Slashdot Mirror

← Back to Stories (view on slashdot.org)

Multiword Passwords Secure Or Not?

Posted by Unknown on from the never-ending-passphrase dept.

Gaygirlie writes "An article over at Gizmag says: 'It's a meme that's been doing the rounds on the internet in recent years: multi-word pass-phrases are as secure as long strings of gibberish but with the added benefit of being easy to remember. But research from Cambridge University suggests that this may not be the case. Pass-phrases comprised of dictionary words may not be as vulnerable as individual passwords, but they may still succumb to dictionary attacks, the research finds.' I find this to be twisting of words and general consensus; of course any password whatsoever is going to be insecure against offline attack, and using common, popular words is going to make guessing the password much easier. But is this really an issue in a world where most attacks are done online? Should general populace still be coaxed into using randomly generated passwords?"

29 of 372 comments (clear)

  1. Obligatory xkcd by kc9jud · · Score: 5, Insightful

    http://xkcd.com/936/

    1. Re:Obligatory xkcd by Anonymous Coward · · Score: 4, Funny

      That's no match for my million monkeys with million type writers.

      We're upgrading to windows 3.11 later this year. You'll see. HAHAHAHAHAHAH

    2. Re:Obligatory xkcd by medv4380 · · Score: 5, Insightful

      Come on. All he did was post a link to a related xkcd comic. He didn't say anything about it being right or wrong. It's related, and funny. Would you rather have had someone do a standard first post troll instead?

    3. Re:Obligatory xkcd by Anonymous Coward · · Score: 5, Insightful

      No, you RTFA. They mention xkcd, but then ignore it and go on to test 2-word passwords that are not randomly chosen or unrelated words. Of course 2-word passphrases, where the words are related ("Chicago Bulls") or are a verb-noun pair ("Speedy Gonzalez" "Soft Kitty" "Oneiric Ocelot"), are weak against dictionary attacks. The xkcd approach is not.

    4. Re:Obligatory xkcd by Culture20 · · Score: 4, Informative

      There is something that always bothered me, how in the hell does the attacker knows if I am using words for my password or not? Second consider the following password where at one point was on my laptop: "A happy worker is mindless worker, so shut up and do your job!" I fail to see how this password is not safe just because I used actual words, wouldn't it take million of years(even with dictionary attack) to gess it ?

      It's more secure than 5#f^x902 in almost every way, except that it's easier to shoulder-surf in one try because it's a proper sentence. As long as they catch enough parts, they can guess the rest. Try adding purposefully misspelled words or bad grammar and it makes shoulder surfing hu23 sekane in the despondingly overstitch. Side effects of using passphrases like that include speaking random gibberish on occasion.

    5. Re:Obligatory xkcd by gstoddart · · Score: 5, Informative

      There is something that always bothered me, how in the hell does the attacker knows if I am using words for my password or not?

      They don't, but if they have the resources for a brute-force search, it's moot since in theory they'll just keep trying until they find it.

      Second consider the following password where at one point was on my laptop: "A happy worker is mindless worker, so shut up and do your job!" I fail to see how this password is not safe just because I used actual words, wouldn't it take million of years(even with dictionary attack) to gess it ?

      Well, possibly not. Think about a document with a password.

      If someone really wants to get into it, and is willing to invest the time and hardware, having a computer try millions and millions of permutations isn't as expensive as you might think, and it gets cheaper every year.

      Many forms of crypto have fallen over the years as the speed of computers has allowed what used to be an impossible task to be something which can be done in relatively short time. Even a couple of days or weeks of compute time would represent an absolutely vast amount of attempts.

      It's a damned find pass-phrase, but a computer is really good at doing an endless set of boring things. So, eventually even if it's a massive brute force attack, it could still arrive at the one that worked.

      However, this is the most telling part:

      The researchers found that film and book titles were effective in identifying pass-phrases in use - information readily available in list-form online suitable for dictionary-style attacks. The researchers used Wikipedia and IMDB lists, as well as slang phrases from Urban Dictionary. Researchers found users tended to favor simple two-word phrases common in natural language, though there is evidence that some users seek out seemingly-random pairings. The researchers also claim that there are "rapidly diminishing returns" for longer pass-phrases containing three or four words.

      So, if movie names and slang is what many people are using as their pass-phrases, a dictionary attack is a little easier.

      But, something like "cotillion squirrel hammer bollocks gouda inkwell" might be random enough that the sources people might use to try a dictionary attack won't be of any help. Whereas "The Dark Knight" or "Star Wars" might fall pretty quickly.

      --
      Lost at C:>. Found at C.
    6. Re:Obligatory xkcd by Geoffrey.landis · · Score: 5, Informative

      So you didn't bother to RTFA before posting that. They're trying to show that the easier to remember password may be easier to crack with a dictionary attack.

      And you didn't bother to read the xkcd before posting that. It showed with calculations that the commonly used "hard to remember" password has lower entropy than a much easier to remember multiword phrase. For reference, "higher entropy" means "harder to crack with a tailored brute force attack."

      In any case, though, the actual first thing you need to do is to make sure you never reuse a password on two different systems. And the xkcd for that is http://xkcd.com/792/

      --
      http://www.geoffreylandis.com
    7. Re:Obligatory xkcd by Anonymous Coward · · Score: 5, Informative

      > Say you have a 4 word password and you publish your 2048 word dictionary on the internet, entitled "come at me". Is that more or less secure than a random 8 character password(upper, lower, numbers, 40 symbols)

      > 4^2048 vs 8^102

      You mean 2048^4 vs 102^8.

      2048^4 = 1.7592186 * 10^13
      102^8 = 1.17165938 * 10^16

      With only a 2048 word dictionary to choose from this is less secure than a random 8 character password.

    8. Re:Obligatory xkcd by thsths · · Score: 4, Insightful

      I agree - and I especially hate draconian password rules, especially when they are different for every site. Some need at least 8 letters, but then some limit you to 8 or 10 at most. Some want upper case and letters, other's don't. Some don't allow special characters such as '.

      And the worst part: if you have a system to generate cryptographically strong passwords, quite a few sites still reject them. The worst site that I would allowed only 12 characters, but required at least 2 digits, 2 special characters, and 2 upper case letters.

      I still think that words are the way to go. You just have to make sure that they are reasonably random and not too common. "honeyiamhome" is not going to be difficult to guess if you have billions of attempts. The problem of entropy still stands.

    9. Re:Obligatory xkcd by second_coming · · Score: 4, Informative

      according to https://www.grc.com/haystack.htm that's one hell of a password :)

    10. Re:Obligatory xkcd by tigre · · Score: 5, Insightful

      Aren't those exponents reversed?

      2048^4 vs 102^8?
      1.7 * 10^13 vs 1.1 * 10^16?

      So completely random is still better in this sense. Just hard to remember and maybe hard to input. xkcd compared "uncommon word + common substitutions + a couple random characters".

    11. Re:Obligatory xkcd by micheas · · Score: 5, Interesting

      Pulling one example, I was asked to see if I could recover the password on pdf to allow editing. IIRC, the cypher was 256 bit AES. When trying to find the password to edit a pdf, my really ancient dual core athlon64 took under 2 minutes to try every unique word in the OED.

      The password of the pdf (which was sanfrancisco2) took me about 15 minutes to find using standard password dictionaries. Theoretically, a 13 character password with a number in it should take an insanely long time to crack, reality was well under an hour.

      --
      Work bio at MMWD
    12. Re:Obligatory xkcd by TheRaven64 · · Score: 4, Insightful

      It assumes that the reader tries a dictionary, but it also assumes that words in the dictionary are equally probable. An English dictionary contains about 600,000 words. A typical English speaker uses 2,000 different words over the course of any given week and knows about 20,000. Depending on which of these numbers you use as the search space, the entropy is a lot larger. For example, XKCD's metric would regard 'Natalie Portman is superlatively callipygian' and 'I like to eat apples' as having the same entropy, but the former is probably a lot harder to find with a dictionary attack, because a list of 2,000 common words is not likely to contain callipygian and may not contain superlatively, while it will contain all of the words from the second example.

      --
      I am TheRaven on Soylent News
    13. Re:Obligatory xkcd by buchner.johannes · · Score: 4, Informative

      It assumes that the reader tries a dictionary, but it also assumes that words in the dictionary are equally probable. An English dictionary contains about 600,000 words. A typical English speaker uses 2,000 different words over the course of any given week and knows about 20,000. Depending on which of these numbers you use as the search space, the entropy is a lot larger. For example, XKCD's metric would regard 'Natalie Portman is superlatively callipygian' and 'I like to eat apples' as having the same entropy, but the former is probably a lot harder to find with a dictionary attack, because a list of 2,000 common words is not likely to contain callipygian and may not contain superlatively, while it will contain all of the words from the second example.

      Read it again. He assumes 16 bits of entropy for 'Troubadour', an uncommon word, and only 11 bits for the four common words. This *is* a lot, as you say, as bits (of entropy) are a log scale though, it doesn't look as impressive. The combination is what makes it so powerful (11^4 vs 16).

      --
      NB: The message above might reflect my opinion right now, but not necessarily tomorrow or next year.
    14. Re:Obligatory xkcd by realityimpaired · · Score: 5, Informative

      People are under the mistaken impression that would-be hackers waste their time trying to brute force passwords. They don't. They either exploit design vulnerabilities (in which case your password doesn't matter), or they try a little social engineering to get your password. The one thing the movie Hackers got right was the scene when Dade called up the night security desk at one of the places he was trying to hack, pretending to be an employee in a panic, and got him to read the phone number off the modem so he could dial in. That's how it really does work... you come up with a ruse, and convince somebody who doesn't know better to give up sensitive information that you can use to gain access to the system.

      And that's where passphrases have a huge advantage: they are easy enough to remember that they don't need to be written down.

    15. Re:Obligatory xkcd by isorox · · Score: 4, Insightful

      It's more secure than 5#f^x902 in almost every way, except that it's easier to shoulder-surf in one try because it's a proper sentence.

      Chances are "5#f^x902" will be on a postit on the monitor

    16. Re:Obligatory xkcd by DamnStupidElf · · Score: 4, Insightful

      Good luck with about half of the websites out there that have a ridiculously short limit on passwords. Some are as low as 8 or 6 (!) characters. There's no way to consistently use secure passphrases with all the shoddy web development out there. The solution is to use a password manager and generate secure passwords as long as the site will accept and protect them all with a secure master passphrase.

    17. Re:Obligatory xkcd by 93+Escort+Wagon · · Score: 5, Funny

      IA typical English speaker uses 2,000 different words over the course of any given week and knows about 20,000.

      Verily and forsooth! Thou dost assume what thou shouldst not. Amend thy ways, miscreant, lest thou find thyself at the receiving end of my bludgeon!

      --
      #DeleteChrome
  2. Of course they are secure by Bender+Unit+22 · · Score: 5, Funny

    I find that passwords like "Linuxrox4ever" are very secure. havn't had a problem with that one yet.

  3. [Nelson] HAHA! by Bender+Unit+22 · · Score: 5, Funny

    lol omg. it worked.

  4. Secure, how times do I get to try? by Shivetya · · Score: 4, Insightful

    How many attempts are these supposed sites allowing? If someone has a one in a million chance to determine my password how much of a threat is that to me if the site that requires the password only allows a few attempts before it locks the account?

    I work on a system with ten character passwords, not case sensitive but numbers can be used, yet I don't worry about someone cracking the system. Its not like they are going to have unrestricted access to try and multiple failures lock accounts.

    I do like multiple word passwords as it tends to not lead to people using little yellow stickies near their desk to record their passwords or keep them as reminders in their email.

    --
    * Winners compare their achievements to their goals, losers compare theirs to that of others.
  5. Very specific conditions by Dixie_Flatline · · Score: 5, Insightful

    The passphrase system they studied wouldn't allow duplicate passphrases. So if you picked one that was already in use, it would tell you so.

    The problem isn't that the passphrase is insecure, the problem is that the system itself is giving you information about what's inside it. Doesn't it seem obvious that any security system that relies on secret data that gives up information about the secret data is insecure?

    Then they did an analysis on passphrases that use english words with the same frequency as in standard English. So the word 'betwixt' was probably pretty low down on the list, and 'material' was probably higher. That also seems unreasonable. Just because you want a memorable password/passphrase, it doesn't mean that you have to use small, ultra-common words.

    This study has little merit in declaring that passphrases are insecure. (It does have merit in letting us know that obvious security problems are, in fact, obvious security problems.)

  6. Take into account human nature by MetalliQaZ · · Score: 5, Insightful

    As mentioned, a lot of stock is put into secure passwords, when the reality of computer usage makes all the effort meaningless.

    Lets look at a normal user, Joe. Joe has many corporate logins at his job. His company has a password strength policy, so Joe has ended up with this password: Jason5 (Jason is his youngest son). The last password was Jason4, then Jason3, etc. Some system require more powerful passwords, so he uses _Jason$5. I have met dozens of Joe's IRL.

    Lets look at Lucy. Lucy knows that a good password only has to be easy to remember and hard to brute force. "Simple Man" is one of her favorite songs. Especially these lyrics:

    "Boy, don't you worry you'll find yourself
    Follow your heart and nothing else
    And you can do this, oh baby, if you try
    All that I want for you my son is to be satisfied"

    She selects this password: allthatiwantforyoumysonistobesatisfied
    She'll never forget it, and I won't be cracked by ANYONE. Governments who want her password could crack it, but they would probably just put her in jail until she gave it up.

    Then, Lucy reads the article linked above and starts to doubt the security of her password. She is wrong, her password is WAY better than Joe's.

    Both accounts end up getting compromised. The company had been storing passwords in plain text and was hacked via a 2-year old SQL injection vuln. So much for all that bullcrap.

    -d

    --
    "Here Lies Philip J. Fry, named for his uncle, to carry on his spirit"
  7. Re:Are passwords really that hard to remember? by cvtan · · Score: 4, Funny

    My granddaughter thinks it's too hard to defrost a frozen bagel before eating it. You want the youth of America to practice typing passwords? Ha!

    --
    Sorry, but gray text on gray background is making my eyes bleed.
  8. Like far too many researchers by Sycraft-fu · · Score: 4, Informative

    They assume they get ideal circumstances, ie as many attempts as they want. As such their research is basically fucking worthless. The only time such a situation applies is if you have, say, encrypted data and an adversary has gotten that data. They can then try to decrypt it until the end of time and you can't change the password.

    That doesn't do shit for remote login. No system is so accommodating to let you just try and try. Even if they don't do permanent lockouts, they'll lock you out for awhile. Like our domain, you get 5 attempts and then it locks the account for 30 minutes. So you can get a whopping 240 attempts per day (presuming we don't notice and shut it down). Gonna take a LONG time to cover the password spaces they are talking about, LONG time.

    This also assumes that you know that someone is using a multi-word phrase, and that you know they aren't playing games with number substitution, caps, and so on. This is useful maybe in an intelligence agency type situation, where you can survey your target and you can learn about the kind of password they use, even if you can't find out the password itself, and restrict the search space. However in terms of randomly hacking things remotely, nope, not useful. There are too many possibilities for what the person could use and multi-word phrase is only one of them. You could try every single one of to 10 words, only to then discover your target doesn't use that, and has a simple password like password123 that wasn't in your search space.

  9. My method by Anonymous Coward · · Score: 5, Funny

    Fuck it I say. I just always use letmein for all my passwords. Easy to remember and so easy to hack into nobody's going to waste time thinking there's anything valuable protected by it.

    I call it security through insecurity.

  10. Re:Poetry by HCase · · Score: 5, Funny

    There was a ship that tried using Vogon poetry for their password locks once. Unfortunately, after valiantly functioning for 3 weeks, the login daemon it decided it could no longer take it and convinced the ship's navigation system to fly into a nearby star. Further use of password verification system was banned several years later, after an intergalatic agreement was reach that said requiring people to remember Vogon poetry was cruel and inhumane.

  11. my strange variation by way2trivial · · Score: 4, Interesting

    For myself, I have three phrase+number complex passwords which I use, one for financial sites, (online banking, amazon, anywhere I shop & my plastic is stored) one for places I expect to use regularly (such as slashdot) and one for trash sites where I gotta register for whatever it is I want, but don't likely expect to be back. The variant thing is, I have my own domain with a catchall address (similar to gmails + system) and for all domains I use the domain name plus my @domain.com

    assuming the method show in the cartoon was automated checking of the password email + combo-- it'll fail because I wouldn't use the same email address at ANY website.

    --
    every day http://en.wikipedia.org/wiki/Special:Random
  12. Re:UGH! by olliM · · Score: 4, Insightful

    I'm not sure if you are being sarcastic or not... That's a terrible way to create passwords: the character replacements are easy to guess and the method is so common that they are going to be included in the dictionary.

    The point of using dictionary words in pass phrases is to think of them as letters of a password. A password with 8 random letters is much more secure than a random 8 letter word. Similarly 8 random words are much more secure than a random phrase with 8 words.