A design where authentication is centralised to a secure enough server and that authentication attempts are throttled so that guessing attacks are restricted means that you don't _need_ such a draconian password policy. My work uses RSA SecureID for all logins from outside the corporate intranet. Within the intranet we're a little soft and squishy, but that's considered a lower cost than the cost of having to tell people their passwords all the time. And yes, we do have password policies, but they're not insanely complex.

Re:Random Passwords aren't the problem

[Planesdragon]

The problem isn't with passwords. The problem is with the 40 year old women in the office who use their kids names over and over with different numbers at the end of the password

(Why the slam on 40 year olds?)

Anyway. The problem is with passwords--the fact that you're forcing someone who really doesn't want to and shouldn't be made to into picking a password. You should just randomly assign one, give it to the person, and tell them that this is THEIR password until it gets compromised.

The 40-year old woman remembers her PIN, her SSN, and her street address. She can remember a "Strong Passsword"--she just can't choose one.

Re:Random Passwords aren't the problem

[hackstraw]

The problem isn't with passwords. The problem is with the 40 year old women in the office who use their kids names over and over with different numbers at the end of the password, and then write even that simple to remember password down at their desk. The problem is with an HR department that doesn't care if IT policies are enforced, and management that doesn't care if HR isn't doing their job.

<sarcasm>
Yeah, I'm a super for an apartment complex, and I have these problems all the time. These fucking 40 year old women use thier kids names as their passwords to get in their apartments, and then complain to me about how getto the apartment complex is because their apartments get broken into all the time. These dumbasses also have me call up tow trucks and passwordsmiths all the time because they cannot remember thier password for their car. I keep telling them to make better, easier to remember passwords, but they are all just morons.

A buddy of mine is a super at another apartment complex, and they still use "old school" technology like keys to get into their apartments and cars, and they rarely if ever have these problems.
</sarcasm>

The moral of the story is that there are such things a physical tokens, smartcards, etc that can provide keys to authentiate people to access computer systems. I hate to break it to you, but username/password schemes only authenticate usernames and passwords.

The only thing that has not been worked out cleanly with keys is revocation. Any ideas here?

Re:Random Passwords aren't the problem

[plumby]

Or with 30 odd different applications with different usernames and different password rules/expiry periods. I cannot remember all of my passwords, and cannot afford to spend a couple of hours every few weeks trying to keep them all in sync.

Re:Random Passwords aren't the problem

[ericspinder]

The real problem is 30 day password expiration. Short password expirations are (I believe) the largest security hole in IT. On the user side, most people don't cannot keep coming up with new complex passwords every few weeks, they know that they will forget, so they get into the habit of writing down the password, or trying to create a "moving password scheme" that is easier to remember. Also is a problem is the lack of a consolidated logon, meaning that the current password will not be updated in multiple distributed systems. Many users who "follow policy" and fail to keep mental track of their password are heavy users of password reset, which creates "social engineering" problems.

Password reset is the number one help desk issue. All you need is some basic information about the user and a cracker could get the password reset to whatever they want. It's tough for companies to make resets as tough as they really need to be, the cost would be too high.

I believe that the best solution is to enforce complex passwords and allow those passwords to last 6 months or longer.

Re:Random Passwords aren't the problem

[ArbitraryConstant]

blah

At work they make me change them every 30 days! There's no way I can memorize a good password that frequently.

Re:Random Passwords aren't the problem

[Aapje]

The problem is with the 40 year old women in the office who use their kids names over and over with different numbers at the end of the password

No, the problem is with the password police who requires those women to change their password every month. While that theoretically improves security, in reality it makes it worse because people are prone to forgot their changed passwords and thus write them down. That is not the user's fault. That those 40 year old women can't remember their passwords, especially when they change every month, is a fact of life. Ignoring that fact, changing the situation from bad to worse, means that you are stupid, not the users.

</end rant about stupid sys admins>

Anyway, if you really cared about security, you would use smartcards, fingerprints or whatever. Passwords for regular users are about as secure as locking your front door and putting the key under the mat*.

*In a place I worked someone used 'secret' as a password and shouted it across the room. And yes, it was a 40 year old woman. ;)

If IT keeps warning, they're told to stop worrying. If something happens, IT is blamed. These morons (leaders) need to figure out that IT isn't something that helps them do business. Their business runs on IT. Without it, they have no business.

Sure, management is ultimately responsible for everything. But often, IT can also be blamed for not being informative enough. In the case of security, you should ideally have made a comparison between the security mechanisms and offer your boss a clear choice:
- Passwords without enforcement/whining = little security + easy for users
- Passwords with user enforcement = some security + hard on users
- Chopping off a finger for every bad login attempt = good security + lawsuits
- etc...

Spell it out and get management to agree what your job is, what others should do and what things can still happen. Of course, then management can still be unfair, but you will be happy knowing that you are being professional.

Re:Random Passwords aren't the problem

[Nick+Harkin]

Keycards I guess, you can revoke them remotely, many hotels revoke the keycards every week, if you are staying for more than one week, a minute at the front desk is all that is needed to re-encode the card with the new details.

Re:Random Passwords aren't the problem

[Otter]

Same here -- the IT security head is convinced that piling burden after burden on users enhances security, when, of course, everyone is just writing down their 12 user/pass combinations that change out of sync and can't be reused.

Meanwhile, the way this genius *told* us to remember passwords is to cycle through things like "Pedro45" and "Nomar5"!

Re:Random Passwords aren't the problem

[Xenographic]

If you're going to write it down anyhow, at least tell them to keep the paper in their wallet.

It's more likely they'll take care of it, then.

Re:Random Passwords aren't the problem

[cdrudge]

The problem is with the 40 year old women in the office who use their kids names over and over with different numbers at the end of the password, and then write even that simple to remember password down at their desk.

Shit. I gotta change my passwords and my location now. Thanks alot.

Re:Random Passwords aren't the problem

[SiggyRadiation]

Reading this article I remember a time -when I was still an application-manager for a large hospital- when I went to a small department to instruct a group in using the application.

It went something like this:
- Me: "What are your usernumbers? "
- Women of the group: "xxxx, yyyy, zzzz, dddd, ffff"
- Women: "Do you want our passwords too?"
- Me: "No, I just need your login-info so I can fill in the necesarry forms."
- Women: "It's okay, we all share the same password, you can have it."
- Me [frowns]: "You shouldn't do that, and I don't want to know what your password is. If I don't know your passwords I cannot be blamed for anything that goes wrong when one of your accounts is used"
- Woman: "No, it's okay, the password is 'fill-in-a-simple-4-letter-word"
- Me: flabbergasted. Surrenders. Gets on with instruction.

Before I left that place I should have written a simple script that processed through all accounts trying just a few (not more than 10) password like diskette, floppy, computer, etc. etc. It would have probably hit 25% of users. It wasn't part of my job though and would have probably led to me being suspected of cracking-activity.

luckily there were also other security-measures in place....

Siggy.

Re:Random Passwords aren't the problem

[southpolesammy]

Once again, the critical problem here is that you're all trying to solve a non-technical problem with a technical solution. There is usually only one effective way to remedy a social problem, which is to provide a social solution. This is the dividing line between what technology can accomplish (providing strong framework) and what management has to do in order to get people to follow their policies (positive/negative reinforcement).

Re:Random Passwords aren't the problem

[the+chao+goes+mu]

Worse, irregular password change schedule ( different cycles on different machines, some with longer or shorter periods) and different password policies on each machine. (No fewer than 8 chars, no more than 8 chars, must have a numeric, cannot begin with a numeric, can't contain certain characters... )

Re:Random Passwords aren't the problem

[poot_rootbeer]

These morons (leaders) need to figure out that IT isn't something that helps them do business.

It's worse than that. Many pointy-haired bozos seem to believe that IT's goal is to HINDER their attempts to do business. "Those assholes in Tech are dragging their feet again! I want this project done FAST, why are they insisting on doing it RIGHT instead?"

Re:Random Passwords aren't the problem

[RKBA]

No, the problem is with the password police who requires those women to change their password every month.

You mean like Mordac ?

Re:Random Passwords aren't the problem

[stilwebm]

This brings up the interesting debate of whether shared authenications systems are more secure or less secure. If you had only one password for all 6+ systems, you'd probably see much less reuse of old passwords. On the other hand, having someone's password could me access to 6 different systems on a variety of platforms.*

*It is idealistic to think that a single authentication system will be shoehorned in to every system used in many enterprises. More than likely at least some application will not be able to use the networked authentication for one reason or another.

Re:Random Passwords aren't the problem

[woztheproblem]

Are you kidding? Why doesn't she just randomly assign one to herself?

Why should everyone have to be assigned a password just because some lady can't make up her mind?

Re:Random Passwords aren't the problem

[RESPAWN]

Actually a worse problem is having a host of different applications with their own seperate password policies and different password change intervals, and most of which track at least your last 3 passwords. When you have, say, 8 or 9 different appliations like this, it becomes very hard to remember all of your passwords.

And the apps that I dislike the most are those that don't allow special characters as I generally like to come up with passwords that use them. That will defeat a lot of the brute force/dictionary attacks. (1337-speak being a possible exception.)

Re:Random Passwords aren't the problem

[Planesdragon]

Why should everyone have to be assigned a password just because some lady can't make up her mind?

Because the best passwords are Strong Passwords, and if you leave it up to people to choose strong passwords, THEY WON'T!

And just because you're assigned a password doesn't mean you have to keep it. You can always get your password changed, just come up with a Strong Password and get the techs to vett it as strong.

Re:Random Passwords aren't the problem

[DrCode]

You're right, passwords aren't the problem. For me, remembering which password goes with which service is the problem.

Re:Random Passwords aren't the problem

[WheelDweller]

Bravo. That's the essence of the problem. You musta been a sysadmin at some point; me too. Now I'm a security guard and my ex-wife's takin' 1/2 of my minumum wage. But it's not all bad: I also work only 1/2 the time as a sysadmin, and never do I have to 'sell' anything like prudent security practices.

Ya know, if I could convince the credit card companies as well, this might be a perfect life. :>

Keep the faith, bud.

Re:Random Passwords aren't the problem

[E_elven]

I used to work at a bank and I have news for you: the 40-year old woman may not remember their SSN. Of course, additional problems are caused by the fact that she doesn't have to change/relearn her SSN every month.

Re:Random Passwords aren't the problem

[Minna+Kirai]

You can always get your password changed, just come up with a Strong Password and get the techs to vett it as strong.

That's impossible. A strong password is one for which there is no shortcut to brute force attacks. Once compromised, a password is no longer strong, even if it's immune to dictionary attacks.

If a user walks into IT and wants "rOp3b6ot" for a password, you have no way to know if that's strong or not. Even though it may appear random to you, you can't trust that he hasn't already compromised that password. What if he's already using the same string for logging into Slashdot and 10 other low-security websites? What if he used that password to log into his old laptop, which has since been sold on ebay?

Unless I consider the project unimportant, I would never allow users to pick a password. I'll roll the dice for them- and if that's too hard to remember, then he can just show his employee ID in my office M-F and I'll roll the dice again. The most important part of password security is to make it easy for a user to get his password reset by personal interaction, so that there's no incentive to either choose a obvious phrase, to re-use old ones, or to write it on the bottom of the keyboard.

Re:Random Passwords aren't the problem

[gnu-generation-one]

"The real problem is the forced password changes every 90 days (for me), and the half-dozen (at least) passwords I have to change every time."

Yep, password-expiration policies make for some really crap passwords. Think of a good password. It's easy to remember because you've used it everyday for years. And you get used to typing it, so it doesn't matter if it's a really long password, or if it has odd characters.

Add a policy of "you've had that password almost a week now, you need to change it to satisfy these 25 rules", and the passwords go to pot. Think of a password (not easy), and by the time you've started to remember it without calling the helpdesk or writing it down, you have to change it again to another one you don't remember.

Forcing people to use numbers and symbols on a web-page password is even worse. It's a web page, you're probably not going to visit more than once a year, yet they demand a unique and difficult password. Nevermind writing it down in an encrypted text file, I change computers more often than I visit some web-sites (amazon) where I have passwords. I probably have about 5 different accounts at most places, simply because they insisted on abnormal passwords.

Re:Random Passwords aren't the problem

[Rich0]

A design where authentication is centralised to a secure enough server and that authentication attempts are throttled so that guessing attacks are restricted means that you don't _need_ such a draconian password policy.

I saw a presentation by the head of computer security at Johnson and Johnson - pretty impressive if they really have things working as he described.

They have a full PKI setup. When you join the company, you go to a bucket and grab a smartcard (on USB dongle). You plug it into a PC and it generates a keypair, and submits the public key to a signing authority, which will then sign off if you meet some criteria (he didn't disclose this part). Then the smartcard stores your certificate (as does the employee directory).

At no point does your private key leave the smartcard - it has a 5 passphrase guess limit, and after that it deletes the only copy of your private key in existance. If you forget your passphrase, their signing authority revokes their signature of your certificate, and you start over.

This provides an effective authentication / digital sig solution. For encyrption you use a different keypair which is protected using an escrow system (you can't just toss that if you forget your passphrase).

No need for secureID with this system...

Re:Random Passwords aren't the problem

[Planesdragon]

That's impossible. A strong password is one for which there is no shortcut to brute force attacks. Once compromised, a password is no longer strong, even if it's immune to dictionary attacks.

Which is why a tech should be forced to vett password changes. Thirty minutes checking some websites in the user's history (and that respond to a search for the user's name) for the password should be enough to see if he uses it.

(Oh, and there's always a shortcut to brute force attacks--kidnap the user and beat or bribe the password out of them. ;) )

Re:Random Passwords aren't the problem

[dtfinch]

I agree. Forced password changes create a big security risk. The only problem they fix is if someone has already broken a password, the time they have to use it is limited. But there's not too much you can do with a stolen password in a 3 months that you can't do in 3 hours.

Here's my own strong password generator. The thing to do is generate a good password and put it in your wallet. You'll probably only need to pull it out 3 or 4 times before you've memorized it. If your wallet is stolen, change your passwords.

Re:Random Passwords aren't the problem

[B.D.Mills]

The real problem is the forced password changes every 90 days (for me), and the half-dozen (at least) passwords I have to change every time. Thank God my IT doesn't check for reused passwords, or I'd have to resort to writing them all down, or picking insecure sequences.

The BOFH had some good ideas by ruling through fear and intimidation. If I was running your IT department, I would
(1) Check for re-used passwords and reject them.
(2) If your password had a dictionary word in it the expiry would be 7 days instead of 90.

Re:Random Passwords aren't the problem

[harmlessdrudge]

The moral of the story is that there are such things a physical tokens, smartcards, etc that can provide keys to authentiate people to access computer systems. I hate to break it to you, but username/password schemes only authenticate usernames and passwords.

Hello? Physical tokens authenticate physical tokens--unless combined with something known only to the authorized user (two factor authentication).

Re:Random Passwords aren't the problem

[pipingguy]

The only thing that has not been worked out cleanly with keys is revocation. Any ideas here?

Each employee is assigned a personalized 512MB USB key that boots their computer?

Re:Random Passwords aren't the problem

[pipingguy]

*In a place I worked someone used 'secret' as a password and shouted it across the room. And yes, it was a 40 year old woman. ;)

Please stop dissing 40 year-old women. I went to an Aerosmith concert recently with one and she was really hot!

Re:Random Passwords aren't the problem

[pipingguy]

Sure, management is ultimately responsible for everything. But often, IT can also be blamed for not being informative enough.

Let's face reality, people: PHB cluelessness combined with IT uncertainties (SPAM, obligatory Windows crashes, viruses) have given businesses the ultimate "the dog ate my homework" excuse.

Re:Random Passwords aren't the problem

[eraserewind]

finally somebody with a clue!

Re:Random Passwords aren't the problem

[leandrod]

> Thank God my IT doesn't check for reused passwords, or I'd have to resort to writing them all dow

That's not so bad... it merely transforms the passwords into tokens, from something you know to something you own. As explained by Bruce Schneier in a not so old Cryptogram issue...

Re:Random Passwords aren't the problem

[Minna+Kirai]

Which is why a tech should be forced to vett password changes. Thirty minutes checking some websites in the user's history

Not only would that be a HUGE waste of the tech's time, it still won't work.

Suppose I go to my company's tech office and tell them to set my login to the same password I use for slashdot (which is "oiiiocmm"). There's no way that tech can find it- he can't map my real name to an imaginary handle.

But if I used a word address as my (undisplayed) email contact for slashdot, then CmdrTaco can use that to find my work machines and guess my login name. The admin of a two-bit WWW BBS is not trustworthy.

The only way to be sure a user hasn't already compromised the password she is requesting is to place far too much trust on her. If you trust the user, then you don't need to vett the password. If you don't trust her, then your vetting will be insufficient, so just create a random string instead.

Re:Random Passwords aren't the problem

[spaceyhackerlady]

The problem is with the 40 year old women in the office who use their kids names over and over with different numbers at the end of the password, and then write even that simple to remember password down at their desk.

40 years old? You had me worried there for a minute. I'm 42, so I should be OK, then. I've been expecting this year to be an enlightening one.

Like others, my favourite password algorithm is the first-letter-of-each-word-in-a-phrase algorithm. My standard example is TbontbTitq - random garbage unless you think of Shakespeare. Anybody watching over your shoulder sees random garbage, can't remember it because there is no pattern, and all is well.

No, I have never used this particular example password on any computer system.

...laura

Re:Random Passwords aren't the problem

[Rich0]

Not really - the guy mentioned that he previously worked for the NSA.

He mentioned that public key crypto depended on the difficulty of factoring large prime numbers. (Ok, lots of people make that mistake.)

Then when asked about the threat of distributed attacks (a la distributed.net) he pointed out that those attacks are only useful against symmetric ciphers and not public-key systems. That is of course totally hogwash - the technique is valuable against both types of systems. Granted, it still isn't going to crack RSA-2048 anytime in this century, but that isn't because it is asymetric - it is simplay because we don't have enough CPU to throw at it.

Still, he generally knew what he was talking about. And I was impressed that they manage the whole system with only six employees (and half of those just manage the more directory-oriented services that go along-with the whole PKI business).

Remembering "random" passwords

I don't think it's that hard to remember random passwords of a size like 8-9 chars.. It depends on how often you need to log in, when you logged in 3 times you can mostly remember them

Use passphrases instead

Back in the days of limited capacity, 8 or 10 character passwords made sense. Today, there's no reason why we shouldn't be moving towards pass phrases of 20-50 characters. How difficult would it be for someone to remember "It was the best of times, it was the worst of times." as their password, and yet, how difficult would it be to crack a 52 character password?

It's really just a matter of changing mindset to use passphrases instead of passwords.

Re:Use passphrases instead

[lintux]

Uhm, would you want to have to enter a 20-50 characters passphrase every time you log in? Even when you have to type it more than once a day/hour? (Hey, leaving your workstation logged in all day so you won't have to type the passphrase the next day is not exactly secure eh!) I wouldn't...

I sometimes have a hard time to enter my 8-char password without any mistakes already, having to enter a long passphrase without echoing would be hell for me (and many others, probably).

Re:Use passphrases instead

[Jussi+K.+Kojootti]

"Back in the days of limited capacity, 8 or 10 character passwords made sense"

You work for the NSA? Exhausting the keyspace of 10 character passwords (with let's say 60 possible chars) at the speed of 100 million tries per second would take 191 years. This of course assuming that the target system would not detect an intrusion attempt after a few billion tries...

Re:Use passphrases instead

Did you consider how difficult it is to crack an 8-char password?
Especially, why would you bother since the password hashes required to the cracking can usually only be fetched once you have full access already? Plus, how fast do you think brute force password cracking over the net will be?
Get some balance, it's the same thing with PGP keys, not many people using 4096 bits, know why? Because it has no relative security benefit, if you have a 1024 bit key, would-be attackers still will attack something else than the crypto itself.

Re:Use passphrases instead

[sakusha]

I think you're missing the point of passphrases. I always explain it like this: you pick a pass phrase, an especially good one would be something with numbers in it too, my demo example is "I'm gonna cry 96 tears." Then you take the initial letters and your password becomes "Igc96t".. The point of pass phrases is to make cryptic passwords that are memorable but hard to crack.

Re:Use passphrases instead

[DukeyToo]

At the storage level, there is no need to have a limit on the length at all. Password systems only store a hash (always the same length), so there is no impact on the system if a user uses a long password.

Limited password lengths are either a factor of legacy aspects of the system, user interface limitations, or poor security (not storing password hashes).

Re:Use passphrases instead

[jonadab]

"It was the best of times, it was the worst of times." is a horrifically bad
passphrase. In any brute-force attack, it would be one of the first couple
of hundred things tried (assuming the attacker knows you use a passphrase
and doesn't start trying 6-8 character passwords first). Much better would
be something like "George always kicks his pet spider in the shins." or
"Hurry, Larry, bring the glue quick, before the wind blows the broken pieces
away!" or "Shiver me timbers, I've never seen so many dabloons in one vault
before." or "Scrub the spot gently; you wouldn't want to wear clean through
the skin." or "In a magenta submarine we all live. Like yellow I do not, Hmm?"

The #1 cause of poor passwords

[Shimmer]

Most of the time, people just don't care. And why should they?

I probably have 200 passwords floating around in cyberspace, and 90% of them are "password". For example, I have to supply uid/pwd in order to read the Washington Post (my local newspaper). Is it important to keep this password secret? No, because I'm not very worried about someone reading the newspaper under my name.

Unless I have confidential personal information at stake, I am not usually motivated to create a strong password.

So, sysadmins, if the security of your overall network is more important than Joe User's individual data, you need to enforce strong password rules. Relying on users to create strong passwords voluntarily under such conditions is foolish.

Re:The #1 cause of poor passwords

[Inda]

We have a vBulletin board with 2,500 members. 5% of those members have passwords hashes that match:

a
1
12
123
1234
12345
123456
1234567
123 45678
123456789
1234567890

A few others use the name of the site and the word "password".

They don't care. That is true.

Re:The #1 cause of poor passwords

[jonadab]

> For example, I have to supply uid/pwd in order to read the Washington Post
> (my local newspaper). Is it important to keep this password secret?

No, but it's not important to the Washington Post that you keep it secret,
either. If someone steals the password, they could (gasp) read the paper.

An important trick in the security toolbag is to give users the priveleges
they actually need and no more. Let's say you're an ISP, and Joe User needs
to be able to dial up and connect, get his email, and ftp content up to his
webspace. The wrong way to handle this is to give Joe User a full user
account on the servers (or, worse, an account in ActiveDirectory or the
equivalent that will authenticate on all the systems on the network). The
right way to handle this is to set his password in the dialup listener's
configuration, the POP3 server's configuration, and the ftp server's
configuration. (This can be automated.) He doesn't need an account on
the operating system, doesn't need the ability to shell in, et cetera.
Now if Joe User selects an insecure password, he's risking his own stuff
and little else. Since he doesn't have an account at the operating system
level, his password is less helpful for breaking into the system than it
otherwise would be. Joe's password and a local root exploit no longer can
necessarily be combined to yield root access.

Re:The #1 cause of poor passwords

[Rick+the+Red]

So if I try your account and "password" and I get in, I now have the power to change your password to "a*F0+Em@". Now I own your account.

It's real enough; every time someone offers up a New York Times registration ("slashdot"/"slashdot") it gets hijacked.

Re:The #1 cause of poor passwords

[Shimmer]

Right. And if I cared enough to stop you from doing this, I wouldn't use "password" in the first place. You can be the proud new owner of my Washington Post account if you can figure out what its name is.

Randon or mnemonic?

[spidergoat2]

It just doesn't matter. It still going to be written on a yellow sticky and stuck on the screen.

Re:Randon or mnemonic?

[gnu-generation-one]

"It just doesn't matter. It still going to be written on a yellow sticky and stuck on the screen."

So set somebody's password to "don't forget to pick up the kids from school", and don't let them change it.

The next person to get an account gets a password of "phone message from john"

Phonetic Passwords

[N8F8]

I used to work on a military installation with really elaborate guidelines for choosing passwords. It would usually take me at least a dozen times to choose a valid, unused password. My buddy had a trick that would get him a good password every time. Being fluent in Korean, he would come up with a phrase in Korean and spell it out phoenetically to produce a new password. I wonder how many foreign language workers in the US do the same thing?

Re:Phonetic Passwords

[Mz6]

I wouldn;t be surprised....

I also work on a military installation and it takes forever to be able to choose a password. Not only do you have to use the basic methods already described here, but it also cannot be similar to used passwords or dictionary passwords in any way. Therefore, it checks for a password such as keyboard23 or 2clock10. Add that with all the other password tricks (alphanumeric, etc..) and it takes a good 5 minutes to pick a password before the system takes it.

Re:Phonetic Passwords

[jefu]

I was in the Peace Corps years back and learned some Swahili. For a long time my passwords were words or short phrases in Swahili - resistant to a dictionary attack (at that time at least) and easy enough to remember.

I now use the mnemonic passphrase (with odd character changes) for the most part - for example after a script kiddie attack I used "K0!ybftgh" (Keep O(0)ut ! you bastards from teenage geek hell).

Re:Phonetic Passwords

A good cracking tool (like John the Ripper) has these covered by using dictionaries for multiple languages.

I did have a client fluent in Latvian, who picked a password in that language. Turns out there WASN'T a Latvian word list attached to my password cracker. (But there is now...)

Re:Phonetic Passwords

[jonadab]

Dunno. The only foreign language I know much of is Common Greek, and this
technique is somewhat less useful with Common Greek than Korean, since many
Common Greek words have a fairly direct English cognate. For example, "Many
Common Greek words have" comes out as something like "polus logoi Koine echo";
the first word "polus" (much/many) AFAIK does not have a cognate, but the next
two do, and "echo" is a false cognate, I think. (The english word "echo" does
come from a Greek word, but it's a different and probably unrelated word.)
You see the problem. It doesn't look directly like English words, but if
the password rules are looking for English roots with the endings mangled to
reject stuff like "basket47", they're going to alarm on "logoi" for sure and
*possibly* "Koine" as well (depending on how loose the matching is), and of
course "echo" won't go through if there's any checking at all.

pretty non-intuitive results?

[Monofilament]

I'm confused.... all those answers that were listed in the front page version of the article (yes in true slashdot style .. i don't even wanna read the actual link..and have no time otherwise)

are pretty much what i would think of passwords. I think i lost some knowledge by reading the results of that study. It amazes me how people can study things to come up with a non-scientific proof answer to things we already know. I mean its a survey.. its not exact... we all knew the answers anyways.. so why even survey .. not like its a real proof or anything.

I think the real problem with passwords is nobody ever teaches anybody how to make a strong password that is easy to remember. You're just told the parameters and left to fend for yourself. I myself personally have always come up with combinations of letters and numbers and special characters that have a seemingly random look and in fact have a correlation to some phrase i have in my head, and usually its a phrase i would only think of and not neccessarily say in real conversation to people.

Re:pretty non-intuitive results?

[jc42]

... the real problem with passwords is nobody ever teaches anybody how to make a strong password that is easy to remember.

Yeah, but there's something that makes it worse: Every time you have to make up a password, your first try is rejected because it violates the rules of that software. So you keep trying until you stumble across something that is acceptable.

As a result, my file of passwords now has 68 entries, and that doesn't even include the half dozen logins that I use often enough to remember. I don't keep them on paper, of course. I keep them on my web site, so I can find them from anywhere. ;-)

Of course, the file has a misleading name, is hidden behind a number of index.html files, and has a name that starts with a dot so that the server doesn't give it out even during server changes when the index.html files are sometimes ignored for a short time. I know I should still be worried about the URL being intercepted in transit. But so far, this is the best solution I've found to what is a rather intractable problem.

The real problem is security dummies that impose such complex password rules on users that we are forced to resort to schemes like this to "remember" our passwords.

Brute Force Attacks

[Afty0r]

Perhaps I'm crazy but I've always felt an application which allows a brute force attack is flawed.

Surely by this point in software development it should be regarded as standard for every program to LOCK access for a given account after X consecutive failed logon attempts?

Even setting this to something arbitrarily high like, say 1000, is more than any user would ever try before asking for help, but much MUCH MUCH less than any dictionary attack would require. Combine this with the possibility of real time notification for admins (facilitated by email/inter application messaging, or a small add-on service for the OS) when more than Y accounts are locked for this reason in Z minutes, and as a community we'd effectively end all dictionary attacks - or at least turn them into DOS attacks, but at least we'd know it was going on...

Re:Brute Force Attacks

[wwest4]

> LOCK access for a given account after X consecutive failed logon attempts ...
> han Y accounts are locked for this reason in Z minutes, and as a community we'd
> effectively end all dictionary attacks

The problem with this solution is that so-called "dictionary attacks" are virtually never carried out using the target's manual authentication mechanism, or even their enrcyption library functions (which are usually deliberately performance-crippled). Any brute-forcer worth its salt (heh) is run on a fast, private computer with an optimized hashing function on hash data that is pulled off of the target wholesale.

In addition to, and more important than, the methods you describe, users must use better passphrases, policies must be enforced, and the authentication schemes used must become more robust (larger key size, multi-layer security, OTP, etc).

Re:Brute Force Attacks

[dominux]

doesn't work for distributed and disconnected systems which don't rely on security by obscurity. To take a system I am familiar with the Lotus Notes ID file contains your private key which is used for authentication and encryption etc. This is unlocked on the client using your password. The unlocking process is fully documented (it isn't Open Source but it isn't a great big secret either) and there is no lockout because you don't know what code is going to be doing the unlocking. In the standard code that users type their password into there is a delay between attempts which increases, probably exponentially, however there is nothing to stop you writing a brute force tool to work that algorithm as fast as your processor will go.
The starting point of this attack is getting hold of the ID file, hence people should be careful to protect these files, however brute forcing an ID file is generally easier than brute forcing the encryption performed once the ID is unlocked. If your ID file is unlocked by a smartcard then the bruteforcing task is equivalent to guessing a 128 random character password.

Re:Brute Force Attacks

[ArbitraryConstant]

That allows DOS attacks.

Re:Brute Force Attacks

[supersnail]

The problem with "cripple account after 3 failed attempts " is that it makes for a great denial of service oppertunity.

Worse if you cripple a couple of hundred passwords at a site, you can just phone up the helpdesk and ask for the new password on a known account. The chances are they will be so flooded with calls they will give you the new password without any attempt to establish identitiy.

Re:Brute Force Attacks

[jschottm]

Brute forcing is often applied in a situation where someone's compromised a system and has access to the password file (debian.org, as a notable example). From there, the attacker can brute force passwords of various users in the hope that they've used the same password on more than one system (which will be true in VERY many situations). If they're smart, they'll do the cracking on a different location so no one noticing the sudden spike in CPU use.

In practice, most of the software used for this purpose starts with a dictionary attack, which will find quite a few weak passwords in many cases. But many offer the option of attempting to brute force as well, though it may take some time.

Brute forcing can also be used to break weak encryption schemes - say I have see someone transmitting passwords to a webapp that's an MD5 hash. With a fast enough computer, I can brute force short or dictionary passwords. This is why salt is a good thing.

Re:Brute Force Attacks

[jonadab]

> Surely by this point in software development it should be regarded as
> standard for every program to LOCK access for a given account after X
> consecutive failed logon attempts?

No, that opens you up to really easy denial-of-service attacks. The correct
way to handle this is to enforce a minimum delay between retries. Bonus
points if the exact length of the delay varies or is chosen at random.

good password generation

[CharAznable]

I find that a good way of generating passwords is to come up with a sentence or a phrase that makes sense to you, take the first letter of each word, and then 1337 it up. For instance, Windows XP loves the Sasser worm becomes: WxP175W It's cryptic enough and easy to remember

My password method

[gosand]

I have been able to successfully remember randomly generated passwords, but once they slip your mind - you are screwed. My password method is this:

1. generate a password using some word algorithm: I was born on a Monday = "IwboaM"
2. come up with some kind of replacement strategy: w=m, a=1. IwboaM = Imbo1M
3. bookend it with the year you were born: Imbo1M = 19Imbo1M69.

It looks totally random, but there is a method to the madness. If you need to change it, you can just inc the year, or use some other rule on it. The strength is that you completely make up the rules, and they don't have to make any sense. All you have to do is remember the original phrase (easy) and your rules (easy to complex).

(and the example I gave is completely arbitrary)
You could also do one where your password is the answer to the question. Remember the question "What month was I born?" Answer: October
Password starting point = HalloweenMonth. Then apply crazy rules to it. In this way, you can write down your reminder phrase "Month born?" and it is nowhere near what your password is.

Re:My password method

[maximilln]

Writing random passwords has always been my personal policy. The password must be a mix of upper and lower case letters with at least 2 numeric digits and a length of at least 6. I try never to have the numbers next to each other but this happens on occasion.

The trick is then to remember the passwords. My own personal systems at home have root and at least two users with login, ftp, and samba passwords for each. There are also e-mail passwords, /. password, various internet service passwords, and passwords for websites. At work I have at least five passwords directly related to work and another dozen or so which log on to websites for work-specific information. With so many alphanumeric passwords the memory task is a large load for even someone with a super-human memory.

My personal system has been to give in to the necessity of writing all of the passwords down. Cleartext passwords would defeat the purpose of the complex passwords so I keep an encryption algorithm in my head. I have four or five encryption algorithms in my head that I use. Which algorithm is used for any particular password is usually noted using a cryptic set of symbols next to the u/p combination on the paper. Thinking ahead reveals that a dedicated stalker might be able to cross reference the encryption algorithms as they're noted on the paper (much like cross-referencing databases of cookies which "do not store personally identifiable information") so I also have a store of null symbols which I scatter over the pages. I have also briefly experimented with letting the meaning of the symbols change relative to their page position but this has caused a fault more than once.

Needless to say such a complicated system is not foolproof. At least a dozen times I've found that the encryption algorithm in my head doesn't correctly translate the information on the page. Usually I find that I'm "one-off" in either the translation or the algorithm used. Fortunately I have never permanently locked myself out of an account. It usually takes a day or two of trying different combinations before I get the "eureka!" and enter the correct combination.

The tin-foil in my hat still nags me that all of this effort is wasted, though, since the NSA has secretly contracted with all manufacturers to install hardware keyloggers on every keyboard manufactured since 1995. They access the 1mb keyboard cache using backdoors, built into all computer BIOS chips since 1995, similar to the superuser backdoors built into Cisco equipment.

Re:My password method

[deadlinegrunt]

1. generate a password using some word algorithm: I was born on a Monday = "IwboaM"

That's what I do with all my passwords, for example:

People Always Suspect Secret Words Or Random Dates
Wait a minute, D'oh!

Re:My password method

I just wrote a little Python script to generate passwords - 8 or more characters, mixed-case, alpha-numeric with at least one numeral. I have been using it for some time, and change my passwords on a fairly regular basis.

I don't seem to have trouble memorizing random passwords; mnemonics help here. The interesting thing is this: the more time goes by, the more deeply ingrained passwords I may choose between. I tend to rotate them through levels of decreasing security - highest security (newest password) for home, work, server admin, and banking; older passwords for less important things like web fora.

Recently I've begun to cat two passwords for a stronger, 16+ character password that's still easy to remember.

I don't see why people say random passwords are hard to remember. If you're like me, you use the mnemonic for like a day - then it's ingrained.

Re:My password method

[maximilln]

My default is to give you the benefit of the doubt. My better judgement is to think,"liar."

consider the following four passwords

gHi6uq2
b89soViK
p7cHt2mVg
its8pq2bN

Try to come up with four mnemonics that will accomodate all of these including capitalization.

No chance.

Eventually, in the future, password crackers will learn to write algorithms which can check mnemonics almost as easily as checking the dictionary.

Re:My password method

If only /. provided an appropriate moderation to express my appreciation. +.5, Mildly Clever?

Better than Nothing

For users who claim they can't remember passwords, I recommend that they use the names of two of the favorite pets they have had in their lifetime, with one or more numeric or symbolic characters in between and/or at the beginning or end.

i.e. Rover8Kitty!

It's not great, but better than Mary2.

Keyboard patterns?

[Amoeba]

I'm sure I'm not the only one who occassionally uses keyboard patterns for passwords. I'm not talking qwertyuiop or asdfg (obvious) but things like !@()ZX>? Hell, half the time I remember friend's phone numbers by the way you punch in the numbers. Sometimes when asked what a number is I'll even do the "phantom phone dial finger wiggle" so I can recite the damned thing.

Looking at the above example it appears to be a password which follows the "strong password" methodology but have there been any studies on the effectiveness of using such a method? I know there are dictionary-based attacks which have some of the obvious patterns (qwerty, poiuy etc) but is such a method random *enough* to be feasible?

It seems to me that it would be much easier to train users to use a muscle-memory-like password than picking some word out of their ass. The human brain has one seriously developed pattern recognition/matching capability... why not use it?

Amoeba

Re:Keyboard patterns?

[HBPiper]

I was looking to see if anybody else used the muscle memory thing. It works well, but you can't think about it while you are doing it. I thought about it once. And suddenly what I was doing didn't quite feel right and I couldn't access the ATM machine. It was pretty funny me desperately trying to remember the number letter sequence that made up the password. I ultimately remembered it, but not that day, and it was a scare. But a funny scare.

Re:Keyboard patterns?

[SPBesui]

I use a similar method. I choose a random key combination that's easy to type by muscle-memory, but shift my fingers over one key to the right. That way I don't even really know my password unless I looked at (or visualized) a keyboard and figured it out. Plus you might inadvertently get some ['s or ;'s or ,'s in there.

Re:Keyboard patterns?

[Sheridan]

I use randomly generated passwords.

I used to use a little Tcl/Tk script that I hacked up to "train" myself on them until the muscle memory for the password kicked in. The script is available here in case anyone is interested.

Nowadays I switched to using PasswordSafe to store a whole bunch of passwords, and now rely on its random generation instead (I keep meaning to modify my pwdrill.tcl script to allow me to enter the "random" password to train on manually, to minimise the number of times I have to look the PW up in passwordsafe before the muscle memory kicks in.)

Re:Keyboard patterns?

[RKThoadan]

I occasionally use a variant on keyboard patterns. I just shift my fingers right one key and re-type my username (in lower case). I don't use it for important things (or /.), but it's not bad. It would even work with childrens names, sports team names, and so forth. Of course, it does require that you be a competent typist.

I'm also a fan of taking a number and spelling out two or more of the digits. 2004 could be two00four or something. Simple to remember, not too easy to guess and usually a decent length.

I think the best way to get users to use strong passwords is to not say anything about security and authentication and all that and try to get them to make a game out of it. I can see the slogan now "Time to change your password, which could be the most fun you'll have all day in your pathetic little dead end job!" (Some truth to that in many cases).

Re:Keyboard patterns?

[schmiddy]

I'd be careful of this. My last year of high school, we had a really terrible CS teacher we all hated. We set up L0phtcrack on one of the lab computers to sniff for his windows login password. So we got his hash that day, and had some trouble cracking it at first.. we were afraid we'd have to resort to brute force. Fortunately, as a last resort, someone got a really huge dictionary file from somewhere, and one of the terms matched the password. Know what it was?

mnbvcx (look at keyboard)

I'm not sure why the dictionary had it in there, but it did. Turned out, he also used it for his email as well. We had some fun. I checked recently, and apparently he still hasn't changed his password.

Moral of the story? Maybe enforcing a 90+ day password switch isn't all that bad, and if you're admin'ing a server with many users that you need to keep secure, run regular audits on your /etc/shadow or whatever password hashes.

Mnemonics and shared passwords.

[oneiros27]

Mnemonics can be annoying when you have different people creating them -- it people use slightly different rules when creating the passwords, it can cause all sorts of problems --

• do you perform any subsequent modifications (a -> @; s-> $; e-> 3), once you have the password?
• are you consistent in your capitalization rules?
• Are you consistent in your punctuation rules?

I find it particulary annoying when people use what I call the 'license plate' passwords -- if you know what the mnemonic is, the password makes sense, but it's difficult to consistently go from the mnemonic to the password --

• !4m32s@y -> Not for me to say -> !4me2say
• !4us2d0 -> Not for us to do -> !4us2do

(yes, I worked with some people who were rather negative) ... but it'd get annoying when you're told what root's been changed to, and they don't have consistent rules for the passwords.

Personally, I was working on a program for generation of passwords from fortune, so that things are handled consistently, but I've stalled the idea until I get get it to use a significantly larger basis for the mnemonics (as if you knew the source of the mnemonics, and the rules for generating passwords, it's just as easy to brute force as a dictionary attack)

Re:Mnemonics and shared passwords.

[jonadab]

> Personally, I was working on a program for generation of passwords from
> fortune, so that things are handled consistently, but I've stalled the
> idea until I get get it to use a significantly larger basis for the
> mnemonics (as if you knew the source of the mnemonics, and the rules for
> generating passwords, it's just as easy to brute force as a dictionary
> attack)

Idea: Take two random words from /usr/share/dict/words, Google for them,
yank a phrase out of the result, and mung it according to your rules...

#!/usr/bin/perl

print "VCVCVC: \t"; {
sub v { my @v = qw (a e i o u); $v[rand@v]; }
sub c {my@c=split//,'bcdefghjklmnpqrstvwxyz'; $c[rand@c]}
print((map {c() . v()} 1..4), c(), $/);
}

print "word-word-word: \t"; {
open WORDS, "</usr/share/dict/words";
my @w = map { chomp; $_ } <WORDS>; close WORDS;
print join '-', map {$w[rand@w]}1..4; print "\n";
}

print "Google word word | mung: \t"; {
open WORDS, "</usr/share/dict/words";
my @w = map { chomp; $_ } <WORDS>; close WORDS;
($a, $b) = map {$w[rand@w]} 1..2;
use WWW::Mechanize; use HTML::TreeBuilder;
my $browser = WWW::Mechanize->new();
$browser->get("http://www.google.com/search?hl=en& ie=UTF-8&oe=UTF-8&q=$a+$b&btnG=Google+Search") ;
my $content = $browser->content(); my $t = HTML::TreeBuilder->new()->parse($content);
$_ = $t->as_text(); s/\W/ /g; my @token = split /\s+/, lc $_;
my $idx = rand(@token) - 7; my $phrase = join "_", @token[$idx+1..($idx+6)];
print "$phrase\n";
# use Data::Dumper; print Dumper(\@token) . $/;
}
# Results:
# edu_campus_hook_the_official_college
# nationalist_community_the_khazar_theory_by
# seemed_to_make_jirov_angry_and
# 3_he_rested_from_all_the

This was very quick. You could do your phrase-choosing and munging differently.

Re:Mnemonics and shared passwords.

[jonadab]

# This is better:
print "Google word word | mung2: \t"; {
use WWW::Mechanize; use HTML::TreeBuilder;
open WORDS, "</usr/share/dict/words";
my @w = map { chomp; $_ } <WORDS>; close WORDS;
($a, $b, my $phrase) = map {$w[rand@w]} 1..2;
while (not $phrase) {
my $browser = WWW::Mechanize->new();
$browser->get("http://www.google.com/search?hl=en& ie=UTF-8&oe=UTF-8&q=$a+$b&btnG=Google+Search") ;
my $content = $browser->content(); my $t = HTML::TreeBuilder->new()->parse($content);
my @s = grep { length $_ > 25 and length $_ < 200 } split /[^A-Za-z0-9, -]/,
$t->as_text(); my @token = split /\s+/, $s[rand@s];
$phrase = join "_", grep { not /^\s*$/ } map { s/\W//g; $_ } @token;
}
print "$phrase\n";
}

Re:Mnemonics and shared passwords.

[jonadab]

# One last improvement -- actually go to a result page:
print "Google "; {
use WWW::Mechanize; use HTML::TreeBuilder;
open WORDS, "</usr/share/dict/words";
my @w = map { chomp; $_ } <WORDS>; close WORDS;
($a, $b, my $phrase) = map {$w[rand@w]} 1..2;
print "$a $b | mung2: \t";
while (not $phrase) {
my $browser = WWW::Mechanize->new();
$browser->get("http://www.google.com/search?hl=en& ie=UTF-8&oe=UTF-8&q=$a+$b&btnG=Google+Search") ;
$browser->follow_link(n => 10); # Tenth link is first result (currently).
my $content = $browser->content(); my $t = HTML::TreeBuilder->new()->parse($content);
my @s = grep { length $_ > 25 and length $_ < 200 and not /\d+k/i }
split /[^A-Za-z0-9, -]/, $t->as_text();
my @token = split /\s+/, $s[rand@s];
$phrase = ucfirst lc join "_", grep { not /^\s*$/ } map { s/\W//g; $_ } @token;
}
print "$phrase\n";
}

passphrase passwords

[thogard]

Some people have been claiming that using things like "fsa7ya" or "4sa7ya" as the 1st letters of "four score and 7 years ago" is a good way to make up paswords. I've got a friend who has a dictionary of about 20,000 such phrases and it took a few of us about a half hour to find a common quote that wasn't in his list. He also happens to have a 50 word lists that is very effective at brute force attacks.

a password policy I've been dying to implement...

[rivaldufus]

1. password must be at least 64 characters long, with no dictionary words, and at least 8 special characters
2. Passwords expire in 24 hours
3. Account is locked out after two mistakes
4. A given character may be used only once in a particular password (No repeated characters)
5. Account locks out on second attempt

I'd love to see someone implement this policy at some corporation - just so long as I'm not the administrator there.

Physical tokens are better

[Slick_Snake]

Use of a physical token combined with an easy to remember pin is more secure than passwords. Since pin numbers tend to be short there is no problem with choosing them randomly. Furthermore with a limit on the number of failed attempts before disabling the token you make it nearly impossible for someone to break in.

Looking at through cynical eyes it doesn't matter how secure your method is because, you are ultimately placing trust in the typical user who will most likely do something stupid when given the chance.

Re:Physical tokens are better

[Fizzl]

Like this?

Read Lots Of HP Lovecraft For Password Ideas

[pandrijeczko]

After all, with creatures like Cthulhu, Nyalarthotep, Tsathoggua, Hounds Of Tindalos, the Wendigo, etc., there's plenty of scope for non-dictionary passwords and I've never seen a Cthulhu mythos word file for password crackers...

...having said that, with having uttered these names so frequently in the past, I now have a large black tentacle growing from the back of my neck and keep seeing strange shapes lurking in the shadows...

Gibber...

Re:Read Lots Of HP Lovecraft For Password Ideas

[Dun+Malg]

Heh. Yeah, my sig is a veritable GOLD MINE of passwords.

Re:Read Lots Of HP Lovecraft For Password Ideas

[DrStrangeLoop]

from the sonnet the funghi from yuggoth,
by howard phillip lovecraft:

XXI. Nyarlathotep
And at the last from inner Egypt came
The strange dark One to whom the fellahs bowed;
Silent and lean and cryptically proud,
And wrapped in fabrics red as sunset flame.

iäh iäh!

Mnemonics questionable

[Anixamander]

My menmonic, which should have been hard for people to guess, was "Please ask sister sally where's our rottweiler dog"

And the thing is, we didn't even have a rottweiler, it was a shepherd. But people still guessed it, so I don't use mnemonics anymore.

my password....

[pickledick]

I use "socket2me" for a password. Is this random enough not to be guessed?

Re:my password....

Not anymore, dumbass.

Re:my password....

[pickledick]

That was great, I guessed it first try.

Re:my password....

[pickledick]

His yahoo password was the same thing, of course.

Teach People the Drums

[soloport]

Just use pattern passwords:
1) Put both hands on our friend, QWERTY
2) Move fingers into a natural, systematic position
3) Bang out a pattern using all fingers
4) Randomly include the shift key and those keys at the top, including the Back Space ;-)
5) Keep hitting some keys even after you've hit Enter; Then hold the Back Space key (optional)
6) "Practice, practice, practice!" so it can be typed very fast

Results?
* I rarely mistype a password
* I don't know my own password
* I couldn't share my password with security unless a keyboard was around
* I type it in so fast, it would take a video recording to spy-capture it (me thinks)

Of course, nothing can help you with key logging :-/

Re:Teach People the Drums

[Nick+Harkin]

Actually, key logging can be gotten around, if you click around windows, or even within the actual password field, entering numbers in the wrong order....

But other than that, your method works, I have a sequence of passwords I remember soley on how my fingers touch the keyboard, although I do still know what the password is, I don't even have to think about it to type it in.

Re:Teach People the Drums

[pjt33]

Try using a keyboard with a different layout.

Re:Teach People the Drums

[Daniel_Staal]

Or better yet: type in a QWERTY layout on a keyboard with a different layout.

If you can touch type a couple different keyboard layouts this is easy.

Re:Teach People the Drums

[not_a_product_id]

and what about coming up with a new layout each month? Our stupid security prevents you from repeating the same password for around 18 months. Some systems have longer periods. My fingers don't naturally move like that

Re:Teach People the Drums

[Beryllium+Sphere(tm)]

>Of course, nothing can help you with key logging :-/

Ooh! Hack login.c to do a random keyboard remap just before the password gets typed, then reverse-map the result before hashing it. A software keylogger that looks at characters after scancode conversion will be hopelessly confused. A hardware keylogger will still work, but you'd have to do some work to put one in my laptop.

Re:Teach People the Drums

[orangesquid]

not a bad idea...

Re:Teach People the Drums

Just create a standard password like above, and then type 1 (2 the next month, then 3....).

Re:Teach People the Drums

[farzadb82]

Yeah... but what if you have Amnesia and the only thing that can bring your memory back is something that is password protected ?

Re:Teach People the Drums

[E_elven]

The 'pattern' password sequence is indeed very good. My users can -and generally like to- create long secure passwords. Here're the instructions I give them:

1. Pick a letter (or more if the system allows), for example the first letter of your name.
2. Pick a starting spot on the keyboard.
3. Form your chosen letter of the individual keys on the keyboard, using SHIFT on every other key.

This way the user only needs to remember two things: one letter and the starting position. To further clarify what I mean, consider the letter A. If I start from the key 'c' on a standard QWERTY and kind of draw the letter in mosaic using the keys on the keyboard, the password becomes 'cFt^yHnG' (follow along on your kb) Here's a diagram:

1 2 3 4 5 <b>6</b> 7 8 9 0
q w e r <b>t</b> <b>y</b> u i o p
a s d <b>f</b> <b>g</b> <b>h</b> j k l ;
z x <b>c</b> v b <b>n</b> m , .

If the system allows long passwords, one can use their name -say, Aki. Again starting from the 'c', the password becomes 'cFt^yHncDe#r^gBcDe#', which is pretty secure.

This works extremely well with the 'non-sophisticated' users once you teach it to them -and it's easy to change the password. Just skip the starting position and possibly the shift sequence -moving to 'v', the password for 'A' becomes 'VgY7UjMh'.

Re:Teach People the Drums

[E_elven]

For the record, I hate ECODE. Try this diagram:

1 2 3 4 5 * 7 8 9 0
q w e r * * u i o p
a s d * - * j k l ;
z x * v b * m , . /

(The asterisks and the hyphen form an 'A' there).

Re:Teach People the Drums

[E_elven]

Umm, mods? Parent was my *own* reply to rewrite the diagram so you folks can read it.. offtopic?

Re:Teach People the Drums

[malfunct]

So since you have given us the pattern to your users passwords you have reduced the password space on your server to 108 combinations? or am I missing something about having mutiple different results for the same start of sequence?

Re:Teach People the Drums

[gnu-generation-one]

"Of course, nothing can help you with key logging"

Apart from Tinfoil-hat linux.

More usefully, when are we going to see an on-screen keyboard option for the X login window? It could pop open on request to reveal a keyboard you can click on to type passwords

Re:Teach People the Drums

[pjt33]

Yes, I seem not to have expressed myself very precisely. My point was that if you learn a pattern on a QWERTY keyboard, then trying to log in from your mate's computer will be pretty difficult if he uses Dvorak.

Re:Teach People the Drums

[E_elven]

You have 26 letters in the alphabet to use as your character -and you can use numbers or make a happy face if you want-, any key can be a starting position, and the letters can be written multiple ways, including upside down. This is a template and the user can customize it to their needs, but there are quite a few different combinations.

Re:Teach People the Drums

[tcgroat]

It seems to me that point-and-click entry is even more vulnerable to visual compromise than a keyboard. A GUI keyboard requires a visual cue showing where the mouse is (cursor, highlight, reverse video, etc.), and that cue can be read from a distance. In some cases, it could be read remotely by decoding the monitor's EMI signature (TEMPEST). At least a keyboard can be obscured by hunching over it, or by placing it under cover while you log in (assuming you have good touch-typing skills!).

Whether or not you implement a point-and-click login screen, having a monitor facing a window or doorway is an amazingly common security vulnerability. A zoom lens is just as good as a keystroke logger if the screen is in sight.

Re:Teach People the Drums

offtopic?

Perhaps a mod was penalizing you for failing to use the "Preview" button.

6. The sixth folk belief...

[cedmond]

Using the term "folk belief" more than once in a paragraph can become very annoying. This belief is confirmed.

Message Boards

[Allen+Zadr]

On a message board, I always use a fairly simple password, simply because it doesn't matter to me...
If someone gets to post as Allen Zadr to slashdot, the worst that would happen is my karma would be burned. No big deal. I drop the account, start a new one, give Slashdot another 5 bucks.

The passwords I use on anything important, are far more secure.

For this reason, I would be far more suspicious of the 10% that use extremely complex passwords. Likelyhood is that those passwords will match their online banking account and work passwords.

Re:Message Boards

[It'sYerMam]

An interesting (and possibly ilegal) experiment, would be to set up a messageboard + password DB such as this, then send a survey around. The survey would ask users what online banking and shopping they do + where they do it.
Try and hijack their account, with either their username and password, or with modifications of them.

*plots*

I wonder whether a good method of getting passphrases is with an AI conversation bot. You ask it a question, and it devises a password based on its response. Either that or just use the initials of the phrase they typed. This way, you could actually SET the users password to something secure.
I suppose, though, you'd get a lot of people whose passwords were "WyLMbiIWg?" - from "Would you like me better if I was gay?"

Re:Message Boards

[true_majik]

Likewise, for message boards, I use the same pw all across. Other than that, I use diferent, more complext pw's for the more important stuff. To remmeber all the pw's I use Oubliette. It stores info such as username, pw, email address, and notes all in one file. You then have to remember only the pw to that file which is encrypted. It also has a random pw generator.

Re:Message Boards

[Allen+Zadr]

Similarly, I carry my extra pws in 'Keyring' on my Pilot. This works out for the odd message boards that force me to use/not use certain letters/characters, too.

Re:Message Boards

[skifreak87]

My /. password is a randomly generated mixed case alphanumeric password. I have about 10 different random passwords that I use right now. For really important stuff (think bank account) I never re-use the password, but my /. password is the same as my maximlounge password and my nytimes/yahoo passwords are the same. I just don't use any non-random passwords. When I first generate a password (use a short irc alias to do it) I type it a whole bunch of times until I remember it and I have them all written down w/ some stupid encryption (think rot13 or simple interleaving of chars) in case I ever forget. Helps me remember it. If my password for some MUD I play happens to be complex, it's because all my passwds are not because ot's my online banking password or one of my 3 school passwords

Observations on random passwords

[clone22]

In my consulting practice I will often set up new server at a client site and assign a password, which is always a random string of letters and numbers. I usually get a shocked look when I tell them the password, but they do commit it to memory (I've never had a client write it on a post-it). I repeat the password with a cadence that makes it easy to remember.

One thing I have noticed is that clients will often be reluctant to change a random password they have memorized, as if their brain can only memorize one random string. I'll go back months later to find they are still using that same password. In fact, it often becomes the "standard password" on numerous systems.

The one practice that really makes my skin crawl is the system of using words with numbers replacing letters, like "5ecur1ty" and "pa55w0rd". No one would ever think of adding those to a dictionary attack, would they?

Re:Observations on random passwords

[iapetus]

Depends. I use a partial number-for-letter replacement system in my passwords, but I don't use the standard translation system you describe above. As a trivial example of how you might use a non-standard mapping, how about this one - substitute each letter with the number that appears at the top of the diagonal row it maps to on the keyboard, so that qaz are 1, wsx are 2, edc are 3 and so on. Pick a pattern for which letters to substitute, (or substitute the letters in your mnemonic phrase that you think should be emphasised if you're going for that little bit more security). Got that in your dictionary attack? I hope you've got the equivalent for reading the rows the other way (esz to 4, rdx to 5 and so on). Both easy for any user to work with, because the translation is right in front of you on the keyboard. And there are countless other techniques available, especially for those of us who can remember what order the letters come in. :)

Even if you're just using the standard l33t-5p34k translations, you're massively boosting the number of checks that need to be made. Your examples didn't change all the letters that could have been changed. So now as well as security I need to check 5ecurity, 53curity, 5ecur1ty, 53cur1ty, and doubtless others. That's a substantial increase in the size of my dictionary...

My password technique

[ID_Roamer]

I read a story about a book method for developing crypto keys. It was a fairly common method in the past before computers. I thought about it and have used it for years for choosing my passwords. Then tend to be mnemonics, but I can right down a hint sheet that is pretty safe.

It works like this. I choose a book at random from my work area, choose a page at random and then pick a line. I develop a mnemonic password from that line. If I need a hint, I write down the page and line number on a piece of paper, I can even stick it to my monitor if I need to. My average library of reference books at work is over 50 books. How big a hint to an atacker is 347 12? All I have to remember is what book I chose.

My last job, my boss couldn't remember any password that wasn't part of his name until I introduced him to mnemonic passwords.

Monthly password changes

I have to change several passwords every month or 3 months. The systems have all the integrity checks for the passwords, checks for dictionary words, numbers in the middle, special characters, all that stuff. it used to take me several trys to come up with a password that met criteria and that I could remember.

So finally I figured out a pattern of keyboard taps that would meet the rules no matter which key on the keyboard you started with. So now I memorize 1 pattern and effectively have a 1 character password for every system I deal with.

Is it secure? no clue. Since I type it 1 fingered, it is probably vulnerable to shoulder surfers, but other than that I don't see a problem with it. I only know one other person that uses this technique, so there are probably not any specific attacks for it.

But if someone makes me use a Dvorak Keyboard, I am SOL.

Why should _you_ get to choose?

"However, both random passwords and mnemonic passwords suffered from a non-compliance rate of about 10% (including both too-short passwords and passwords not chosen according to the instructions). While this is better than the 35% or so of users who choose bad passwords with only cursory instruction, it is not really a huge improvement."

The problem here is giving the users the ability to choose their password.

ugh. Don't give users a choice. When their password expires, give them a new one. Let them hit the "re-generate" button until they are happy or tired.

What really bugs me is that most ERP vendors don't recognize this as a problem. Most use screens/forms that have to be significantly customized to remove the "enter bad password here" choice.

Passwords? More like words.

[Sheepdot]

Let me give you some insight into how a 'cracker' looks at this since I just cracked an alpha-symbol-numeric Windows NT LM hash about an hour ago in about 5 minutes time. Your password isn't enough. You, as an administrator, have to get in there and modify the authentication scheme.

Or use SHA2. Cause I don't have rainbow tables to crack that. Yet. For those of you who don't or cannot follow security, the new buzz is creating your own crack tables in a couple of weeks or months. There is more info at the project rainbowcrack page.

The misconception that everyone has about passwords now (because we as sysadmins pushed it so hard in the late 90s, early 00s) is that alphanumeric is the way to go. With the advent of generating your own cracking tables, that is no longer the case anymore.

An alphanumeric md5 set of rainbow tables can be generated in about a weeks time with a 2.4 ghz processor. That's my rough estimate based on the couple days it took me to make the alphanumeric one for LM hashes.

I would highly suggest that if you want your users to come up with good passwords you have them make a "one-time" password, seed with a 20-character salt that looks like someone pounded the keyboard, and store it inside a SHA2 hash.

A good administrator is going to salt their passwords with a string of characters that already satisfies the "alpha-numeric-symbol" requirement. If there is any reason to do something other than the first name of your child it is to stop coworkers or friends or people that already know about you.

When using brute-force/guess method this is what I try first and my guess is that at least 1% of Slashdot fathers use this or a form of it as their pass. It's okay to be proud of your kid, but don't think you're honoring them by including them in your password.

Re:Passwords? More like words.

[YetAnotherDave]

Strength of the various characters available depends on the application. For example, if you limit root logon on a linux box to the physical terminal, you can have a relatively short password that I'm pretty sure you won't see in many brute-forcers' prebuilt tables:

'[up][down][up][down]_A_B_start!'

where the directions are replaced with the appropriate arrow keys. This was noticed as a useful 'bug' in linux's password routines a while ago...

Re:Passwords? More like words.

'[up][down][up][down]_A_B_start!'

and the benefit of using this one is that you get extra attempts in case you fail the first time!

pwgen

[jsebrech]

You can easily generate mnemonic passwords using pwgen.

It's definitely easy to remember mnemonic passwords. I've been able to not log into a machine for months, come back to it and remember the mnemonic password unique to that machine.

Re:pwgen

"I've been able to not log into a machine for months,"

Same here. Damn complex passwords.

Re:pwgen

[Anthony]

And if people are interested in generating really hard passwords, I have modified pwgen to accept a -s option. This means generate completely random characters and -p "include one special character"

eg adavid@clare:~$ pwgen -s
YZ'xI*t} Ri}*OQqS PK6V\mEv /HP#n'c- X6@4b%F. {Y%%qFN| (QO:m#aw a.y.|SE)
TEo[WB5P \E&7AwA) K@SH1QVH 3%fgfrzw (;)X$$Ap Vk(#^l%' CJGDO(!\ "qv>h6>I
...

Useful for root passwords etc you can lock away and rarely use.

If you want something a little less daunting but still includes the special characters, use:-

adavid@clare:~$ pwgen -p
aiG8eij( Zi&ugh7n eTh(out2 Mai#yee3 duth8Eo; Thi7eu}a ohpa8oD! zao1ic>O
Ted Tso, pwgen's creator, never responded to my patch, I guess he is busy with other things now. I should get around to looking at it again. There are a couple of bugs in mixed options parsing at the moment. Maybe I should submit it to the Debian maintainer.

If people want to play with it, it is at ftp://adavid.com.au/pub/pwgen-ad/

Divorces and Passwords dont mix

[MajorDick]

Well when going through a really rough divorce (I had an easy one too) I was in serious fear , and justifably so of my Ex hacking accounts using some of my known Passwords , I like many others have a cycle of about 10 that are used interchangably. All these were , with the exception of 1 personal passwords. I found she was accessing my work mail and personal mail almost immediatley , Soooo I decided to have some fun with it, passing all kinds of bogus information into forged emails to myself. Then came court, she was ACTUALLY Stupid enough to bring up several points in court, my Attorney was aware and asked where she found this informationout, "Around, friends, etc" Bwwwahhaaaa talk about someone looking stupid she bought it hook line and sinker.

Sometimes easy to crack passwords are a GOOD thing :)

On another note, after I took her to the cleaners at court I decided to TIE one One, well....NEVER....and I mean NEVER....change you passwords while really drunk..it took me 2 days to reconfigure redit and reset all my passowrds I changed on that drunken celebration. I still have NO idea what some of them were or how I came to decide on their usage

Re:Divorces and Passwords dont mix

I've got a file here. It's about 100Mb long, and is encrypted. I don't know what's in it, and I haven't a clue what the passphrase is. I'm not even sure whether I used DES, 3DES or something else to do it.

I've tried about 10 of my usual passwords, misspellings of them, things I might try as a password, nothing achieves anything. :(

Pretty Simple Solution...

The fourth folk belief is that passwords based on mnemonic phrases are harder to remember than naively selected passwords.

Not for me. Most common password ever used: sex.

Easy for me to remember my password... 8==D()

Course, I have to post this as an AC so no one can root my system...

Passwords And Dice

[JohnPerkins]

I just keep a handful of dice in the desk to roll new passwords with. 2d6 >> base 36 >> letters and numbers. My logon pw, for instance, is 24 digits of that stuff.

Obligatory, Smart-ass-reply

"1) Put both hands on our friend, QWERTY"

Um, so, assuming I leave out my thumbs, what do I with my other two fingers?

"3) Bang out a pattern using all fingers"

Oh, OK, so you password is made up with only the letters "eqrtwy"

No need to continue.

Re:Obligatory, Smart-ass-reply

[soloport]

Made me chuckle...

passflt.dll

[Zog+The+Undeniable]

I'd be interested in a password cracking study comparing passwords where this DLL was turned on (for Windoze domains) and where users are given a free choice. The DLL enforces stronger passwords, but IME few companies use it.

Password Security from the other end.

[SammysIsland]

There are so many places online where i am required to use a password, and there are so many ways for those different accounts to be linked together with some form of datamining on the other end. What I am concerned about is malicious intent from the other end. How can i trust that insiders with access to these password databases don't use my password info to sign into other account i may have on the net (i.e. financial accounts)?

I try to used different passwords depending on the level of trust i have for a certain company. For example, all of my banking passwords are different than say a password i would use to log into /. or hotmail. The problem with this is trying to remember which passwords are for which sites.

Of course, i then run into the problem of accounts where i must change my password monthly or quarterly, and i can't use previous passwords. This seems to be another huge security risk (unless a strong form of hashing is used) as the system now has a list of all my previously used passwords, and once again i have more passwords to rememeber as i can no longer stick with the few i would like to.

I feel that my passwords are relatively random and reasonably strong, and wish i could keep them. Does anyone what to test this theory and post AS ME from this /. account?

ookdealiezago

[Allen+Zadr]

"The other thing is that with a nonsensical word it's easy to remember ( ookdealiezago or something )..."

So, your passwords are made from the "reply-to" of random SPAM messages!

Getting users to comply with password policy.

[TheTXLibra]

Well, having been a System Administrator, I can sympathize with this plight. Even a small non-compliance percentage is a bad thing, since there's only about 50-million cracker tools that will give the list of usernames for the network. Here's a few things I can recommend. Most are common sense, but just in case, I thought it might help:

1. Educate your users in 1337-speak. - You know, 3's as E's, 7's as T's, etc. Point out that they can make nearly any normal, easy to remember password more secure by using 1337-speak. This will help prevent tools like L0phtCrack from breaking the code in minutes, but rather might change it to days. I did a bit of security consulting and found this to be the easiest way of ensuring compliance at the user level. For added security, have them make phrases using the special characters. For instance $4Bugs is a rather secure six-letter password (though really I'd prefer 8+).
2. Fear Works Wonders - Divulge that if their account is hacked because of a non-compliant password, the entire office will know of it, and they will probably be lynched, but only after the cracker has stolen all their bank account info and ss#. This may or may not be the truth, but the people listening to you say this are the same people who are using their CD-ROM drive bay for a cup holder.
3. Tools a la Sneakers - Of course, you can turn on password enforcements, that's the first one. Now try to crack your own network. Not a Cracker? All right, then just go download YAPS, LANGuard, and L0phtCrack and run those. Yeah, they're only scripts, but unless your network has somehow garnered the attention of a serious cracker, the only ones assaulting you will be script-kiddies. So fill in the blanks, and see how your network holds up.
4. Given Time, Serious Hackers Will Get In - There's only so much security you can have without just simply yanking the network from any outside connections. If the network you are supporting is government, big-money, or anything of interest to a serious hacker, it is only a matter of time. Forced PW changes (every 14 days) or so, will help reduce this chance a lot, but will also anger your users. But if passwords are allowed to sit for 30 days, and a compliant admin-access password only takes 25 days to crack, then it will be cracked.
5. Sure, let them keep their PWs on stickies... IN A LOCKED CABINET - Most offices will give you a drawer with a lock on it. These locks are almost never used. Find the Facilities person for this office and get those keys. Let the users write down their PWs in a notebook or stickies, but make it clear they need to lock those books up at night or take them home. Getting a custodial job to crack a network by writing down PWs from stickies on the monitor is the oldest trick in the book (and by god, it still works great). If you catch someone with password stickies on their monitor, punish them.
6. Breed ph34r and paranoia - I printed out some old WWII propaganda posters and changed the lettering on them to refer to passwords and security. It was fun, livened up the walls a bit in the office, and served as a subtle reminder to the users that SAM the Cracker was always out there, trying to steal their (fill in the blank). Of course, in truth, we only had one serious hacking attempt, but it was a lot of fun scaring them, and it made them more attentive to possible security breaches. Sometimes annoyingly so, but hey, we never got cracked in the time I was there.

-The Libra
"You've got no kids, no wife, no job, and you're not in The Tigger Movie!!!"
- my best friend's son, Gabe, at 5 years old.

Re:Getting users to comply with password policy.

[ifoxtrot]

Point 2 - Fear works wonders - so does reward. Rewarding people for following policy is at least as good as frightening them. The problem with the fear appeal is that it has a tendency to run out when bad things continually fail to happen.

Point 4 - Given Time Serious Hackers will get in - paranoia... If you're in that serious a field, you should have a comprehensive approach to security and not bet all your money on *all* your users' passwords being inviolate and strong *all* of the time. Active monitoring and recovery procedures should be in place, access to your password file should be strictly controlled and you should lock accounts after maybe 9 attempts (research suggests that 9 is far better than 3 for allowing people to remember forgotten passwords). Forcing users to change passwords every 30 days effectively forces them to write them down (as you know), but encouraging them to do so and locking the passwords up defeats the strength of passwords which is that only the system and the user has a copy - NO ONE ELSE.

Point 6 is interesting because the title is completely different from what you actually did. You didn't breed fear or paranioa, you drew attention to the problem in a different and engaging manner. Additionally a real attack seems to have changed many peoples' perceptions of exposure.

The best thing that can be done about security is to take a sensible approach. Password policies are hard to enforce, so maybe a more trusting attitude should be taken, making users responsible for their actions (as opposed to berating them for not following practice). Monitoring, audit, accountability for people who are careless with their passwords, rewards for people who aren't, fostering a culture in which people are proud to behave securely, and don't describe themselves as having psychotic symptoms such as paranoia. All these things can help.

Re:Getting users to comply with password policy.

[droid_rage]

I don't know how this got modded insightful.
Response to #1: L0phtcrack and several other cracking tools have had character substitution methods for years. This method no longer works as a security measure.
Response to #2 and #6: Breeding fear and paranoia through alarmist propaganda is a really bad idea, because there will always be enough people in that office who will know better, and it's better to have those people on your side rather than in contempt of you.
Response to #3: These tools are not scripts, but rather auditing tools which still require some training to use correctly. For example, LANguard, just like Nessus and ISS Internet Scanner (which I've also used) can crash systems if you're not careful, and tends to return a substantial amount of false-positives, in my testing at least. BTW, 'cracking' the network with Yet Another Password Safe? Might be a little tough.

Re:Getting users to comply with password policy.

[TheTXLibra]

Hmmm... in response to your questions/comments:

1. Yes, L0phtCrack has special character substitutions. I never once claimed that made it uncrackable. I believe I said that it increases the time it takes to crack (adding additional permutations to the password). Used alone, it doesn't work. Used in tandom with required password changes, and a minimum length, it can act as a deterrant.
2. Obviously these areas were tongue-in-cheek. However one cannot argue with results. When the carrot doesn't work (and I've NEVER seen the carrot work), then it's time to try the stick. If someone calls you out at the office, recruit them. It's not that hard.
3. Yes, they are tools, and they require training to use properly. But I would hope that the IT person in charge of password policy implementation has enough training to know what the results mean in a LANGuard scan (not to mention the various warning and info messages provided by the software a la' nice graphic HTML). I would also assume that at least someone in the department knows about ports and IP addresses, or how to look them up in the case of YAPS (Yet Another Port Scanner). In any event, these suggestions were not so that the admin can crack his own site, but see what would be immediately obvious to anyone running the appropriate scripts, and allow him/her opportunity to do something about it beforehand.

I do hope this cleared a few things up for you.

-The Libra
"You've got no kids, no wife, no job, and you're not in The Tigger Movie!!!"
- my best friend's son, Gabe, at 5 years old.

Re:Getting users to comply with password policy.

[krgallagher]

IMHO here is the most important part of the article:

Compliance is the most critical issue. In systems where users can only put themselves at risk, it may be prudent to leave them to their own devices. In that case, it must be expected that about 10% will choose weak passwords despite the instruction given. In systems where a user's negligence can impact other users too (e.g., in systems where an intruder who gets a single user account can rapidly become root using well known and widely available techniques), consideration should be given to enforcing password quality by system mechanisms.

Some people will never understand security. Don't let these people be a security hole. Let them be unsecure, but keep them off critical systems. The recptionists account should not be able to gain root access on your unix systems. It should not be a member of Domain Administrators on your Windows network. You should be able to withstand having an average users account being completely compromised without any risk to the network.

Re:Getting users to comply with password policy.

Monitoring, audit, accountability for people who are careless with their passwords,

Administrators say stuff like this all the time. But how many of these administrators

1)have a boss budgeting them time to do monitoring and audit, or
2)do the monitoring and audit more or less under the radar without the boss putting it somewhere on the priority list

I suspect the 2's outnumber the 1's by a considerable amount. I further suspect that the number of admins who intend to do that monitoring and audit but never actually find the time to get around to it is not small. Management glad-hands this issue. They talk about security and may even have programs in place to enforce it, but every new project takes priority over security. Our good intentions are fine and dandy but way too often they are obfuscated by the real pressures of the day.

Alternative to memnonics -- pronounceables

[0x0d0a]

I occasionally like memnonic passwords, but another good alternative is a randomly-generated but pronounceable password. It turns out that we're much better at remembering passwords that we can pronounce. (Where "Voolakun5" is pronounceable and "zqx17yvy" is not).

FIPS-181 describes a NIST-endorsed system for producing pronounceable passwords. There is a GPLed FIPS-181 implementation here.

Sample run:

$ apg
dyijenuloa
bifliecar
yishjied&
IfHydrovia
yutsOlg/
DipUkcat

APG is a lot more sophisticated than this, and allows you to do a lot of tweaking of the types of passwords it outputs, print pronunciation guides. It's a good tool, IMHO, for security-conscious types to have around.

For Fedora Core 2 users, Red Hat does not package apg in the base distribution, but it is available from freshrpms.

Don't Force Frequent Changes!

[n-baxley]

I find that forcing the user to change their password every three months and then not allowing them to use the previous 4 passwords virtually guarantees that the person will write down all 5 password and then type in all 5, one after the other and until they get to the one that they are currently using. Personal passwords that are kept by one person, should not be forcibly changed on a rotating basis. Shared passwords that several people have should to handle people leaving and what not.

Please explain to me the benefit of frequently forcing changes to personal passwords.

BRILLIANT!!

at my company, we just put our "sticky note passwords" on someone elses monitor.. then you just have to remember who has your sticky, beat the snot out of them if someone messes with your computer, and if you're really forgetful, put a sticky on your computer that says "Bob".. its BRILLIANT!!

Re:a password policy I've been dying to implement.

[stephenisu]

Bah, my password at work meets your requirements and rases is a minimum of 5 nonalphanumeric ascii codes. I always add ASCII codes to my passwords when a field will accept them. I mean who is gonna look for '®æÝ' in a password?

Re:I sense a good social engineering technique her

[sjwt]

"Hello, I'm doing a study for the Cambridge University Computer Laboratory on passwords..."

And i'd like to offer you some chocolate in exchange for your password.

Goto love that information,
how many hours do you burn trying to hack someones password when all you had to do was promis to send them a block of choclate.

In the minority

[mrmaster]

I might be in the minority by remembering over a dozen different passwords that all expire at different times but isn't these passwords getting out of hand? Instead of studying the effects of having a well thought out password, how about devising a way that we don't have to use a password for every application and every website and have them all expire at different varying times. Some expire after 30 days and you can't reuse the password for 3 years! You have to expect people to start writing down passwords when there are so many.

Too lazy to come up with a good password?

Try out this nice password generator. You can customize the output based on what you feel would be most secure and easiest for you (randomness, length...). Just don't complain if an admin of that site craxx0rz j00.

I knew it!

[tfbastard]

I knew spam would come in handy one day! All my passwords are variations of v!agr@.

HSV

[dollargonzo]

purely biometric passwords are inherently flawed. i worked on a system which is really a combination of the two: handwriting signature verification. you can pick your password by picking what your "signature" will look like. it can be a simple shape, or your name, or whatever. furthermore, unlike a password, even if an attacker can guess what your password is (which is much harder since the space of possible passwords is much larger), he has to be able to forge it, writing it the way you write it. this is very difficult. more importantly, even poorly chosen passwords (simple shapes) cannot be cracked with brute force attacks since the password space is so large.

Combine random rubbish with memorable words.

[xelah]

Give your user pieces of random rubbish, one for each login. Print these on something convenient (a credit-card sized bit of card, for instance) and give this to your user. Also ask the user to enter a memorable word.

The password for a particular login is then the random rubbish for that login plus the memorable word. The memorable word can be the same for every login.

A brute force attack remains unfeasible without obtaining the piece of card; not perfect but it makes it a good deal harder as it requires the physical presence of the attacker. At the same time the user is more likely to obey your instruction not to write their word down as there is only one, easy to remember word to remember.

Stealing the password then requires both physical access to the bit of card and a brute force attack. That raises the bar quite a bit from needing only one of those two.

reusing old passwords

[jhagler]

The question I would like looked into is how many "old" passwords should a system remember and not allow a person to reuse.

I'll give you an example, a place I used to work required all the standard things: caps, non-alpha, 90 day expiration, etc. but what bugs me is that your new password can't be the same as any of your previous 6. Now, I have three or four good solid passwords that meet (or can be made to meet) all those requirements, but when I have to come up with 7 different ones, they start getting weaker and weaker near the end. I know that in most systems you can just run through half a dozen passwords in about two minutes and get your old one back, but they also instituted a minimum age so you couldn't do that.

All these things are generally considered good network security, at what point do you start doing more damage than good though? How many passwords does your system require, and does anyone else find themselves in the same situation I'm in?

Re:reusing old passwords

[base3]

if suffix_character
newpassword = previouspassword & suffix_character + 1
else
newpassword = previouspassword & 1
endif

This assumes that the anal security weenies aren't checking similarity (maybe by Hamming distance) to previous passwords. Someday, maybe these people will learn that onerous password requirements only cause people to write them on Post-Its or on slips of paper under their keyboards.

Post-It notes? Ha!

[FirstNoel]

Our production users either have them barcoded for easy scanning or written ON the monitor. Super secure...

We just had a security audit...crash and burn! Well that's what you get when you have to "Do more with less."

Sean D.

PDF text

[AnonymousDot]

The Memorability and Security of Passwords
Some Empirical Results

Jianxin Yan, Alan Blackwell, Ross Anderson, Alasdair Grant

Cambridge University Computer Laboratory

Abstract. There are many things that are 'well known' about passwords, such as that uers can't remember strong passwords and that the passwords they can remember are easy to guess. However, there seems to be a distinct lack of research on the subject that would pass muster by the standards of applied psychology.
Here we report a controlled trial in which, of four sample groups of about 100 first-year students, three were recruited to a formal experiment and of these two were given specific advice about password selection. The incidence of weak passwords was determined by cracking the password file, and the number of password resets was measured from system logs. We observed a number of phenomena which run counter to the established wisdom. For example, passwords based on mnemonic phrases are just as hard to crack as random passwords yet just as easy to remember as naive user selections.

Introduction
Many of the deficiencies of password authentication systems arise from the limitations of human memory. If humans were not required to remember the password, a maximally secure password would be one with maximum entropy: it would consist of a string as long as the system allows, consisting of characters selected from all those allowed by the system, and in a manner that provides no redundancy - i.e., totally random selection.
Each of these requirements is contrary to a well-known property of human memory. Firstly, human memory for sequences of items is temporally limited [1], with a short-term capacity of around seven plus or minus two items [2]. Second, when humans remember a sequence of items, those items cannot be drawn from an arbitrary and unfamiliar range, but must be familiar 'chunks' such as words or familiar symbols [2]. Third, human memory thrives on redundancy - we are far better at remembering information that can be encoded in multiple ways [3].
Password authentication therefore appears to involve a tradeoff. Some passwords are very easy to remember (e.g. single words in the user's native language), but also very easy to guess with dictionary searches. In contrast, some passwords are very secure against guessing but difficult to remember. In the latter case the security of a superior password may be compromised due to human limitations, because the user may keep an insecure written record of it or resort to insecure backup authentication procedures after forgetting it.
This paper presents an empirical investigation of these tradeoffs in the context of an actual population of password users. Research in cognitive psychology has defined many limits of human performance in laboratory settings where experimental subjects are required to memorise random and pseudo-random sequences of symbols. It is very difficult to generalise from such research to password users, who can select the string themselves, are able to rehearse it while memorising, and need to recall it at regular intervals over a long period of time.
We show that this user context allows the exploitation of mnemonic strategies for password memorisation. There are many successful mnemonic techniques that can be used to achieve impressive performance when memorising apparently random sequences. Password alternatives such as "Pass Faces" exploit superior human memory for faces, for example [4]. However rather than changing the password authentication procedure, we propose changing the advice that is given to the user when selecting a password.

Existing Advice on Password Selection
Many large organisations give specific advice to new users about how to select a "good password". A good password, in terms of the above discussion, should aim to be reasonably long, use a reasonably large character set, but still be easy to remember. There are some subtleties about whether the att

Re:a password policy I've been dying to implement.

[rivaldufus]

ASCII codes? We used to DREAM of ASCII codes. 456 of us, living at a corp, using only 128 characters... etc.

Mnemonic passwords hard to remember?

[pedantic+bore]

4. The fourth folk belief is that passwords based on mnemonic phrases are harder to remember than naively selected passwords.

Is this a typo, or is there a new meaning of "mnemonic"? The whole point of mnemonic passwords is that they're easy to remember. That's what mnemonic means.

Re:Mnemonic passwords hard to remember?

[treehouse]

Not a typo. The subject was mnemonic phrases, not mnemonic passwords. Phrases may be harder to remember correctly than a single word. But read the article if you want more details of their findings.

Re:Mnemonic passwords hard to remember?

[KnightStalker]

That compares an apparently random but mnemonic password, like, say, 'iah1tGtlaH' (first letters of the first line of _The Hobbit_, l33t-ized) versus a very simple password, say, 'hobbit' or 'eleventy-first'.

Obviously most people will remember either of those more easily than say, 'meiKii0z' which I just created with pwgen.

I like that analogy

[A+nonymous+Coward]

Wonder how well it would improve secuirty at aparrtment buildings at houses if we required users to change physical keys every 90 days ... got to prevent someone from sneaking in every morning and raiding the cookie jar and kids' piggy banks.

Re:I sense a good social engineering technique her

Forgot the book title, but it had an example of such social engineering:

(Poster taped to a dorm hallway)
Free Cool Sports Prize for most creative passwords!
Simple to sign up!
Just write your campus network username and password in the list below (these will be used to check for validity by our judges - cheaters will be disqualified).
The most creative one wins the sports prize!
____________ ______________
____________ ______________
etc.

Of course, who are the "judges"?

Re:OT: Your SIG cheapens the 1st Amendment

Not everybody has the option, "view signatures" turned on. While it's the default, they are quite easy to turn off.

I say this because replies to signatures are obnoxious. Almost as obnoxious as someone replying to an annoying post by trying to educate others about message board etiquette.

That is to say, I know that what I'm doing is also wrong, thus...

--
AC (due to severe off-topicness of reply to off topic post).

Use a "password wallet"

[tentimestwenty]

If you have a lot of passwords, use a program to store them in encrypted form and have one good rotating password to open them all up. Ultimately I guess one of these could be cracked but it's a distant chance and thus a good compromise for someone who's got a lot to keep track of.

My password generator - pwgen

[mackman]

I wrote this a long time ago and figured now would be a good time to post it on the internet. It uses a uniform random number generator based on /dev/random and generates passwords of arbitrary length based on printf-like format specifier. It also prints the strength of the generated password, assuming that /dev/random is truly random (pffft).

My favorite part is that it can use the short-word list from skey (a OTP system) to generate easy to remember passwords. A format specifier of %6s will spit out something like "at bum his dud fay bid" which is actually 66 bits strong and alot easier to remember (for me) than the equivalent 11 character alphanum string.

<sig>Sick of playing to rent DVDs or losing your O'Reilly books to your coworkers. Try office-exchange.com today!</sig>

Oh yeah? How OT can we get, do you think?

What that is almost as obnoxious as...um...let's see...never mind...

I knew I'd take a karma hit, but was just feeling a little ornery this morning. On the other hand, I actually *like* to read an occasional offtopic rant.

So, in that spirit, does anyone else think bleu cheese tastes like dirt? ;-)

-----
AC so as not to burn ALL my karma.

As with a large number of problems...

[26199]

...you can solve this one by throwing money at it.

Buy one of these and relax. You'll never have to worry about passwords again.

Re:As with a large number of problems...

[julesh]

less than you'd spend for dinner at a nice restaurant

Err, right. The writer of that sentence was confusing "nice" with "unnecessarily flash".

Multiword Passwords?

[prandal]

Why don't these studies test password schemes commonly found in the real world.

I've seen (e.g. chrome=turnip) or even (e.g. purplegearbox), where the concatenated words do not form a dictionary word. Googlewhackers could have fun generating (in)secure passwords along these lines.

Re:Multiword Passwords?

[prandal]

oops, must remember to preview next time

I've seen [dictionary word][non-alphanumeric character][dictionary word] (e.g. chrome=turnip) or even [dictionary word][dictionary word] (e.g. purplegearbox), where the concatenated words do not form a dictionary word. Googlewhackers could have fun generating (in)secure passwords along these lines.

Great tactic for encouraging good passwords

[Avumede]

When I was working at NASA, I was still using a very simple password consisting of a very unusual word plus a number. One day the sys admin sends me a mail and says "Hey, I cracked your password. You must be a fan of [band name who had a song by this title]". I was embarassed enough that I immediately changed my password to something much stronger, and use a strong password to this day.

It works well because many people (myself included) just didn't get how easy it is to crack simple passwords until someone does it. If it's your friendly sysadmin, a normal desire to appear less idiotic is a sufficient motivator to choose a strong password.

Slashdot passphrase

[MoreDruid]

IANAL&IneverRTFA

Oh wait... did I just give away John Katz's password?

That article is so old it's grown whiskers ...

[Dark$ide]

I've been citing that article as a good study of password quality for about six or seven years.

This is hardly new research.

Use time, not rejections

Here's a far better strategy:
Serialize all password checks for a single user, and take 5 seconds to reject an invalid password.

Programmatic Enforcement

[securitydude]

You can get software to enforce the policy to avoid the 10% non-compliance mentioned above. In the Unix/Linux world, you can use something like NPasswd to do it. For you Windows' people, something like Password Bouncer would do the trick.

That belongs in browsers, by the way

[Beryllium+Sphere(tm)]

Lucent's R&D people once put the same functionality into a public proxy, the Lucent Personalized Web Assistant (LPWA). In its first implementation you could fill a form with username, password and email address by typing /u, /p and (I think) /e. The proxy would hash your proxy login with the site name to create a unique username and password for every site that required them. They remembered the unique email address and forwarded it to your real one, just like sneakemail.com does today but more automated.

Of course it didn't work with SSL, which is why the functionality belongs in the browser. There's no good answer for locating the email address generation.

LPWA is dead now. Lucent sold it to a small company and the project has never been heard from again.

Trival passwords for trivial data

[lrucker]

The problem is with the 40 year old women in the office who use their kids names over and over with different numbers at the end of the password

So what kind of data do they have access to? Is it critical data, or just their local machine? If it's critical, do they need that access all the time?

For a while we had strict passwords on our PCs - but there was nothing important you could get at from a PC, unless you used it to connect to a Unix box - at which point you had to enter your Unix password. There really was no reason why the PC even needed a password.

Re:Trival passwords for trivial data

[Minna+Kirai]

There really was no reason why the PC even needed a password.

Then what stops the janitor from installing a keylogger to grab the passwords that connect those PCs to Unix?

Re:Trival passwords for trivial data

[lrucker]

Then what stops the janitor from installing a keylogger to grab the passwords that connect those PCs to Unix?

The same thing that prevented me from installing anything on the PCs - they'd blocked it. (OK, so technically there were functional passwords on the PCs. But the user passwords were pointless)

Cool!

[Phekko]

2) For my password I use a few things from my childhood that no one will ever come up with.

Now I can extort you with the dirty details AND use your login ;)

Account Locking Worse Than Ineffective

[Brian+Ristuccia]

Account locking doesn't deal with offline attacks where the attacker has a copy of the keyfile or password file. In fact, it makes the situation worse, because with automatic account locking a malicious user who wants to lock another user's account (or the entire company) need only run a small script that rapidly attempts to log into each account with a known bad password.

Pavlov?

[Allen+Zadr]

Damn, all of a sudden, I'm hungry. Must be lunch-time.

my scheme

my scheme: math

grab a simple equation:

4+6=10

spell out one or two words

4+six=ten

bingo. easy to remember, hard to guess.

Re:my scheme

[fiiz]

yeah, nice physics equations are quite useful too. I mean, you can use the LaTeX code for your favourite quantum mechanics equation, and you're pretty much sorted--especially if you add a dumb characters.
I used to use e=mc2!! but it's easy to see that even a simple equation could be written in many different ways: e=mc^2, $e=mc^{2}$, etc etc with caps and all, or rot(13) or whatever.
Of course, long variants of astrophysical fluid dynamics are advised for length...

Mathematically correct, but think revenge effects

[Beryllium+Sphere(tm)]

BTW, figure more like 45M tests per second.

The numbers in the parent are the right way to analyze a simple isolated system like machine storage of crypto keys.

If you're storing the passwords inside humans, the Law of Unintended Consequences walks up and socks you in the nose. Make the passwords too strong and they wind up taped to the monitor.

My answer to the problem is heretical (http://www.berylliumsphere.com/password_heresy.ht m).

Do rainbows defeat blowfish?

Does this stuff work against the scheme described below - arbitrarily expensive setup for encrypting the password with bcrypt? If so, how fast would it be - say if you were looking at a 1 second login time using bcrypt passwords on a 1GHz PC?

http://www.usenix.org/events/usenix99/provos.htm l
http://www.openwall.com/crypt/

That's dangerous...

[Mongoose+Disciple]

... but not in the way that you might think.

True story, if about ten years old:

Back in my freshman year of college, my roommate and I were discovering the wonder of the internet. The way the school internet access was set up, usually you would dial up, then get this sort of telnet prompt, from which you could pick one of the uni's student UNIX boxes to connect to to check your e-mail or whatever.

Now, there really weren't enough of the UNIX boxen to handle the load the students placed on them in peak hours. Sometimes they'd be down, and sometimes they'd just have too many users doing too much shit to make you want to use them in anything less than an emergency. My roommate, in the process of trying to feed his burgeoning MUDding addiction, discovered that you could telnet to anywhere, not just the uni's student boxes, despite what they had taught us about our student accounts. This let him connect to his MUD of choice regardless of the status of the UNIX machines.

He had a macro he would hit to enter the MUD's IP, his character's name, and his character's password together in quick succession. His character's password, as it happens, was Cthulhu.

One day, the MUD was down, and so 'Cthulhu' ended up being entered by the macro into the faux-telnet-prompt thing. This connected him to a U.S. government computer in Indiana, apparently named Cthulhu. There wasn't, as far as we were aware, any sort of escape character for this faux-telnet prompt, so he kept typing things like 'exit' and 'quit' trying to get out as Cthulhu demanded his login information. Eventually it cut him off.

The FBI reported him to the uni for "hacking" and they cut his student internet access off for the rest of the year. Comically sad.

No idea if there's still a Cthulhu out there, somewhere in Indiana...

Eh? Passwords are, like, so last century folks.

[garyok]

Why do we need passwords when we can just swipe into our terminal with our government-issued biometric ID cards? Add a quick check of the fingerprints, iris scan, cheek swab for DNA, and a urine and stool sample and we're good to go. You can then start the day with all waste voided, your eyeballs scrubbed for greater acuity over those long productive work sessions, and your employer can keep signing those paycheck with a smile in their heart knowing that you've never actually spent any of the money they've given you doing anything as crass as enjoying yourself.

Plus the government will know you've been good too. You. Specifically. That ought to thrill you down to your toes.

C'mon! What are we waiting for?!

Cannot be changed -- a good thing.

[Allen+Zadr]

That depends on the purpose.

For authentication purposes, biometrics are nearly as good as it gets. Remember, authentication, is to show that you are who you say you are.

Biometrics cannot be shared (except, in some cases, among identical twins). The other issue of biometrics is legacy and diverse systems (see last paragraph). Not all systems can handle/be retro-fitted with biometric scanners.

However, if you want to have a username and password that can be shared among a group of people (service specific userid), biometrics won't do at all. (Yes, this is still relatively common). Or, have a reltively anonymous service (like Slashdot) - where a userid may want to keep multiple accounts (see my sig-link).

Does anybody know of a decent biometrics system that works well with a Hybrid linux/windows network? I researched it, and can't find anything. Maybe someone else will know.

Re:Cannot be changed -- a good thing.

[SoTuA]

For authentication purposes, biometrics are nearly as good as it gets. Remember, authentication, is to show that you are who you say you are.

The problem arises if/when somebody finally finds a way to fool a biometric scanner. Then you are in for a world of hurt. (So, you are not a spy for the competition? And it was YOUR fingerprint that entered the system late at night and yadda yadda? But it wasn't you? Yeah, right!)

Having all staked on the non-replicability of biometric auth can come back and bite uss in the ass.

Re:Cannot be changed -- a good thing.

[Allen+Zadr]

Very true, which is why the technical authentication policies for some companies include both:

1. Something you have (i.e. your finger, or a SecurID)
2. Something you know (i.e. a password)

Of course, if you have my finger... I'll undoubtedly give you my password, lest you take more appendages.

Re:Cannot be changed -- a good thing.

Biometrics cannot be shared

Yes, they can.

Password Club

[LGagnon]

Reading through that summary, I couldn't help but think one thing: The first rule of your password is you do not talk about your password.

This kind of reminds me of another novel by Chuck Palahniuk (author of Fight Club): Lullaby. In that novel, everyone's password is "password". The main character manages to break into someone's computer simply on the hunch that that was the password.

Memorability vs. Post-It notes

[zapyon]

As many others have posted, the problem with 'secure' passwords is often that users will start noting them down and keeping them on their screen or in the drawers of their desk.

I have had good results with instructing 'reluctant' users to select an item in the room (or something on a picture on the wall next to the desk) as their password hint. An elderly secretary very uncomfortable with their computer and very forgetful when it came to passwords finally did well when I recommended her to use the name of a bird on a poster (in German). I think this is still a lot better than either a random password noted on a Post-It or the name of your late pet or 'secret' lover.

But, of course, this is totally insecure in a high security environment. So, eventually, we have to conclude that there is a strong relation between security requirements and user capabilities (and enthusiasm/reluctance). It is a 'social engineering' matter after all, isn't it?

Kind regards

zapyon

You could always poke your eye out with a stick

[flimflam]

n|t

Your mothers maiden name?

[snon]

Feel free to take a look at our approach to solve this never ending problem http://www.mindlocked.com
There are good ideas out there just waiting to be discovered ;-)

NOT secure

[IntelliTubbie]

Basically it assigns random chars/numbers/symbols to each letter of the alphabet ... Now I print this nice little table and use it for passwords all over the place. For example I could just remember "slash" which maps to the password Z?+JTLZ?4&

The table itself isn't a terrible idea, but where you really go wrong is printing it out. If anyone gets a look at your "alphabet," and you've used a simple dictionary password, then it's as simple as doing a dictionary attack -- just with your modified alphabet instead of the standard one.

This is why, as the article states, user-devised password schemes aren't very good (although yours is probably somewhat better than many), as they only give the illusion of security.

Cheers,
IT

Re:NOT secure

[John+Newman]

I dunno, this kind of simple encryption doesn't seem too bad. Aside from social engineering, your two main worries are remote brute-force attacks and local unauthorized logins, right? The simple encryption makes any kind of brute-force dictionary attack very unlikely to succeed. Meanwhile, even with the chart in front of them, no one can just walk up and log on to his terminal. It's unlikely an attacker will sit in his chair for an hour and work out possible passwords.

The only potential problem is if someone walks up to his desk, swipes or photocopies the chart, then uses the code in a remote brute-force attempt (assuming he also knows the poster's log-in). Again, doesn't seem likely, and is anyway solved by the poster printing out a new chart once a month - much more painless for him than picking out a new password.

Re:NOT secure

[Rich0]

Also - the typical script kiddie downloading a cracker would be hard pressed to get it to translate dictionary attacks using his translation table.

It would take a determined attacker with at least a passing knowledge of programming and desire to attack one password to attack this system.

And if he locked the paper in his desk it would also take somebody willing to pick a lock...

Re:NOT secure

[nizo]

Well, if you are really paranoid you could always do other things, like use the random pair to the *left* of the letter (not intuitive to someone who has swiped the chart) or add in uppercase and numbers as well. Or you could print a booklet of these, and just remember which "page" you are on at the moment. Typically I keep this in my wallet, so if I lost my wallet I would simply generate a new table and go change the relevent passwords. Granted it isn't 100% secure, but hey it works everywhere I am (as long as I have my wallet).

I'd advise against that...

I would advise against using pronouncable passwords. My university requires all students to use their login and password to log in at every computer in the university.

The problem is, that you're sometimes too tired and hurried to log in, that you don't notice that the cursor is still in the login field when you type your password. This happens especially when your login failed, because then you're out of your usual "login /tab/ password /enter/"-rythm.

In those cases, it is very important that your password is NOT pronounceable. I've regularly seen glympses of the passwords of people sitting next to me in front of the computer. When the passwords were not pronounceable, like "i4H62qBr", you couldn't possibly remember in the second or two time you're given, because users get a shock reaction when they see their own password on the screen, and backspace it frenetically.

But, of course, if your password is "IfHydrovia", people are able to read and memorise it instantly, if they want it or not.

I can give another useful tip though, especially for Europeans: if you have to use both QWERTY and AZERTY keyboards, pick a password that is entered the same way on both. This will mean that you won't enter your password incorrectly because of the different keyboard layout. And in most casees, it's when you have to log in again that people accidently use the wrong field to type their password.

Mitnick today

[SoTuA]

is milking the conference circuit as hard as he can (it's how he makes his living now)

He was briefly in Chile for a US$420 a seat conference, and the head of the Computer Science Dept. asked him if he could give the students a little talk.

A representative answered exactly this:

Thank you for your inquiry. Kevin is indeed in Chile next week-- and would love to address your students. He does, however, charge a fee for his presentations (it's how he earns his livelihood)--- A standard presentation is 45 min. long plus 15 min. Q&A and covers the information presented in his book, The Art of Deception. The cost for a presentation like that is typically $15,000 US; however, due to the fact that you are an educational institution and Kevin will already be in the area delivering his other presentation, I could offer you a discounted price of $9,000 US (a savings of 40%)plus any related travel costs to/from your organization to his hotel.

Re:Mitnick today

You got something against him making a living?

Re:Mitnick today

[SoTuA]

Did I say I was against him making a living? No, I presented evidence that he is making a living out of conferences right now. I have no beef against him. Parent poster asked what ever happened to Mitnick, and I provided him with the information, not condemnation.

Re:Use (compressed) passphrases instead

[YetAnotherDave]

One comment I'd make is that you can pretty easily compress long english prases without losing the mnemonic help of the phrase

one flew over the cuckoo's nest -> 1flu^th3CnesT

still easy to remember, not too painful to type.

The Most Secure Password

Research has shown that the most secure password is 'X7no0RsTT'. Everyone should change all there passwords to 'X7no0RsTT' immediatly, or they will be at a greator risk of being violated by hackers.

Less people?

Fewer people.

Re: Remembering frequently-changing passwords

[some+guy+I+know]

At work they make me change them every 30 days! There's no way I can memorize a good password that frequently.

It's very simple.
Take a song that you like, and use the first letters of each line as your password.
If your password requires numbers or special characters, use the line number of the song, plus its shifted equivalent.
If it requires both upper and lower case, use one upper-case letter, the same position each time.

For example:
A long long time ago,
I can still remember
How that music used to make me smile.

Month 1: aLlta1!
Month 2: iCsr2@
Month 3: hTmutmms3#
etc.

Each year, pick a new song.

forced password changes

[wk633]

Before implementing any security measure, one should ask "Why?" What is the hard reason? (not just feel good).

When it comes to forced password changes, it's "Because the password may be compromised".

So the next question is, if it 'may' be compromised, then how long are you willing to live with it compromised?

And that is your password change rate. So, if you force password changes every 90 days, it means you're willing to live with passwords being compromised for 89 days.

So what, force them every day?

The real answer is that if you think your users' passwords are being compromised, then you need some other form of security. Forced password changes are changes for not reason.

Re:forced password changes

[julesh]

You're missing the reason "because passwords can be cracked by brute force, but this generally takes some time to achieve".

Re:forced password changes

[wk633]

But how many Admins know how long a brute force attack would take and adjust their forced perioud accordingly? And how to they relate? Do you make your force perdiod 1/2 the brute force time?

That is, brute force takes worste case 180 days, so you force change after 90 to catch the average?

Is average good enough?

Nobody (ok, almost nobody) is actually doing this. Admins (and I'm one) force password because it's what they've been taught to do.

I do it because it makes my users feel better, and the only way I know to force good passwords is to run my own brute force. Not doing that- yet.

Re: Remembering frequently-changing passwords

[ArbitraryConstant]

What I've been doing so far seems to be okay

I wrote a program to generate high quality random numbers from the high quality entropy source (/dev/srandom).

Then I stick a number on the end and increment it. I RTA, but having a high quality random password just makes me feel good.

I have an iBook, so I have to get it repaired a lot due to the logic board thing. I generally make a new password when I have it repaired. And they always compliment me on my password. :)

Physical keys

[ecloud]

That's what security is all about. Every company should have a single standard - iButtons or smart cards - which replace door key cards, login names, passwords etc., and work on every system to which an employee is supposed to have access. Authentication should be automatic - plug the iButton into your terminal, and you can ssh transparently to any machine to which you have access, without any further passwords. That way there is just one thing for the employee to "guard with his life"; and by increasing convenience you increase productivity too. The cards or iButtons should use a rolling-code system, with computation performed on-chip, so that it is extremely hard to duplicate a key. And in cases where extreme security is required, it could be supplemented with a password, but I think the extra security which that provides is minimal.

But probably the open-source, cross-platform software to make it possible still needs to be written.

Another method with a printed table

[SimoM]

I have sometimes used a printed table to aid myself in memorizing a pseudorandom password, too. I did it by printing a table of random characters from the set of lower and upper case letters, numbers, and some punctuation, like this:

0 3 x C 6 m c Q 5 q u s
8 e v 7 u K T / W 8 4 1
6 j B y . 8 o r = 8 S 5
O F v L 4 g 3 4 p I W 6
c l B P E u Z 9 6 L y 5
% p U A a 9 % d 5 A H v
J e % ! C 3 b . D U 5 U
Q O S l t J Q E P r c L
P 4 g n a S 9 9 C R b 7
% 9 x E = 5 d i o l 8 G
R h Q Q A e o y x R 9 Z
R E 3 N 8 c A e I 7 0 d

and then deciding from where in that table to read a password. Obviously the password could not be in a straight row. It could be a spiral around an initial character, part of a knight's tour, alternating picks from several lines, characters at intervals based on the Fibonacci sequence, or whatever rule one could devise. This effectively replaced remembering the password by remembering a pattern. I liked to think that the number of possible permutations would probably pay back some of what I lost in randomness.

(I now fancy wallpapering my cubicle at work using sheets like this, with characters randomly colored for additional visual cues.)

Wrong standard of comparison

1.2*10^8 is still many more than the typical 50,000 words in an English dictionary.

We aren't comparing a generated password to a hypothetical maximum-entropy password, we are comparing it to the passwords that would otherwise be used - typically an English word with maybe a single digit slapped on the end for "security" (so you you only have to crack 500,000 possibilities)

The incremental increase in password complexity is very large, at a relatively small cost in user inconvenience.

Key logging can be defeated

[DukeyToo]

My online bank has 2 techniques they use to try and fight key logging.

1) Provide a mouse-driven numeric keypad (they use short numeric pins as a primary password)
2) Require a strong secondary password, of which random characters are requested each time. So, if I login today, they will request characters 1, 6 and 7. The next time they may request 1, 5 and 7.

Point 2 provides dubious benefits, I think. Sure, it defeats keylogging but I would guess that most people write down the 2nd password, so that they can easily find the requested letters. Plus, it is complicated enough to be a tech-support nightmare.

Make it a game!

Something like a Las Vegas slot machine, based on a common password cracking program (l0phtcrack, John the Ripper, etc.). A user types in what they think is a good password. As the cracking program tries to break it, the slot machine wheels spin. If the password is broken, make a hideous noise. If unbroken, print out a certificate good for lunch on the company.

Set up a dedicated machine like this and use it for your security awareness training. Dare users to come forward and try their best passwords.

Cubicle rats will do ANYTHING for that big chunk of swiss cheese!

Writing down passwords != bad security

It may sometimes = bad security but it isn't necessarily bad.

The assumption of many many posters is that the chief threat is someone poking around a worker's desk and getting the password that way.

RTFA

The problem is not choosing a good password, and social engineering (and that is all in the summary).

I had through the results were entirely intuitive and the original poster didn't know what he was talking about, but so many miss the point that maybe I'm wrong.

Or maybe there are a lot of 'post first, think never' people on Slashdot......Nahhhhh.

Writing down passwords isn't bad in itself. I write mine down and keep them in a locked drawer. Security keeps out everyone who doesn't have business in the building, and you'd have to know a lot to be able to guess that I wrote down passwords and where they might be, and which it might be. And my work-group is 24x7. So it is no problem. Oh, and my coworkers all have the same access as I do. So is it bad I wrote down my passwords? Nope. Could it be bad in some circumstances? Yep, but to rail against a good password policy because someone might (horror of horrors!) write down a password down is pretty stupid.

7. The Seventh folk belief...Yellow Sticky Notes

[f0rt0r]

7. Writing the password down on a yellow sticky note and sticking it to the keyboard is more secure than sticking it on the monitor. - Debunked, we found that hackers generally look for sticky notes in both places, in addition, they will sometimes look under the keyboard and in the top drawer of cubicle desk.

A note on hashing

[5n3ak3rp1mp]

I work on a web app (one that I didn't design, but that I customize) that stores an md5 hash of the password in the db. And I noticed that you can still glean information from the hash, if the password is common (such as the word "password"). So my idea was to store a hash of the concatenation of the username AND password, ensuring with a high probability that no two hashes will be alike.

Re:A note on hashing

[lukewarmfusion]

Try using a salt. A hash can't be reversed, but you can create a dictionary/brute list of hashed passwords and compare to that. A salt is a string that you can prepend/append to the password before hashing it. The salt is stored in plaintext in the DB (so you can re-create the hashed value). I use 10 or 12 digit alphanumeric salts - like "HB49BJA93KVD".... that would make your user's password (before hashing) change from "password" to "passwordHB49BJA93KVD"... since every salt is different (and random) you won't be able to easily glean anything from that hash.

Of course, a salt (or even your hash routine in many cases) is worthless if the actual DB is compromised! A hacker could use those salted hash values and still brute force them... or add his own user, or change your user's password, etc. It's only as secure as [your system | your user's passwords | the network | all of the above].

Re:A note on hashing

[Minna+Kirai]

So my idea was to store a hash of the concatenation of the username AND password, ensuring with a high probability that no two hashes will be alike.

Old way:
I wonder if anyone's password is just 'password'.
forall(user){test(user.hashedpassword = hash('password')}

New way:
I wonder if anyone's password is just 'password'.
forall(user){test(hash(user.login + 'password') = hash('password')}

2nd way requires more hashing to be done through the loop, but isn't really much harder.

Re: Remembering frequently-changing passwords

[nelsonal]

I use a modified method of this, picked it up here a few years ago. Pick a sentance from a big book (LoTR, Illiad, Odyssy etc) then take the first letters (Tell me Oh Muse...) Now if the word is a noun use the number of letters in the word, if it's a verb use the last letter, if none of these use the first letter of the word. From the line above you would have the password lmo4oti4wd3a4ahhdtf4o4. What you remember is, "Tell me oh muse of that ingenious hero who travelled far and wide after he had sacked the famous town of Troy." You have enough for two passwords there. If you wanted extra security you could add a rule to use the symbol (shift+number) of letters in pronouns or linking words. Feel free to improve on my letter swapping method, all that matters is consistency. This method has the advantage that you can leave your cypher book near the computer as long as and the basic scheme (and rotation frequency and method) is memorized.

Using sentences

I'm wondering that why passwords have to be so hard to remember or even have to be generated. I personally use sentences as my passwords. Makes them almost impossible to crack with brute force. Though they are vulnurable to language analysis but still should be more secure than that same old password with one last number changed in the end.

Though there are still some retarded systems that allow maybe 8 characters max for your passwords and this is unusable with them.

Password Volume

[robbo]

Speaking as someone who understands the value of choosing hard-to-guess passwords, the biggest problem I have is with the sheer volume of passwords I need to remember. So often I go back to a site I've registered at and wind up with my account locked because I can't remember which password mnemonic I used.

With mnemonics, I would imagine that access to one or two of a user's passwords would enable an attacker to guess many of their other passwords. It seems like an all-too-obvious attack to set up a pr0n site with user registration, collect user names and passwords, and them run them on yahoo, hotmail, online-banking, etc. One could easily harvest hundreds of passwords this way. (Uh-oh, I hope this kind of idle speculation isn't some kind of DMCA or Patriot violation... ;-)

How do slashdotter's deal with password volume? Even the no-no of writing them all down can be a difficult task to manage..

I'm going to

[PriceIke]

write a password on a yellow sticky for my monitor that satisfies the requirements of our resident Password Nazi. If somebody winds up going insane late at night trying to use it to access my data, its work will be done.

Of course, if you can profile them...

or go to there office, its ezy to break there password. I play a online game with some friends, in which we share resources. Like good computer users, we change our passwords, but I can break ther passwords within hours, due to the fact that I know them, or can look around there computers. Awhile ago, we had a new player in our group (one of guys girlfriend's kid) and I was able to break in password even quicker (hes only 16, at at that age its all sex, drugs, rock-n-roll, etc.)
I agree with the person who posted about his Korean friend using phonetic Korean phrases (your not safe from me, since I only spoke Korean till the age of 3, Muuuhaahaa!!!) but if I see you last names is Kim, Park, or Lee, I'll attack that way.
Well I'm on my way to see how may /. users are using "freeasinbeer" or "fr33a$inb33r" or something like that. {Goes off to plan his attack, and laugh maniacally.}

Shadow files make complex passwds less critical?

[lawaetf1]

Really, who breaks into systems anymore by brute forcing passwords? In the pre-shadow days it was easy to attack all of /etc/passwd with thousands of tries a second but now with /etc/shadow you're relegated to tapping at the the ssh socket or the like. And with a three-try lockout, that's not really much of an option either.

Free as in beer...

is the phrase I'll use to attack slash dot. I'll pwn u all, cause I'm 1337. [Joke for the comically challenged, and a wake up call for those with weak passwords]

Here's a JavaScript version of this, for ease...

[5n3ak3rp1mp]

I hope Slashcode doesn't munge this... It's got configurable stuff. Just save locally to an html file and fire up in your open-source web browser of choice. Enjoy.

<head>
</head>
<body>
<script language='JavaScript'>

var insymbols="abcdefghijklmnopqrstuvwxyz1234567890";
var outsymbols="ABCDEFGHIJKLMNOPQRSTUVWXYZ" + "abcdefghijklmnopqrstuvwxyz" + "1234567890" + "!?.:@#$%^&*-+=";
var cols=4; //number of output columns
var dict=new Object; //hash lookup dictionary
var dictTable=""; //hash table

//generate dictionary
for(var i=0;i<insymbols.length;i++)dict[insymbols.charAt(i )]=outsymbols.charAt(Math.random()*outsymbols.leng th)+outsymbols.charAt(Math.random()*outsymbols.len gth);

//output dictionary to screen and clipboard
for(var x=0;x<insymbols.length;x++){
dictTable+=insymbols.charAt(x)+' '+dict[insymbols.charAt(x)];
(x+1)%cols==0?dictTable+='\r\n':dictTable+=' ';
};
if(window.clipboardData){
//hash keyword and put results on clipboard
var cleartext = window.clipboardData.getData("Text");
var hashtext=""; //keyword hash
for(var x=0;x<cleartext.length;x++)hashtext+=dict[cleartex t.charAt(x)];
window.clipboardData.setData("Text",hashtext);
};
document.write("<p"+"re>");
document.write(dictTable);
document.write("</p"+"re>");

</script>

If you've copied a keyword, the hash of it, using this table, is already on the clipboard.
</body>
</html>

Visual Pattern Passwords

[spun]

I started using passwords designed around a visual pattern formed by keys on the keyboard: a line, a circle, a cross, whatever. I just remember the starting key and pattern. For instance, a Y-Circle password might be y-t-g-b-n-m-j-u, or y-h-j-k-i-8-7-6. I tend to pick a pattern and keep it for a year or so, moving the starting key around when I need to change the password.

Re:I sense a good social engineering technique her

[gnu-generation-one]

I sense a good social engineering technique here "Hello, I'm doing a study for the Cambridge University Computer Laboratory on passwords..."

Why bother? Just open a website.

You must be registered to continue.

And the Government uses....

[Audacious]

No passwords at all to register documents. Instead they use digital signatures. (As in actual GIF images of someone's signature.)

I keep asking them which is easier to change? Passwords or Signatures?

Their complaint: Passwords are insecure.
My comeback: Enforce better password security and have spot inspections of how passwords are kept secure.
Their comeback: Got the money to do that?

We haven't managed to get a lot farther than that.

english

[naiv]

i just dont make my passwords in english. i make them in obscure languages. or a mix of english and obscure languages (obscure = not languages that are widely known in the us, or languages that very few people know exist)

What is the necessary size of a random matrix?

Since I need to use several strong passwords and I have a terrible memory, I have been thinking of a solution to this real problem taking into account several things:

- It must produce strong passwords
- Must be easy to use (and remember)
- Must be (close?) to crack-proof by other than true experts.

Like some of /.tters I use a randomly-generated matrix of mumbers of 26x26, divided in four 13x13 blocks.

The great advantage of this system is that it allows strong passwords, and at the same time, while others cannot see other than gibberish, I can clearly see my passowrds in case I forget them. My ideal is that even if others had access to this card, they would not be able to profit from it due to its randomness and size.

I have a couple of questions to ./ters:
- Supposing all signs/letter/numbers are included, and their distribution is sufficiently even/random, how large needs the matrix to be in order to be so safe (even if fed as dictionary to a cracking programme) so a 9-digit passord would not be broken with a reasonable effort? (Not NSA effort-like, but CdC sort-of effort)

- What is the basic flaw of this system?

- Has anyone created a simple programme to generate these random strings in a matrix format, where one can chose the size of columns/rows?

Re:Freaking PDF files. Kb patern ....

[OldHawk777]

I agree with with "social engineering was the ultimate hack is a genius."

Kb patern, as in hjk78&*KJH 10 characters cap/small-alpha-numeric-spec ...
pick your patern and don't forget. I never repeat and never forget. Age and experience ... more or less 789&*(HJKLkjhl .... extream primes are fun.

OldHawk777

about damned time

[CAIMLAS]

3. The third folk belief is that random passwords are better than those based on mnemonic phrases. However, each appeared to be just as strong as the other. So this belief is debunked.

Its always confounded me as to why people have insisted on this folk belief. I, for one, have always insisted that mnemonic phrases are no less secure than random numbers. (Likewise for the memorability vs. single-phrase passwords.) I'm glad there's finally some proof so that I can get people to use sane passwords (neither easy to guess, nor difficult to remember).

how do you guys store your passwords?

[Sivaram_Velauthapill]

If you are spend too much time on the internet, like me :), you must have hundreads of passwords for all sorts of things including message boards, websites, e-mail accounts, etc. How do you guys store your passwords? Do you use any software tools?

Presently, I just keep them in a big file :( that is encrypted via gpg. Unfortunately it is sitting on my computer, which is connected to a network (i.e. internet) so it is very unsafe. Do you guys do anything to secure your passwords? Do you store it on a CD-ROM/floppy/whatever and keep it off the computer?

Just wondering what you guys do with your passwords... Oh, one more thing, I have a horrible memory so I HAVE to store them somewhere :(

Re:how do you guys store your passwords?

[Fortran+IV]

National brand 31-120 Handi Notes notepad, 60 Sheets / 3 x 5 Narrow Ruled White Paper . Sanford Expresso Extra Fine in green or blue or Bic SOFTFeel Medium in black.

Re:how do you guys store your passwords?

[Sivaram_Velauthapill]

:) Must be a fan of brand names huh?

I prefer digital (computer) storage rather than writing it down. I guess the main reason is because it is easier to access. When I need a password or something, I just open up the "text" document and then just copy&paste, or just read it off quickly. With a notepad, I have to look around for it and type everything out by hand.

On top of that, paper documents are harder to duplicate (although I guess you can just photocopy it regularly--say once a year). With a computer copy, you can just store it in multiple locations/computers/disks/whatever. I haven't done this yet but I might even be confident enough to store my gpg encrypted password file on the internet that is easily accessible by "knowledgeable" people (i.e. crackers, hackers, geeks, etc.) I'm too scared to do this now but that possibility is there if server-based systems become the norm in 10 years.

In addition, paper is more risky.

What if there is a fire*?

What if your friend/neighbour/agent steals your pad? I imagine you keep it close to your computer and what is some dude who is using your computer (say your neighbour's daughter) comes and takes it?

Now, most of these are worst case, 'evil rules', scenarios but those are the cases we must worry about. After all, if nothing bad ever happened, why even care about your passwords in the first place?

So, in summary, I think digital means is the way to go. Your technique is old-school :) and is less convenient. I'm just wondering how many people use the paper copy method and how many use the computer document method? hmm...

(* Sounds like an extreme situation but you have to consider these things. I mean, if your house burns down, which 1% of the houses probably do, then how are you going to get back the passwords? You CAN reconstitute it by calling up the bank to reset the password, contacting a website to change the password, etc but how long is this going to take? This goes for anything. For instance, if you keep records on paper (say your financial budget history over the last 5 years) then there is a possibly of losing it to fire)

Re:how do you guys store your passwords?

[sakshale]

I use a Lexar JumpDrive. It is a USB drive with an encryption package that allows me to carry my passwords with me.

I comes with Machintosh and Windows software. No linux support (rats).

Re:how do you guys store your passwords?

[Sivaram_Velauthapill]

That's pretty neat... but I hope you have it backed up too. I can imagine losing it easily, just like how people lose keychains.

Ok, real world time!

[Whatchamacallit]

Take if from someone whose been in IT for a long long time. User's are so sick of passwords they completely hate that they have to keep multiple passwords and then they hate it when the passwords expire.

The password police are constantly tightening the password rules. It used to be 90 days till a password expired. Now it's 60 days. It used to be 6 characters now it's 8 characters. You used to be able to re-use an old password, now you end up having to wait until it's 15 passwords old before you can re-use it. All passwords must contain 8 characters and include at least one number. You cannot set a password that is too similar to the old one. Many words have been outright banned from use as a password.

As an IT person with access to a lot of things, I have 28 different passwords just for work alone! There's about 8 mainframe ones, 4 PeopleSoft ones, 2 Windows Domain, etc., etc., etc. I actually set up an encrypted file on a USB pen drive that I unlock and reference when I need to see my password list. I have a couple of Mac's at home and I love the KeyChain solution!

The average user has about 5-10 passwords they have to worry about. User's write them down, come up with elaborate rotation schemes, etc. Mostly they just call the Help Desk repeatedly because they lock themselves out in the process of changing their password.

I am all for a smart-card or USB keychain along with a single sign-on system to everything. It would cut 600 calls to the help desk every month and it would make thousands of employee's very very happy.

I just write them down

Given that the security of my account is only as good as the security of the physical computer, I just keep a list of passwords next to the box which contains the hard disk. My reasoning is that if an intruder has access to the physical box, they can remove the hard disk and bypass all passwords, so I might as well apply the same level of security to my passwords as my hard disk.

PasswordSafe

[ronys]

A solution that works for many is PasswordSafe. This is a small application that keeps all passwords encrypted (using the Blowfish algorithm). Entries are presented either as a flat list or tree, and double-clicking an entry decrypts the password and copies it to the clipboard. The project originally came from Counterpane, Bruce Schneier's company, and is regarded as a useful and secure application.
PasswordSafe has random password generation that can be customized rather nicely.
Of course, the PasswordSafe database itself needs to protected by a passphrase...

[Disclaimer: I'm currently the project admin for PasswordSafe.]

Not new - old reference material

Did anyone notice that the source document has a last modified date in 2000 and that the document references material in 1999?

Everyone has their own way of tracking passwords;

[krinsh]

and everyone seems to have their own way of generating them. I know one person that uses license plate numbers he memorizes while on the highway. I use Cloak on my Palm to keep the 40 or so that I have to use to get my job done - yes, I said 40. I'm of the firm belief that none of these practices are secure at all. If it's a password; it will be broken eventually. Where I can use passphrases; I do. Even those can be broken given time. When they come up with reliable, inexpensive biometrics; and combine them with digital certificates or encryption keys (pick your flavor) - I think we'll be far more secure. I know that privacy can be an issue with biometrics but what if you encrypt the biometric data itself and don't make any of it personally identifiable except to its owner?

my own "quepasa"

I got sick of trying to remember hordes of passwords for every new site I registered with online ...

The result being that I spent some time and worked out a system for generating seemingly random passwords that are made by passing the username through a sort of encryption routine, one that I can work out in my head (in close-to-realtime). If I only have a single account with any online site, such as "GameSpy", then I use the site name as my username instead. This is to eliminate duplicate passwords being used on more than one site if I decide to use the same username in both places.

The effect of this system is that I only need to remember my username for any given site or system. I have gotten good with typing out these encrypted passwords and can output them at about half the speed I touch type, so it is ideal for my needs. I love that I can go back to a web site that I haven't visited in more than two years and simply type in my password without thinking about it. I am far more likely to mess up a username than the accompanying password.

Over the years I have gradually added in new modifications to the system for times I want greater security. Sort of a Level 2 Password, which I currently just use for any UNIX logins, which add in lots of special symbols. Also I have a third system which is just for UNIX systems that are not my own, as it wouldn't surprise me if someone was sniffing passwords remotely, and I certainly wouldn't want to be using the same password as my local machine.

Over the past 4 years I have only run into two problems with my password system:

1) Those fricken Windows machines that are set to force you to change your password every 2 weeks. On those systems my static password assignment broke. Usually I would just add something simple to the end of the password, such as "1!" for the first password, "2@" for the second, "3#" for the third, and so on. I just had to remember whatever it was that I was tacking on to the end of that particular machine, which was rather annoying as I had long since given up on "remembering" any of my passwords at all.

2) Web sites that limit the length of passwords to only a few characters. Many of my passwords would be 6 to 15 characters long, and far too many sites limit password length to 8 or 10 characters. This makes me wonder how crappy their site security must be -- clearly they are not just hashing/checksumming the passwords so it is probably just stored plain-text on their end. Otherwise I can't see why they would care about the length of the text.

I strongly recommend that all of you come up with a password generation system that you can do in your head, it really makes passwords a whole lot easier to deal with.

- raven morris