Deloitte: Use a Longer Password In 2013. Seriously.

clustro writes "Deloitte predicts that 8-character passwords will become insecure in 2013. Humans have trouble remembering passwords with more than seven characters, and it is difficult to enter long, complex passwords into mobile devices. Users have not adapted to increased computing power available to crackers, and continue to use bad practices such as using common and short passwords, and re-using passwords across multiple websites. A recent study showed that using the 10000 most common passwords would have cracked >98% of 6 million user accounts. All of these problems have the potential for a huge security hazard. Password vaults are likely to become more widely used out of necessity. Multifactor authentication strategies, such as phone texts, iris scans, and dongles are also likely to become more widespread, especially by banks."

I Got It!

[pmcizhere]

correcthorsebatterystaple. It's a perfectly long, easy to remember password. Just, nobody use it other than me, ok?

Re:I Got It!

awful password, only 4 symbols long

Re:I Got It!

[pmcizhere]

awful password, only 4 symbols long

Not sure if serious...See http://xkcd.com/936/

Re:I Got It!

[AliasMarlowe]

I currently use "11111111", and Deloitte says I should use at least 9 characters?
Easy peasy, I'll buy some time by making it 12 characters long: "111111111111".

Re:I Got It!

[wallsg]

correcthorsebatterystaple. It's a perfectly long, easy to remember password. Just, nobody use it other than me, ok?

Ha! Mine's even better:

c0rrecthorsebatterystaple

Re:I Got It!

[Qzukk]

Oh yeah? Well mine's Korect hors battrey stappl

Re:I Got It!

[Trpajzlix]

yep xkcd solves it all, seriously why use the special chars? If somebody needs to see some data: http://www.lockdown.co.uk/?pg=combi&s=articles#Classes 12 lower case alpha > 8 mixed alpha + numbers + spec chars

Re:I Got It!

[LoRdTAW]

A better question would be, what system would allow 1000 password guesses per second to be authenticated? Most systems lock you out after 3 to 5 unsuccessful attempts. And I would hope that smart developers would put a time delay between how fast a user can reattempt to authenticate. So a computer sending authentication attempts in less than one second would be immediately blacklisted as a automated attack. Inserting a second or two delay between attempts would guarantee that. Assuming a computer could brute force a password by trying all possible strings, what system could that possibly be effective against? I can see that it could be useful against an encrypted file but an online banking site or other eCommerce site sounds impractical. anyone care to elaborate?

Re:I Got It!

[BlueParrot]

My preference is to mix a few languages and technical terms.

nekozuki catbus ibuprofen shutzpa

Even if you know how I generate these passphrases the number of combinations is staggering.
Since the majority of language can use latin script you easily have a million or more possibilities
for each word, giving more than 10^24 potential combinations, and that does not take into consideration
that I am more than happy to include things like "catbus", which is not a real english word.

Re:I Got It!

[OzPeter]

A better question would be, what system would allow 1000 password guesses per second to be authenticated?

Irrelevant, as the cracking will happen offline after the bad guys have stolen your PW DB by exploiting other weaknesses in your system

Re:I Got It!

[Archangel+Michael]

The fastest typist can type 100 - 150 WPM, so lets use that metric for designing systems requiring "human" input, like passwords. Artificially limiting brute force attacks.

Re:I Got It!

[Beardo+the+Bearded]

d0G...................

That'll take a couple of years to figure out.

Re:I Got It!

[alvinrod]

It's bad because much like you can have a computer program randomly combine letters, numbers, and symbols to generate a password, you can simply have the same program combine dictionary words together. There are hundreds of thousands of words in the English language, which would make the number of combinations quite large, but most of those words aren't commonly used so you could ignore them. If you had people generate a four word pass phrase, it's quite likely that most of them would contain only words from a relatively small subset of the English language.

When I use pass-phrases, I make sure to include some capital letters, numbers, and symbols. This makes it almost impossible to brute force. So for example, 2Correcthorse4batteryStapple! would be a much more secure password, that really isn't any more difficult to remember. It's only using 7 symbols, which makes it fairly easy to remember. Once you type it enough, muscle memory will allow you to enter it without too much issue.

You could make it even more complex by using slang words, words from other languages, proper nouns, or other such words.

Re:I Got It!

[AndrewStephens]

True, but nobody tries breaking into a system by logging in ten thousand times a second to a single account. The recent well-publicised break-ins resulted from the hashed password file being publicly available, either stolen through a vulnerability or maliciously leaked. If the attackers have the hashed passwords they can try them at a rate of millions or billions of attempts per second for as long as they want.

Re:I Got It!

[Beardo+the+Bearded]

I'd just double the time it takes for each try.

First bad password: 1 second to retry.
Second bad password: 2 seconds to retry.
Third bad password: 4 seconds to retry.
Fourth bad password: 8 seconds to retry.
Fifth bad password: 16 seconds to retry.

You get the idea. It'll end brute-force and only mildly inconvenience clueless users with fat fingers.

Re:I Got It!

there's even a generator for such passphrases.

http://passphra.se

Re:I Got It!

[cheater512]

I'd bet that 99% of all login systems on the internet not having any realistic brute force blocks.
I believe that is a safe bet.

Yes more security conscious places such as banks *should* have limits.
That doesn't affect most of the internet however.

Re:I Got It!

[Rob+the+Bold]

A better question would be, what system would allow 1000 password guesses per second to be authenticated?

Irrelevant, as the cracking will happen offline after the bad guys have stolen your PW DB by exploiting other weaknesses in your system

Which makes things even worse, since to protect your account, you're depending online service "X" to protect and secure their tables of passwords and account names with the best practices available (if convenient). And to make things even worse than that, those guys are counting on the general public to create more entropic and cryptographically secure passwords to secure their authentication data!

Re:I Got It!

[omnichad]

Sure - as long as you don't mind being locked out of your account as soon as you create it on web sites that don't properly handle non-ascii characters.

Re:I Got It!

[MaerD]

Yeah, but it's first on the list to get checked now.. So I've changed mine to "Neque porro quisquam est qui dolorem ipsum quia dolor sit amet, consectetur, adipisci velit"

except most systems don't like it, So I'm stuck with "LoremIpsumDolor"

Re:I Got It!

[vux984]

4 symbols chosen randomly from a dictionary of ~200,000 by a computer not by you because you won't choose words randomly.

that makes it a 1 in 200000^4 to guess... or 1.6 x 10^21

compare that to an 8 character password also randomly generated. Passwords which are drawn from a set of around 90 symbols. (50 letters including upper and lower case, 10 digits, and ~30 symbols)

that's 90^8 or a measly 4.3 x10^15

a 4 word randomly chosen password from a dictionary is by far the better password, and much easier to remember too.

An 11 character password of completely random gibberish is about equivalent, to 4 random dictionary words. Good luck remembering somthing like `oN{/QM9PKb

which is no better than:

scald obsolescent period postpone

Re:I Got It!

I'd just double the time it takes for each try.

First bad password: 1 second to retry.
Second bad password: 2 seconds to retry.
Third bad password: 4 seconds to retry.
Fourth bad password: 8 seconds to retry.
Fifth bad password: 16 seconds to retry.

You get the idea. It'll end brute-force and only mildly inconvenience clueless users with fat fingers.

See above comments but you seriously have no idea how hash tables work, they aren't attempting authentication to the website. They have your DB authentication table. Then they have all the time they want, you log in code is useless here.

Re:I Got It!

[kiddygrinder]

4 symbols, about 180k common words in the english language = 1,049,760,000,000,000,000,000 unique passwords. this thing can do 350 billion password attempts a second, and unless my math is wrong (which it most likely is) it would take 95 years to try all of those combinations.

Re:I Got It!

I used to do this to the college lab computers (running NT 4 at the time). I'd walk in with a floppy, reboot, copy the SAM file to disk, return to the dorms and crack away. Typically, I'd have the entire password file cracked in 10-12 hours. The machine doing the cracking was a P3 500Mhz. When I did the lab computers, I was shocked to find the administrator password on all the machines was the 5-character room number of the campus's IT department. And, it took about all of 10 seconds to crack. Getting password file without a bootable floppy proved a little harder, but not much. All you had to was replace the login screen's screen saver with a copy of cmd.exe, and be patient. Then, a little utility to dump the hashed password from memory. (For a long while, the login "screen saver" ran as SYSTEM). This also worked on Windows 2000 & XP which had an extra layer of encryption over the SAM.

Re:I Got It!

[JWW]

What if you have a multi user system? They can try various passwords against the same account from many many sessions and not have to worry at all about your retry timeouts.

Re:I Got It!

Shit, you can even limit it to 100 tries per second and it would take 66 years to crack an 8 character password that was nothing but capital letters.

Re:I Got It!

[rsborg]

A better question would be, what system would allow 1000 password guesses per second to be authenticated?

Irrelevant, as the cracking will happen offline after the bad guys have stolen your PW DB by exploiting other weaknesses in your system

So if a key-stretched[1] implementation results in only enhanced keys (ie, bcrypted for 65k hashing operations) in the database, would that be enough to rely on app-level password valiation delays and lockouts?

[1] http://en.wikipedia.org/wiki/Key_stretching

Re:I Got It!

[steelfood]

Salt goes well with hashes.

Re:I Got It!

[eksith]

I'd venture some banks don't bother either. Credit Unions especially are notorious for having backwards technology, software, practices, you name it.

Re:I Got It!

[interkin3tic]

Naive question, does anyone still brute force attack passwords? Are there websites out there that will allow you to try more than, say ten times before locking your account? If you're talking about the difference between 10 million different passwords and 4 billion, but facebook will lock down your account after 20 tries, there's not really a significant difference between the two. It seems like my accounts are always being locked down due to trying the wrong password from trying to "brute force" using every password I remember.

Re:I Got It!

[mic0e]

That would be security through obscurity. Your password has very little entropy, it can for example be compressed to 1'd0G'18'.', which has 11 characters (and I tell you, the actual entropy is a lot lower). You are assuming that crackers would bever get the idea to test for passwords in this style. A cracker which tests passwords strictly ordered by the amount of entropy they contain, i.e. an optimal cracker, would crack this password pretty easily. I'm pretty sure you are underestimating the amount of intelligence in password crackers.

Re:I Got It!

[dgatwood]

Your definition of "common words" is off by about an order of magnitude from reality, though. A typical person only uses about 10,000–25,000 words on a regular basis, depending on their level of education.

Even assuming the upper end of that, nearly all people would typically choose from about 3 * 10^17 possibilities, which at 350 billion attempts per second, would take only around ten days to crack. On the lower end, a sizable percentage of people would choose from about 1 * 10^16, which would take about eight hours to crack.

Re:I Got It!

[vux984]

If you had people generate a four word pass phrase, it's quite likely that most of them would contain only words from a relatively small subset of the English language.

Which is why the computer would generate the phrase.

2Correcthorse4batteryStapple!

Varying capitalization, and optionally separating the 4 words with 3 character symbols adds: 2*2*2*2*90*90*90*5*4*3 possible permutations: 6.9e8

Now that's not bad, and it definitely is more secure than the plain 4 words. BUT:

Assuming 200,000 words in the dictionary. Simply adding 3 more words to the end gives you 8e15 additional permutations.

8e15 is a LOT bigger than 6.9e8

And now we are at 7 symbols either way.

Remembering 3 more words is both easier and ridiculously more secure too.

Peppering a passphrase with difficult to remember symbols is missing the point. If you want more security, just add another random word or two. Either method increases its brute force complexity, but perhaps counterintuitively, adding a few words is far more secure than mangling the pass phrase with a few symbols.

Re:I Got It!

[bjourne]

Possibly so, but would you take that chance? Brute-forcing passwords for some account on some site is pretty obviously illegal and it's hard not to leave a traceable trail after yourself if you have to send thousands of http requests to a single site.

Re:I Got It!

[tattood]

You could also use a password manager, which creates a random, unique password for every site for you. You have to remember one master password to use the program, and it automatically enters the username and password for you when you log into a website.

Unless your computer is hacked and the master database stolen, it's a pretty decent way to use unique passwords.

Re:I Got It!

[kelemvor4]

Naive question, does anyone still brute force attack passwords? Are there websites out there that will allow you to try more than, say ten times before locking your account? If you're talking about the difference between 10 million different passwords and 4 billion, but facebook will lock down your account after 20 tries, there's not really a significant difference between the two. It seems like my accounts are always being locked down due to trying the wrong password from trying to "brute force" using every password I remember.

I've often wondered the same thing, and for the same reasons. I'm thinking brute force techniques would only be good against something like encrypted data that the attacker already has but needs the key in order to decrypt. Passwords are out of hand, and it seems to me like password managers are a bad idea from a security perspective. Things like iris recognition sound like a great idea, except the world can't even seem to get simple biometric readers like those on my kids' laptops to work reliably.

Re:I Got It!

[dcollins]

"2Correcthorse4batteryStapple! would be a much more secure password, that really isn't any more difficult to remember."

For most people, this is false. Among the things I teach are remedial community college arithmetic & algebra classes, as taken by about half the nation's college students, and frankly, they can't remember dick. For example: About 1/2 of our arithmetic students can never remember the one-digit multiplication table; about 1/2 of our algebra students can never remember operations on negatives.

Yes, systems allowing for very long passphrases are necessary and desperately needed, and it's shameful to not have them yet. But you're entirely missing the point to argue that we need to go back and insert more symbolic gobbledygook into them. Whatever you think you're gaining from that: just make the passphrase longer by what it takes to get the same information content, and then it's still secure and memorable to non-technical people.

Re:I Got It!

[Cramer]

ALL passwords are security through obscurity. The whole point of the password is that no one else knows what it is, or what it looks like. To that end, his password is perfectly secure... until a hacker knows it's mostly periods. That's not something any random hacker is going to know, or even try.

Re:I Got It!

[buchner.johannes]

Use a 2 for extra security. Computers can only find ones and zeros.

Re:I Got It!

Password too long, please enter 8-12 characters.

Re:I Got It!

[dwywit]

Wouldn't some deliberate misspellings be sufficient for most of us? Such as "stapple" above? Try "Korrekt", and/or "batery".
 
I don't know how password crackers work, but aren't they going to give up after hitting my bank account more than a few dozen/hundred tries, and move on to the next?

Re:I Got It!

[kelemvor4]

A better question would be, what system would allow 1000 password guesses per second to be authenticated?

Irrelevant, as the cracking will happen offline after the bad guys have stolen your PW DB by exploiting other weaknesses in your system

If they've already compromised the systems and have access to the resources on it, why would they want passwords? In hopes you've reused that password somewhere else?

Re:I Got It!

[AmiMoJo]

We need to stop trying to remember multiple passwords entirely. Most browsers already remember passwords for you, with only a single master one needing to be committed to memory. The problem is they tend not to share the information between PCs and other devices.

An NFC enabled phone would be ideal. Store passwords on the phone, and when they need to be typed in beam them to whatever PC or device you are using via NFC. That way there is no need to trust the device receiving the password to protect your password database (or the credentials needed to access/decrypt it) and everything is stored in one place that you always have access to.

Re:I Got It!

[zieroh]

I'd take that bet in a heartbeat.

Re:I Got It!

[hahn]

Except then you can only access your password protected websites from one device.

Re:I Got It!

[j-turkey]

Try "password1". It's uncommon, and nobody will ever guess it.

Re:I Got It!

[tibit]

This is all fine and dandy, but really is rubbish. When you have an unknown password to crack, you don't know how it's composed. Sure you can try the most likely pass-phrases and pass-words, and this will weed out the obvious low hanging fruit. Yet it doesn't take much to make you keep on guessing for millenia to come. Who the heck says the password should be only words. Throw a few extra symbols in there, and your guessing strategy suddenly is no better than an exhaustive search done on symbols. I like random passwords like co7i2@ao)p1, with a word or two thrown in there -- usually obscure words from relatively obscure languages. That makes them long, and from the point of view of any sort of a search strategy, equivalent to being completely random. Even the information I've just provided to you doesn't make it any easier to guess those passwords.

Re:I Got It!

[DarwinSurvivor]

That's why you have a COMPUTER which knows ALL 180k words generate the password FOR you!

Re:I Got It!

[zieroh]

It's a function of the account. The failed attempt count is updated on each attempt, so each session gets the same behavior.

Re:I Got It!

[DarwinSurvivor]

And even longer for him to remember!

Re:I Got It!

[Mike+Frett]

Most of the Porn sites block you after a few attempts by blacklisting your IP. I was told, some time ago, the crackers are getting the password lists from the server; I only know about Brute-force and the large Pass lists used. There use to be old programs like Golden Eye and Bugs Bunny they would use for the Brute forcing.

Also there are the premade pages you can use to direct people to in an attempt that they will enter in their info and send it to you, Phishing I believe it's called. I really don't keep up-to-date of all the new techniques they use, but it's quite a few now.

Re:I Got It!

[SethJohnson]

Beardo, This is a great mechanism for me to abuse to lock all your users out of the system.

Great thinking, there.

Seth

Re:I Got It!

[tibit]

You mean "o31pe41na59lsoso26onagain54" is easy to find? You on crack or something? Protip: passphrases can be sprinkled with "line noise". Someone may use prime number sequence to space line noise, and digits of pi for line noise proper. Someone else may use, well, something else. You see where it's going. Good luck with figuring it out.

Re:I Got It!

[vux984]

Wouldn't some deliberate misspellings be sufficient for most of us? Such as "stapple" above? Try "Korrekt", and/or "batery".

Deliberate misspellings are great; in the sense that they dramatically increase the dictionary size.

But then you have to remember the specific misspellings you made. And the attacker would simply compensate by including all the common mispellings, leetspeak, lolcat spelling, etc to his attack dictionary:

so instead of just password:
he'll also try p4assw0rd, p455w0rd, ... passwerd, passwurd...

This adds' complexity and therefore adds security, but its harder to remember exactly what leetspeak or whatever you applied and exactly how you applied than it is to just add another word or two.

As always, if you want more security its generally easier to just add more words.

I don't know how password crackers work, but aren't they going to give up after hitting my bank account more than a few dozen/hundred tries, and move on to the next?

Typically they find a weakly protected password database online somewhere some random blog or forum or maybe something little higher profile like the Playstation network ... , they download it, and then attack it directly. Allowing them to try millions, even billions of attacks on all and any account in it using clusters of computers, GPUs, and whatever else they have at their disposal for parallel computing.

Then once they find a password; they'll take that and the user name / email address and shotgun it into any other site they can find to see if it works there too. Did you use the same password for Playstation as you did for your bank? Ooops. They're in.

If you were clever and did something like my psn password is psn_whatever then that's a bit of a defense, but if they happen to notice they'll just fix it up... psn_xyz is for PSN... so try bmo_xyz for Bank of Montreal, hsbc_xyz for HSBC...

The point is they rarely actually hit the bank's online web portal more than a few times. The big attacks take place offline on stolen databases.

Re:I Got It!

[ShanghaiBill]

I'd bet that 99% of all login systems on the internet not having any realistic brute force blocks ...Yes more security conscious places such as banks *should* have limits.

You can break into the banks too. Just find the sites without the brute force blocks, find an id/pw that works, and then try the same id/pw at the bank. Most people (including my wife) will use an id/pw at some game site run by a teenager, and then use the exact same id/pw at financial institutions. Security is only as good as the weakest link.

Re:I Got It!

[Ziggitz]

You're still talking about sending an http request per guess. If there is no parallelisation then that's waiting at least 100ms there and back per guess, if you got an optimistic 10 guesses per second, you're still looking at around a year to crack a moderately secure password. You should not be giving your data to anyone that can't detect that and most physical media encryption should have enough built in delay to prevent more than a few guesses per second to prevent timely brute force attacks.

Re:I Got It!

[tibit]

adding a few words is far more secure than mangling the pass phrase with a few symbols

Nope. Mangling it with symbols moves it into the symbol-by-symbol exhaustive search category -- the fact that there are words there becomes somewhat irrelevant. Sure you assume that symbol frequencies are shaped in a certain way, so you can still do a tad better than fully exhaustive search where you start with all zeroes and go up, but it's really no worse than a similarly long bunch of random symbols with a certain distribution of individual symbols and maybe symbol pairs.

Re:I Got It!

[SethJohnson]

Not that http requests are how these passwords are being cracked, but to entertain you and the others who think so, I'll throw this word out to you:

botnet

Seth

Re:I Got It!

[tibit]

Among the things I teach are remedial community college arithmetic & algebra classes, as taken by about half the nation's college students, and frankly, they can't remember dick. For example: About 1/2 of our arithmetic students can never remember the one-digit multiplication table; about 1/2 of our algebra students can never remember operations on negatives.

It's not because they can't remember dick, it's simply because that kind of stuff needs to be a foregone conclusion halfway before entering college, at the latest. The remembering part is easy when you're 8. When you're 18, you can remember stuff with context much better, and arbitrary line noise like multiplication tables are relatively off the table at that point. There is a small part of the population that can memorize line noise even when they are 30, but so what.

Alas, I can't understand why anyone who doesn't know basics such as simple arithmetic even pretends like belonging in college. They should be flipping burgers or something, and praying that the cash registers work.

Re:I Got It!

[tibit]

Many of my passwords that I do remember are line noise, some newer ones are line noise with random words chosen from a bunch of languages. As far as I'm concerned, they're all uncrackable.

Re:I Got It!

[interkin3tic]

Er... why do your kids' laptops have biometric readers on them? Are they that concerned the school bully is going to steal their homework?

Re:I Got It!

[tattood]

You can sync the same database to as many devices as you want using Dropbox. If you're too paranoid to use Dropbox, you can copy the master database manually between devices.

Re:I Got It!

[vux984]

An NFC enabled phone would be ideal. Store passwords on the phone.

Meanwhile police around the country are facing an epidemic of cell phone thefts.

everything is stored in one place that you always have access to.

Well, you have access to it unless it was stolen.

Or you dropped and it now its broken.
Or the battery is dead.
Or ...

Re:I Got It!

[gutnor]

BTW, that makes the original XKCD comic irrelevant. You would need 5 or 6 words instead of 4 if you need to defeat a system that can process several order of magnitude faster than 1000/s.

The password you choose is just a security against somebody that specifically targets *you* and I would say that your weakest link in that scenario is probably your mobile phone. Other non-targeted attack will use vulnerabilities or what not, YOUR password strength is a small element of the problem. The backend system can fuck up in a number of ways like simply not encrypting/hashing the password at all. Obviously it is still a good advice to choose a strong password, but that's no silver bullet either.

Re:I Got It!

[reboot246]

Why not take a clue from your signature and use Latin words? Or mix in other languages? Would spelling some of the words backwards help?

Would this phrase be in an attacker's dictionary?
bonitas non est pessimis esse meliorem
bonitasnonestpessimisessemeliorem
(It is not goodness to be better than the worst.)

Re:I Got It!

[radiumsoup]

I would give you all 15 mod points I just spent if I could. I get this all too often - and I especially hate the sites that PROHIBIT the use of non-alphanumeric characters.

Re:I Got It!

[anubi]

What if you used an image as a password?

Or hash a 1 Kilobit key from that image?

If you took the image yourself with your own camera, you can be pretty sure you are the only one in the world who has an exact digital copy of it.

Re:I Got It!

[DarkOx]

The answer is yes but its not the guy you think doing it. We still live in a largely single factor authentication world. Since you used facebook as an example I will too, but hopefully you can see how and why similar issues could come up in other organizations.

You correct in that there are very few online brute force attacks, because as you say effective controls exist timeout intervals, lock outs etc on most systems. Somewhere there this is a file or table with password hashes, ideally salted. This is vulnerable to brute force because you don't use the 'system' to try and log in you build your own hash generator that works through a word list generating hashes and seeing if any match. The size of a good word list, say the Oxford dictionary, with each word also spelled with some typical numeric substitutions and followed by various arrangements of !, 4theWin! etc is pretty large. When you then multiply that out by the number of possible salt values you end up with a word + set of hashes that is many TB in size. Its to large to search efficiently with out special purpose built systems. This is known as a rainbow table; it used be popular but CPUs and GPUs have gotten so much faster they make sense in fewer cases.

Because searching the rainbow table takes so long and salts are now known to you its actually faster to generate the [list of salts] * [word list entries] on the fly and see if you match any of the password hashes. If you do match one you know know the password. This is the sort of attack people mean when they say brute force password attack now most of time.

So how would an attacker get the password file? Well in many cases it would be an inside job. Let assume facebook has a policy that employees are not allowed to bypass the privacy controls and access the pages of celebrities, politicians, etc. Admins can do it because its sometime a requirement of their job but the back end systems always audit this sort of activity. So someone abusing the master key will be punished. Now lets also suppose access to the master password file is also protected fairly well. Attempts to read it by non-authorized process etc are logged. Ah but what about if someone replaces a raid disk in a authentication server that was not really bad? Is it possible it could be read off a backup tape by an operator who knows the key etc. There are probably holes, insiders might use; even in mostly secure environments.

So now mister admin that really wants to know who K.Stu is banging this week can take the password file home with him and brute force it. Once he has her password, he can log in as her. The password not been rest, which might have been logged, or noticed by the user and reported etc, so chances are he can do whatever he wants with very little chance of detection and no audit trail that will point back to him, remember he has stolen the users identity. So yes he might have gotten the data anyway through other means but this way he can do it with everyone being unaware.

This is one of the hole that strong passwords and semi frequent rotation are seeking to close. The hope is if it takes enough weeks to brute force, you will have changed it by the time its been cracked.

   

Re:I Got It!

[Luckyo]

No. But it makes good headlines and sells whatever "security expert of the day" happens to be peddling.

On most of the web, a good secure 8 random character password that you don't reuse on other sites is about a few orders of magnitude too secure for hackers to even bother thinking about cracking. The "account hacks" are usually about people managing to steal a list of user names and passwords from some shitty forum that has old version of BBS software, and then trying those combinations of user names and passwords on other sites. Pretty much all brute force methods require direct access to database that is badly encrypted (perhaps behind a weak password that they intend to crack?).

Other then these scenarios, vast majority of "your password is too short and as a result not secure" is scaremongering bullshit.

Full disclosure: I have several battle.net accounts, a LoL account and countless other similar game accounts that are very much wanted in hack and sell world, all under the same email. I get absolutely hammered by "your account is being closed for hacking, click here to fix" phishing emails and other similar bullshit on that email address. My WoW account was very valuable for a couple of years (very good server, easily within top 0.1% of people in terms of wealth and in top 1% in terms of rare items and progression, legendary and so on). Didn't get hacked a single time. Several guildies and countless people I know had their accounts hacked during this time, some more then once. I used, and still use a short UNIQUE password for each account. Not a single account breach.

Why? Because no one sane brute forces remote passwords when doing actual hacking for profit. It's bloody stupid to even bother trying. There are far more profitable and easier methods, that actually work.

Re:I Got It!

[radiumsoup]

my credit union has the following login safeguards:

-I must approve any new device I sign on with via text message or voice authentication on a phone number I have previously registered before I can log on to my accounts
-I must enter my login and password on separate pages (I must submit my login name first, then next page for password)
-My password must be a certain minimum length and shares the Microsoft domain default of uppercase+lowercase+nonlettercharacter
-session inactivity timeouts are 10 minutes long before automatically being ended at the server

Then again, they're dumb enough that my car loans don't even show up in my bill pay list, I have to remember on my own if I paid them or not, so there's that.

Also, free water and cookies any time I visit the branch :)

Re:I Got It!

[dgatwood]

And then you have a password that you won't readily remember, because you haven't seen the word "turgid" since the SAT.

Re:I Got It!

[MyFirstNameIsPaul]

Unless your computer is hacked and the master database stolen, it's a pretty decent way to use unique passwords.

If you use something like LastPass, this isn't an issue because your file is encrypted with your master password. LastPass also supports several mult-factor authentication methods.

Re:I Got It!

[vux984]

Nope. Mangling it with symbols moves it into the symbol-by-symbol exhaustive search category

Nope. Mangling it with symbols is just mangling it with symbols.

Words + symbols does not transform the words into symbols.

Sure you assume that symbol frequencies are shaped in a certain way, so you can still do a tad better than fully exhaustive search where you start with all zeroes and go up, but it's really no worse than a similarly long bunch of random symbols with a certain distribution of individual symbols and maybe symbol pairs.

If you run the math on that claim that shaping symbol frequencies (and orderings) to put "words" ahead in the search you will find that the "tad better" is exactly the amount better that you'd get if you just considered it to be words + symbols in the first place.

When you are brute force searching spaces that big and accounting for letter arrangements, then something even like:

p!a$s%s~w*o$r#d

will fall out LONG before a truly random string.

Re:I Got It!

[camperdave]

What, like "12characters"?

Re:I Got It!

[ewibble]

Password managers are a bad idea for anything you care about. The the fact is there are so many places out there that require a password, and frankly I just don't care that much.

Also biometrics have the problem of you can't change them so if someone gets that information what are you going to do then. Do you really want that porn site scanning the same eye that you use to login to your bank?

Yes I know that you can check that you don't get the exact same reading, but I am sure a computer could add enough changes fool the other computer checking.

A public/private key "smart card" that plugs into your Computer that does a challenge response, seems like a good solution. That way no one knows your password (just your public key). Your key can be truly random and as long as you want. You would need only one, but could have as many as you like. You would need some kind of authority to allow you to change your card, just in case you loose it, or it was compromised.

You could also make it so you had to press a button (or enter a pin) on the card in order for it to respond to an authentication request, for those who would leave the card plugged in to their computer.

Re:I Got It!

[anagama]

You may have a problem with true random number generation if you let a computer pick for you.

You could try diceware instead -- it's pretty unlikely you'll end up with dice that have some kind of vulnerability built into them that will compromise your password picks. Plus it costs a tiny fraction of a true random number generation card.

http://world.std.com/~reinhold/diceware.html

Re:I Got It!

[Pino+Grigio]

Yes! This is what I do. No hope in hell of remember it/them. I use keypass to store and generate them, and then I put my keypass database onto a memory stick that I only plug into the PC when I need access to use a password. I have a copy of the keypass database on a couple of other memory keys in other places just in case I lose it and I occasionally use drop-box to sync the password database with my iPhone/iPad.

Re:I Got It!

[Greyfox]

It's not so much that as when they download the password file after compromising the site security. Then they run their brute force thingy on the database and try your username at all other sites with that password (Since most people also only have one for multiple sites.) Or just gmail, because once they compromise your gmail account they can troll through your mail to see what your other sites are and request password resets for all of those.

Re:I Got It!

You have hilariously missed the point of that comic. The symbols you've inserted to produce "2Correcthorse4batteryStapple!" provide less security than just adding a fifth word on the end, while making the password so much harder to remember.

Seriously, read the comic, and try to understand that the security of a password is determined by the number of bits of entropy that it contains. When you say things like "quite large" and "small subset", you're making a slapdash qualitative approximation to a rigorously quantitative property.

Re:I Got It!

[Algae_94]

And you're back to the original problem. People using insecure passwords because they can't remember strong ones. Forget remembering the password, how about even attempting to explain your concept of "line noise" in a passphrase to the average user.

Re:I Got It!

[tibit]

How exactly do you know someone will use such a passphrase? :)

Re:I Got It!

[eksith]

Mine gives out muffins and coffee :)

Those password guidelines sound pretty solid and generally those are what most banks (should) follow these days, but just in case, I prefer to do my banking in person... which has nothing to do with the free coffee. But seriously, bill paying is one of those things I'd rather use my bank for, since I really can't afford late fees.

Re:I Got It!

[tibit]

I think it goes like this. The world moves ahead. We're arriving at a society where people who don't dig technology at the basic level become third class citizens. Demonstrably, some logical thinking and memorization skills that go beyond the rudimentary are becoming a thrive-or-perish kind of a thing. Technology has started applying selection pressure, and I'm only happy that it's becoming so. There is a point at which you just can't help people who don't grok some things. They have to die out, and only hope that the next generation of their kin is any better. People with silly passwords and risky online behaviors will negatively affect their workplaces, so they'll have problems with their jobs, they'll be fighting stolen identities, they'll be really in for a world of hurt. Again, I'm OK with that.

We've arranged a global civilization in which most crucial elements profoundly depend on science and technology. We have also arranged things so that almost no one understands science and technology. This is a prescription for disaster. We might get away with it for a while, but sooner or later this combustible mixture of ignorance and power is going to blow up in our faces.

Carl Sagan, The Demon-Haunted World: Science as a Candle in the Dark

We're at a stage where it blows up in our individual faces. Eventually it'll affect the larger human collective as well.

Re:I Got It!

[tibit]

Of course I use various languages, but I have no problem sprinkling symbols in. A while ago it was all random without words, these days I'm a better typist. The problem is with stupid webpages that don't dig 30 character passwords, though. Something tells me they may just store the actual password and not merely a hash. Otherwise they'd have no need for a limit, save for the html request size limit enforced by their servers.

Re:I Got It!

[tibit]

But you see, that string is just as random as any other. If you don't know what kind of a password someone uses, any guesses you make are not helping at all. They are all equally likely to improve your chances, thus they do nothing. Never mind that when doing exhaustive searches, keeping track of all those special cases you might have tried, at some point will slow you down a lot. There's a point where the memory bandwidth demands for keeping track start exceeding any gains from limiting your search space. Trees quickly start suffering from cache locality issues :)

Re:I Got It!

[fredprado]

Just add a fifth word. Still easy to remember and brings the time to something near what he wants, even with 20K or so "common" words.

Re:I Got It!

[wiredlogic]

It's even easier if the hashes aren't salted. Then it's just a matter of picking a rainbow table of manageable size and matching hash algorithm. The simple passwords covered by the table are a lookup away. No brute force necessary.

Re:I Got It!

[vux984]

If you don't know what kind of a password someone uses,

That's an assumption we hadn't agreed on in advance. :)

There are many scenarios where you know what form someone's password takes. And there are many different password strategies, so even if you don't know an individuals strategy, trying common / probable ones first vs just treating it as a mindless brute force attack does work better on average.

Bottom line: most people don't use randomly generated strings. So working based on strategies is productive.

Never mind that when doing exhaustive searches, keeping track of all those special cases you might have tried, at some point will slow you down a lot. There's a point where the memory bandwidth demands for keeping track start exceeding any gains from limiting your search space. Trees quickly start suffering from cache locality issues :)

This is a fair point but there are strategies to address it. The simplest is to just allow yourself to retry passwords you already tried without worrying about it on later less specialized passes. If you can get more passwords faster it may be a fair trade off that the worst case running time is increased.

It also depends on the situation situations, hackers attacking a stolen database they won't be doing an exhaustive search anyway... rarely do they need to get into someone particulars account, rather they just want to get into anyone's accounts, or as many accounts as possible.

Throwing a botnet to work trying a million passwords at each of a million accounts will yield much more fruit than throwing that botnet towards trying a trillion passwords on one account... and possibly still not be anywhere near cracking it.

Re:I Got It!

[uniquename72]

Chase bank prohibits non-alphanumeric characters. Unbelievable.

Re:I Got It!

[uniquename72]

I love the "passfile" feature of TrueCrypt. You need both the password/phrase AND the passfile.

Re:I Got It!

[PlusFiveTroll]

>Other then these scenarios, vast majority of "your password is too short and as a result not secure" is scaremongering bullshit.

>..some shitty forum that has old version of BBS software

Like the Play Station Network, or whatever. The issue is, you don't know what will happen with the user/pass database on those sites. As far as I know, battle.net has never lost the encrypted passwords and usernames. If they did, your short random password would have been outed in a day on a fast multi-gpu cracker.

That's what this article is about. If the service provider loses their shit, anything 8 char's and under containing [a-z][0-9]-!@#$%^&*()_=+ will be cracked in a few days unless they were using a hash designed to be slow. We are not talking about badly encrypted (md5+salt is bad these days though) the versions of sha-??? can be pretty quickly cracked on GPUs.

>There are far more profitable and easier methods, that actually work.
It's called SQL injection. That's how they get the list of passwords in the first place. It's a shame that systems are designed that allow it to happen though.

Re:I Got It!

[alostpacket]

But the real question is: how many batteries can a correct horse typically staple?

Re:I Got It!

[PlusFiveTroll]

To steal the user/pass table, much of the time you only need read access. A simple SQL injection can get you all the information you need. If you have write access you can have the plaintext passwords written to a txt file on the server for later retrieval, but that doesn't give you access to existing accounts, unless you change their password. Also, the authentication systems don't always have the data you really want, they are jumping point to 'do' something with another persons account.

Re:I Got It!

[PlusFiveTroll]

You seem to miss the attack that targets the encrypted authentication database.

If an attacker can grab a copy of the database and cover his tracks he has a practically unlimited amount of time to crack at all the passwords at the same time.

You are also missing that distributed GPU cracking can eat every combination of 8 chars or less in a relatively short period of time even when the hashes are well salted.

Re:I Got It!

[mic0e]

There seems to be a thing about entropy you do not understand. The information on the password structure is part of the entropy as well as the actual contents that you fill the structure with. There is a function f that assigns to each possible password p a probability f(p) that a user would choose that password. The function is obviously unknown, and undecidable/uncalculatable, since it depends on the user, who is, in approximation, turing-equivalent. A perfect password bruteforce tool would try the passwords strictly in the order defined by f. However, since f can not be calculated, all password bruteforce tools can only use an approximation. One approximation would be 'a' 'b' 'c' 'd' ... 'z' 'aa' ..., but that approximation is obviously pretty bad. An other approximation would be a wordlist, followed by combining words, putting special characters in words, etc. An other approximation would be iterating over all words, but 'decompressing' with an algorithm as I have stated in my post above. That way, you would catch d0G..... pretty fast (at the same place where you would place a 9-character-password with the brute-force approach, or something like that). While crackers are certainly still far away from a good approximation of f, I can assure you that they are getting better and better. Using a low-entropy password such as d0G.... will only work until the cracker's approximation of f gets good enough (e.G. by self-learning AI, or simply the decompression algorithm I proposed). Hence, d0G.... might give you a feeling of false security, since its entropy is extremely low, but you hope the cracker does not know that passwords of such structure exist yet (now that you have posted the structure on slashdot... well... he certainly does. but even if you hadn't, if he uses the decompression approach, he can already crack it easily).

Re:I Got It!

[mic0e]

Yeah, but the whole article is about crackers stealing the password hash database. There is no way you could crack even a (random) 9-digit password (even if it only consisted of literal digits) over the internet. I guess the maximum you'll get is 1000 tries per second before the server will get unresponsive under the DOS load.

Re:I Got It!

[sapphire+wyvern]

Or you can use Dropbox to synchronise the password file (which is volatile) and _also_ manually distribute a fixed, multi-hundred-bit key which is combined with the password to form the decryption credential.

That way, someone who breaks into your Dropbox account can get the password vault file, but can't decrypt it unless they also have file system access to (at least) one of your devices.

Re:I Got It!

[quantumphaze]

This is how I think things would probably happen in real life.

When an attacker cracks passwords in the hash table from some insecure forum they don't instantly get your bank account since (if it works like my bank) you aren't logging in with your usual online username or email address to the internet banking sites.
The forum has your username, hashed password (now assumed to be cracked) and the email you registered with.
The email account has to be sharing the same password (working out if users are prefixing "psn_" isn't worth the hackers time when there are thousands of other suckers who don't). With the email account now compromised the hacker has access to all your archived emails and knows of all the sites that you have registered for and can even reset your passwords if they wish to. Steam, WOW, ect. with access to the email account they can change the email account associated with it and sell if off.

Now if the victim happens to receive transaction statements in that same email account then now the hacker does have the bank and customer/account numbers needed to log on. Provided that the user has done all the wrong things (top500 password, reusing password on all sites) they are screwed. Sadly, as TFA argues, enough users do all the wrong things to make this highly profitable for the bad guys.

Re:I Got It!

[definate]

Password managers are a VERY GOOD idea, as they allow you to easily maintain complex passwords for each website/application/etc, separately. Especially when those managers are like KeePass, LastPass, or similar, such that the data is encrypted to a ridiculous extent. If you take an application like KeePass or LastPass, and try to guess the hash, it is going to be slow due to the usage of secure hash functions like SHA512, Whirlpool, and similar. They also salt properly, can use 2 factor authentication, and use PBKDF2, which will eliminate the ability to use rainbow tables and slow down each and every guess such that a machine which can usually do "350 billion password attempts a second" can now only do "350 thousand attempts per second".

Then if you use a pass phrase like "correct horse battery staple" with some added bad grammar numbers and symbols, you'll have 1 easily rememberable password, that will not be broken in a reasonable amount of time.

Instead, if you don't use a password manager, you'll likely use the same or a limited number of passwords for different websites, and when one goes down, they all go down. With a password manager you limit the attack to breaking into your password manager, and breaking into a single site.

Re:I Got It!

[definate]

Why is everyone limiting themselves so much with possibilities for correct horse battery staple?

Add some spaces in there first of all, then throw in some punctuation, preferably bad punctuation and grammar.

Correct! That be Horse battery staple.

Throw in some slang and perhaps some more obscure words.

Correct! That be Hoshizzles li-ion battery staple.

Throw in some random junk for fun, I recommend a mathematical formula. Also, don't place it on the end, as this is the most common place for random junk. Instead put it at the start, or somewhere random in the middle.

Correct! a^2+b^2=c^2. That be Hoshizzles li-ion battery staple.

I have 2 passwords that follow this pattern which are used in password managers and similar, which also use 2 factor authentication. It takes a day or so for you to memorize this pattern, and then typing it in is easy. Using a password manager allows you to use other unique passwords for every other website, without compromising your password manager password.

Ridiculous levels of security, with very little levels of inconvenience.

Re:I Got It!

[definate]

Even if the master database is stolen, they'd need a keylogger or similar to get your password so they can unlock it. Most of the password managers like KeePass or LastPass aren't crackable, if you use a good password.

Re:I Got It!

[definate]

Use a password manager then. Problem solved.

Re:I Got It!

[davester666]

With just it's front hooves, or can it use all 4?

Re:I Got It!

[definate]

Lies. I used to do this too, when I was in primary and high school, on my Cyrix 200. It used to take me about a week to crack 95-98% of the passwords, you never got to 100% unless everyone there had really weak passwords. There were always _some_ passwords which I couldn't crack in a reasonable amount of time. They were often the passwords of my friends who were doing similar things.

Over the years I had figured out a lot of different ways to break into machines. But the best way I got the hashes was by bringing along a bootable linux diskette (or CD in the later years), booting in off of that (sometimes had to get around BIOS protections first), then we could grab the sam file (or the sam.bak file). I also found some code which we compiled to a DLL, which pretended to be a Novell logon manager, and would simply dump the login and password to a text file when someone logged in. They didn't realize for a long time, and it seems even Symantec didn't become aware of this till 2002. Which was many many many years later. This ensured that if we lost an admin password, we'd just have to wait for them to log back in, and we'd have it again.

Eventually I got wise and figured out how to terminal into the domain server with one of the admin passwords, at which point I created a very official sounding domain admin account, which had permissions for just about everything. At which point I'd then brag and show my friends that I could access network shares which were off limits and print to fancy colour printers reserved only for teachers... like a gangsta.

Re:I Got It!

[Vegemeister]

I get 24592 3-7 letter words, which a reasonable set to use for a passphrase:

$ grep -E '^[a-z]{3,7}$' /usr/share/dict/american-english | wc -l 24592

That gives 15.076 bits per symbol as opposed to 5.17 for single-case alphanumeric (my usual choice for memorability and efficient entry). That means passwords of the form of correcthorsebatterystaple are in between an 11 character and a 12 character alphanumeric password in strength, assuming you use a good RNG for generating passwords and your attacker has full knowledge of your dictionary. To get a random english password of equivalent strength to a 20 character alphanumeric (my standard for encrypted disks), you need to use 7 words. That might be reasonable if you are a relatively fast typist with a relatively poor memory.

If you wanted your random english password to be as strong as the AES key you're deriving from it, you'd need 9 words.

Re:I Got It!

[Vegemeister]

With even a slightly good password, the server response latency is enough of a brute force block. Anything more than that is to protect the server from the coincident DOS. The people cracking 10-12 character passwords are doing it locally on highly parallel hardware.

Re:I Got It!

[Cramer]

blah blah... you know jack about my password(s), so you're left with trying passwords at (more or less) random. Probability tables can be used based on other people's passwords [an approximation of f], but you have no such probabilities on the composition of *my* passwords. Yes, dee-zero-GEE would be one of the dictionary permutations of any modern password cracker. WHAT THEY WON'T GUESS IS THE 13 PERIODS FOLLOWING IT. People like you LOVE to poo on people's passwords having seen the plaintext; the thing you assholes refuse to admit is that you would never have guessed it in several lifetimes. It's only a stupid password once you've seen it; that's true of many passwords.

Re:I Got It!

Is that an African or a European horse ?

Re:I Got It!

[formfeed]

I currently use "11111111", and Deloitte says I should use at least 9 characters? Easy peasy, I'll buy some time by making it 12 characters long: "111111111111".

That's a hard password to get right. Use "123456789ABC" so you know that you got your 12 characters in.

Re:I Got It!

[kdemetter]

That only works well if no one else has access to the passfile and knows where to find it.
If you have it on a usb stick labeled 'passfile' , with a file on it named passfile.key, it's not going to be very difficult to use the passfile.

However, if you have a number of usb sticks ( unlabeld, or labeled differently ) , and you know which one has the passfile, that's different.
  Also, you could give the passfile a name like libxml2.dll, and put it some standalone program folder.

Re:I Got It!

[pjt33]

That's great until some idiot makes a small change and it starts converting your password to different bytes before hashing.

Re:I Got It!

[Vegemeister]

I get 24592 3-7 letter words, which is about what you would want to use for a passphrase.

$ grep -E '^[a-z]{3,7}$' /usr/share/dict/american-english | wc -l 24592

That gives 15.076 bits per symbol as opposed to 5.17 for single-case alphanumeric (my usual choice for memorability and efficient entry). That means passwords of the form of correcthorsebatterystaple are in between an 11 character and a 12 character alphanumeric password in strength, assuming you use a good RNG for generating passwords and your attacker has full knowledge of your dictionary. To get a random english password of equivalent strength to a 20 character alphanumeric (my standard for encrypted disks), you need to use 7 words. That might be reasonable if you are a relatively fast typist with a relatively poor memory.

If you wanted your random english password to be as strong as the AES key you're deriving from it, you'd need 9 words.

Re:I Got It!

[Anubis+IV]

Great, so in addition to the attacker having the same throughput as before (they'll just switch to cycling rapidly through the usernames for each password, rather than cycling rapidly through the passwords for each username, which shouldn't cause them a delay unless they can get through all of your users in less than a second), you've now also given an attacker a way to DOS your specific users. Awesome. Alternatively, you could try to limit attempts per session, rather than per user, but then the attacker can just wipe cookies between attempts. You could try limiting it per IP address instead, but with proxies they could still maintain an extremely high throughput.

This method really only works for limiting access to systems where a person has physical access. If you're dealing with online stuff, it doesn't work, nor does it do anything at all to help deal with the most dangerous situation: when the attacker gets a copy of your DB (hopefully with properly hashed and salted passwords, rather than passwords that are in plaintext or encrypted). In that case, they can hit it as fast and as long as they want.

Re:I Got It!

[MadKeithV]

And then you have a password that you won't readily remember, because you haven't seen the word "turgid" since the SAT.

Inconceivable!

Re:I Got It!

[sFurbo]

It would shift brute force to try the same password for different accounts in stead of the different passwords for the same account. It would make breaking a particular account harder, but not breaking just any account, which might be the goal.

Re:I Got It!

[ACS+Solver]

And that can also give you words that are hard to remember. Randomly select a few 3-7 letter words from the dictionary:

$ grep -E '^[a-z]{3,7}$' /usr/share/dict/american-english | perl -n -e 'print if (rand() < 0.0001)'

I get:

deposed enured ibis ironies locates

Now I'm not a native speaker but I consider my English vocabulary to be at least as extensive as the average native speaker's. I remember 'ibis' with some difficulty because of the Egyptian hieroglyph, and I had to look up 'enured' - still not sure if I had ever seen the word before.
Does IbisLocatesDeposedEnuredIronies make for a good passphrase? It's strange enough to be memorable while at the same time weird enough to be able to forget part of it.

Re:I Got It!

[retchdog]

feynman cracked the safe in los alamos by guessing that his boss would use a mathematical constant for the password.

it's not hard to imagine an attack utility which tries doing nerdy transformations of the guessed phrases, much as they already automatically do 7331-speak substitutions. adding digits of pi at prime number offsets would be close to the first entry on the list...

now, is anyone going to do that any time soon? probably not. there's still plenty of lower-hanging fruit. nonetheless, i wouldn't be too smug.

Re:I Got It!

[retchdog]

he probably means a fingerprint scanner. not uncommon, especially for thinkpads.

Re:I Got It!

[wondershit]

Well, not if you scope the timer to the IP address the failed login comes from. Obviously this doesn't really work either because of bot nets.

Re:I Got It!

[Luckyo]

If they get site's database, you're dependent on their encryption strength of the database, not your password length.

Re:I Got It!

[L4t3r4lu5]

Nobody brute forces passwords online. Once they have your credentials database, obtained through some exploit or social engineering trickery or whatever, they do it offline.

Re:I Got It!

[L4t3r4lu5]

I use KeePass to store the key to unlock my Excel spreadsheet with all of my passwords in. It's an extra layer of security!

(Important point I'm making here; Users are the weak point, not the technology.)

Re:I Got It!

[ByOhTek]

bah. Hunter2 is good enough for anyone!

Oh, and I don't want to lengthen my passwords, the shortest on anything that matters is 17 character mixed case + symbols + numbers.

Re:I Got It!

[tibit]

This only works if one is not self aware and is likely to follow what other would guess is a likely thing for him/her to do. Once you're sufficiently self conscious, it doesn't take much at all to make things impossible to guess for the outsiders.

it's not hard to imagine an attack utility which tries doing nerdy transformations

Combinatorial explosion takes care of it. Yes, it's not hard to imagine such an attack utility, but only because once you actually try it, you'll see it doesnt work. You quickly approach a point where just bookkeeping where you are in your generation tree starts taking as much CPU time as trying out multiple passwords. Those "targeted" attack utilities are generally relegated to fantasy. In real life, it's very, very unlikely that anyone who is attacking you knows anything much about you. You're most likely to fall prey to simple dictionary attacks. If you're being subject to a personalized attack and they are determined enough, a crowbar password extractor is usually sufficient.

Re:I Got It!

[dywolf]

if they have the password DB, then there's bigger issues at stake than the security of my password.
like the company not taking the right steps to prevent intrusion.
and there's nothing I can do about it; i could have hte PERFECT password, and it wouldnt matter, beucase they decoded it.

again: if they have the DB, then there's bigger problems.

Re:I Got It!

[nitehawk214]

What if you used an image as a password?

Or hash a 1 Kilobit key from that image?

If you took the image yourself with your own camera, you can be pretty sure you are the only one in the world who has an exact digital copy of it.

Or just use a password protected RSA key.

The issue, of course, is that in order to log in you need to have the file. So either the file must be on your computer, or some device you carry with you. Either way, it can be stolen. Even with a simple password that might only take days to crack, it means they need to break in and steal something before they can start.

Re:I Got It!

[nitehawk214]

If you reuse the same password on sites, it will eventually get hacked, no matter how secure your password is.

You could vary a base password per site. But you would have to do it in a way that someone who knows the password for a single site would not be able to figure out the scheme.

Re:I Got It!

[rcharbon]

Almost every password crack I see is email sent from a cracked Yahoo account.

Re:I Got It!

[Rich0]

Ultimately what you're getting at is that the whole password model is broken in the first place.

All services like Lastpass/Keepass are is a semi-manual implementation of something like Kerberos. It is more about having a token than knowing a password, though access to the token might be governed by a password.

Re:I Got It!

[Rich0]

a 4 word randomly chosen password from a dictionary is by far the better password, and much easier to remember too.

Yes, IF it is RANDOMLY chosen from a DICTIONARY. Actually, dictionary isn't even right - a word list is more appropriate*.

If I ask somebody for four random words it is unlikely they'll consult a dictionary, and it is also unlikely that they'll do anything involving true randomness. That means that the set of possible words being selected from is less than the entire English vocabulary, and some words are more likely to be chosen than others.

If you really roll a d10000 to pick a page followed by a d200 to pick a word then you're fine.

* - why a word list? Look up the definition of "run" in an unabridged dictionary sometime and note its length. Depending on the selection method this might bias it as being more likely to be selected.

Re:I Got It!

[cdrguru]

Well, uh, I am pretty sure you are wrong.

People are social animals and not technophiles. Most of the behaviors associated with technophiles are distinctly anti-social and this comes from a variety of sources. For example, for every one source in popular media that extolls the wonderfulness of a technophile, there are 10 that make the technophile out to be the stereotypical nerd and an object of derision.

Who wakes up in the morning with the thought in their head "I want to be less likeable and more an object of derision." Nope, sorry, technical abilities and skills are a passing fad.

What is going to happen, clearly, is that the technical requirements - especially very picky detail-oriented ones - are going to all but disappear. Complex passwords, password vaults, using lots and lots of different passwords, etc. are all going to disappear. The reason is simple, it would take someone that would be easily classed as a "nerd" to manage such a life and people intensely do not want to be nerds nor thought of as nerds.

What we will do is to simplify the whole problem. How about a bracelet that reads biometric data (to insure it is worn by its owner) and is your "passphrase". If you take it off, it has to be reset so it cannot be stolen. It probably should not use any protocol that can be intercepted. It can be an extremely complicated device but the key is that it is simple to use - you just stick the bracelet in a loop that reads it and it works for everything.

OK, maybe we have implantable chips instead. Or a badge that runs off body heat. Something. It can be a pretty expensive device because the alternative is getting left out of everything or having stuff stolen. It should clearly be something that cannot be stolen and reused, and obviously it should be something that is very, very difficult to lose.

OK, think up some nerd-proof device that the average Joe can use, never lose and isn't subject to being stolen and being reused. I'm sure it is possible and if the interface to read it is cheap enough we can start with putting one on every PC and every ATM. Then use it for credit card data and get rid of all the cards. Because it IS in fact your identity it can also replace a driver license and likely replace a passport as well.

Trust me, nobody is going to want to walk up to an ATM and look up the proper 17-digit PIN on their phone password keeper. Moreover, they will not do it. Something else will happen.

Re:I Got It!

[lordofthechia]

Would you say I have a plethora of words to choose from?

Re:I Got It!

[tibit]

For ATMs, you don't really need much besides a 4 or 5 digit PIN. It's not usable in any other context, and the devices that are authorized to submit PINs are somewhat regulated. Historical data shows that 4 digit PINs are sufficient at keeping bank losses at manageable levels, and that's that.

I think that all too often the technical solutions to people problems such as you propose don't really work, because at the source it's not really about any sort of an absolute impossibility, but about willingness of people to actually expend some effort on keeping them safe. We're talking about stuff that's fairly easy, but people will come up with all sorts of reasons why it's a hassle for them. No matter how simple and easy you make it, people will still claim it's a hassle. For an eye opener, read some technology and other stories from notalwaysright.com.

There's no need for biometrics, everyone has got their brain already. Use it or lose it.

Re:I Got It!

[nobaloney]

And then you have a password that you won't readily remember, because you haven't seen the word "turgid" since the SAT.

Poor guy. I pity you.

Re:I Got It!

[retchdog]

i agree in part, but really it's a matter of whether your supposed cleverness is actually very predictable, as happened to Feynman's boss. it's really psychology more than it is entropy.

some people think leetspeak is good enough for obfuscation; they were right a few years ago, but not anymore. extrapolating, it's a bit silly to think that simple padding methods such as the one you stated will never be added to the cracking strategies.

Re:I Got It!

[vux984]

Yes, IF it is RANDOMLY chosen from a DICTIONARY

By dictionary I postulate an electronic edition of a dictionary with the ability to spit out random words.

In fact, most dictionary websites already have the ability to do this, but I have no idea how truly random the randomizer is.

But one can easily imagine that it would not be difficult for them to create a suitable properly randomized passphrase generator if they were so inclined.

If I ask somebody for four random words it is unlikely they'll consult a dictionary, and it is also unlikely that they'll do anything involving true randomness. That means that the set of possible words being selected from is less than the entire English vocabulary, and some words are more likely to be chosen than others.

This is true, but its also true of 'traditional' passwords. Unless they use a password generator they aren't likely to be generating particularly 'randomized' passwords either.

And if we allow for them to be using a password generator then we can allow for the passphrase users to use a suitablly randomized one as well.

Re:I Got It!

[vux984]

Add some spaces in there first of all, then throw in some punctuation, preferably bad punctuation and grammar.

In other words: take a very easy to remember password and cram it full of junk that makes it just as hard to remember as a classical password.

If you want more security than is offered by 4 words, use more words. The security gained by mangling the the words with misspellings and symbols is no better than simply adding another word or two. And adding words is easier then remembering where you jammed symbles in which words were capitalized, which were mis-spelled and precisely how you mis-spelled them, etc.

That said, I agree that using a larger dictionary is good. Throw in urbandictionary.com and brand names and place names.

Then once you've had a randomized password generated from all that, sure if you know French or Portuguese or Dutch or whatever throw in a foreign word as well. If your a mathematician or doctor or whatever throw in a formulas or other domain jargon that you'll find easy to remember.

Re:I Got It!

[definate]

I do what I said above all the time (note that I only need to remember 2 passwords though), and the bad grammar and punctuation makes little to no difference, because in my mind the badness still follows a pattern which is predictable, as if someone who doesn't know English well was writing this. These make it predictable for you.

Re:I Got It!

[dgatwood]

But the one that is easiest for you to remember is likely to be the one where all the words fall into the top 1,000 most commonly used words in the English language (the words that most people use almost daily), at which point the search space for a dictionary attack just dropped by another order of magnitude per word.

Every time you make something easier for a human to remember, you're making it easier for a computer to guess. Want to make it hard to guess? Make it impossible for a human to remember, and store the resulting 100-character pseudorandom password in your keychain where it belongs. Then eliminate security questions entirely, and make the password recovery process involve a notarized letter sent by snail mail along with a photocopy of the government-issued ID card of your choice.

Re:I Got It!

[chrismcb]

I understand that disk drives are VERY expensive, and they can only store 8-12 characters.
But I don't understand the excuse for NOT allowing non alphanumeric characters. Sure maybe they are afraid of SQL injection, but why not accept things like, oh say a period.
Makes me wonder how poor the rest of their code is

Re:I Got It!

[dcollins]

"Why do you still try to get kids to remember multiplication tables rather than teaching them to multiply?"

Brief reply to the AC: You need both (a) understanding the meaning of the operation, and (b) automaticity with the operation. Just having one or the other doesn't get you very far. Not knowing the basic multiplication table cripples people when it comes time to divide, factor, identify primes, exponentiate, reduce rational expressions, compute and simplify square roots, etc.

Re:I Got It!

[dcollins]

"When you're 18, you can remember stuff with context much better, and arbitrary line noise like multiplication tables are relatively off the table at that point."

So it sounds like we agree that for most adults, adding arbitrary line noise into a password makes it more difficult to remember.

Re:I Got It!

[Rich0]

Oh, I agree with all of this. My point is that good security depends on security-conscious users (unless you intend to not let them pick their own passwords). You obviously grok all this stuff, but Pete down in sales likely does not.

Re:I Got It!

[megabulk3000]

and then the hair on the back of my neck stood up, because that's in my password!

Re:I Got It!

[AK+Marc]

Works for Apple. My wife doesn't look closely at username when logging in, and can lock my account out if she tries her password enough against my account. So many do something like this. 3 or 5 tries, and locked out

Re:I Got It!

[AK+Marc]

I can't be bothered to do the math now, but I heard that the restrictive password policies greatly reduce strength. an 8 character password that requires a cap, a lower case, a number, and no special characters (I've even run across one that had a limit that the number couldn't be first). So an examination shows that the first letter is caps, and the rest lower case, the last character is a number. When you restrict it that much, it's easier to guess. I've had more than one that added complexity (like iTunes now requires numbers and caps, but they didn't used to). So people move from "password" to "Password" to "Password1" and finally "Password1!". There aren't many sites that wouldn't accept that as a password, but it's not very secure.

Re:I Got It!

[AK+Marc]

I don't use random, I use pseudo random and obfuscation. My last passwords were all invented by something I could see from where I came up with it. North1windoW2open# is one I'd come up with now, if I were making a new one now. And I'd remember it forever, because I could just look back to now and remember comig up with it by looking at an open north-facing window. Hash that and put it in your password guesser and tell me how many years it took to crack.

Re:I Got It!

[whois]

It's not that simple. Insert one character anywhere and the password becomes loads harder to guess. Misspell a word if you want to add more entropy. 5t4pl3 isn't a good password because it's easy to check a wordlist with added leetspeek modifications. b4tt3ry5t4pl3, not so easy, nor is b4ttarystaple. It doesn't matter that it looks easy, the problem is the computer has to check every permutation of those two words, and it doesn't know you picked those words, or what order you put the words in. Or if you left the spaces between words. Imagine burning twenty years on permutations of 4 words only to find out there are spaces to consider?

The fact is that long passwords are better than ciphered short passwords. The longer the better. Sentences are much better than words because they have very little chance of being used before. If you're scared to try four words use six. Or nine. Use the phrase "If you're scared to try four words use six." You won't forget it.. you might have a little trouble typing it at times, but nobody will ever guess it.

The problem is that programmers for years have been saving memory, or whatever it is they thought they were doing, by restricting passwords to characters. Most of the time it wouldn't cost companies anything to allow 255 character passwords but they don't. So your security is limited by their dumb system and it doesn't matter how many dumb symbols you put in there, it won't be any harder to crack 8 characters.

Re:I Got It!

[vux984]

North1windoW2open#

I have two questions about this:
a) How do you remember which password goes with what? I create most web passwords from my desk. So the trick of associating a password with where I was when I created it. Did I create the password for foo at my desk looking at the window? Or the door? Or the keyboard? or my cup of coffee? The password for xyz I created while on vacation in the Carribean... that mental image will be with me forever... but the ones I created from my office will all blur together pretty quickly.

b) The capitalization/punctionation sequence. Is that a hypothetical static pattern you use for all your passwords? Otherwise, how does one remember the first letter of the first word is capital, their is a 1 between the first 2 words, the last letter of the 2nd word is capitalized, there is a 2 separating the next word, the 3rd word has no capitalization, and is followed by the symbol #. (I mean I noticed that its 1-2-#(3) which is easier to remember than 9-$-! but that may not have been on purpose... and again if you used a difference sequence in every password it would be a nightmare to remember. After a couple weeks or months without using the password are you going to be sitting there:

nortH8window2Open$ ?
NortH1Window2opeN# ?
north3Window2opeN@ ?
[...]

If you use a static pattern every time that's easily memorized.

Hash that and put it in your password guesser and tell me how many years it took to crack.

The point is that your password is just as secure as "North Window Open Pickle" adding another word makes it just as good.
Assuming I don't know anything about your password a brute force checker will actually take longer on this password than yours.
Assuming I do know how you generate your passwords* then its about equivalent, but 4 words is generally easier to remember than 3 words and a bunch of capitalization and punctuation rules.

* in a hypothetical targeted attack -- the attacker may be able to determine some of your passwords protecting relatively worthless things. Perhaps some worthless forum websites you use doesn't use https for login and he's been able to intercept a few passwords; or some other poorly implemented forum you use doesn't even hash the passwords... and from gathering those he can work out how their general formation rules, and can craft his brute force search for a valuable password based on that.

Until artificial limits are removed...

[eksith]

I used my online banking today and they limit to 8 characters EXACTLY... even though they demand a non alpha-numeric character and mixed case. I keep thinking, these idiots still don't get it. Also, obligatory.

Re:Until artificial limits are removed...

[DigiShaman]

Some financial, investment and health insurance sites (I will not site for my own protection) specifically will not allow upper case and special characters (! @ # $ % etc). Oh, and they must be minimum of 8 but not more than 12 or some such. WTF? How is that secure?!

Re:Until artificial limits are removed...

[eksith]

That's usually a guarantee they don't hash passwords :/

Or they use some kind of encoding scheme instead that just lengthens with password size and letter case (DB field width will get maxed out) and don't use parameters for DB inserts/updates so special chars would wreak havoc with queries. Sometimes that's because they're running ancient software, but other times it's pure and simple laziness or disregard. It's hard to care about a project under near-slave-labor conditions in some of those sweatshops.

Re:Until artificial limits are removed...

[mentus]

Don't complay too much. The convenience vs security balance can all too quickly pend to the [lack of the] former. Doing online banking in Brazil in any of the major banks is becoming a major PITA. Santander for instance, requires you to install a browser plugin (available in native version for IE or Firefox, or via Java in the case of Chrome) just to be able to login to the IB. You also need a special IB-only password which must be numbers and letters (mixed-cased), and if you type it incorrectly more than 2 times, they automatically suspend your IB password and you need to talk to your account manager to be able to unblock it.

Do you think that's all? Nope. With that you can only use IB in 'read only mode', not being able to perform any transaction that might make a debit to your account. Then you have to request a 'codes card', with is basically a very cheap version of a token, albeit a little less secure. Upon completion of each transaction you'd be required to type one of the codes in your card. Thing is, fraudters caught up to that pretty quicly, and started sending phising mail where they'd lead the baits to a website passing as the bank asking them to type all their codes for 'security purposes'.

So then they made it compulsory to register each computer you use IB with, therefore forcing you to use a whitelist to enable trusted computers. You actually have to go in person to an ATM machine and use your debit card + 3 letter PIN + 4 digit debit PIN to authorize each computer. Thing is, so many people have machines so full of malware that this wasn't enough to stop the fraudsters.

Next in line was their latest addition: now in order to be able to make transactions online, not only you must have the IB password, install a proprietary browser 'security plugin', the token card, authorize your machine previously on an ATM with your debit card + 3 letter PIN + 4 digit debit PIN, you also must have a mobile phone on your file with the bank. Then, after you use all your passwords and code card in a trusted machine, they then generate a 7-digit code that is send via SMS to your mobile phone (which can also be only updated in person or in an ATM with both pins).

What if you don't have a mobile phone? What if you don't have signal at the moment you want to perform the transaction? What if your phone battery is out of charge? Well, tough luck, you'll have to go to a Santander ATM machine, because all these security paranoia features are mandatory...

The thing is, this a perfect example of adverse selection in effect, so now every bank is demanding you to install proprietary plugins (which are usually modified rootkits themselves..) to ensure the safety of your machine before being able to use any IB. Some are already demaning the use of SMS on a per-transaction basis and the process of using IB is getting more inconvenient by the day...

When I compare that with the breeze that is using the IB for my HSBC account in the US... it makes me wonder how much inconvenience is enough to tolerate...

Re:Until artificial limits are removed...

[Megane]

They need to allow arrow keys in passwords. Then I can change my password to the Konami code.

Re:Until artificial limits are removed...

[Danieljury3]

The bank I'm with makes lower and uppercase the same. I can leave caps lock on when I'm typing in my password and it doesn't make any difference.

Re:Until artificial limits are removed...

[Vegemeister]

Mixed case and special characters are a dumb idea anyway. If you use those, you are using the shift key. Adding the variable of whether you pressed the shift key or not doubles the number of possibilities for each symbol. That is, 2x possible symbols where x is the number of keys. Optionally pressing a second (lowercase) key gives x+x^2 possible symbols.

Re:Passwords are shit.

[maxwell+demon]

But it takes much longer to type in

Biological validation

[concealment]

There's going to be a shift from passwords in general. Not only are they often insecure, but there's no verification that the person typing in the password is the user who owns it.

No, we're going to switch to biological means. This will be more secure, but as a side effect, there will be more assaults in which the eye/finger/penis is removed and used to gain access to these bio-protected systems.

Re:Biological validation

[Sir_Eptishous]

Sometimes the penis will be used without it being removed...

Re:Biological validation

From the point of view of an remotely-accessible device, biometrics and passwords are identical. Any device can send a bit string and claim to have obtained it from a biometric scan, even if the bio in question is not present. As a result, they do not solve the problem of verifying the identity of a user.

Even worse, you end up using essentially the same password for everything, it can never be changed, and you carry it around everywhere you go on your face or hands.

Re:Biological validation

[operagost]

So you're saying we're screwed?

Re:Biological validation

Biometrics are great for adding a factor for authentication, but tend to be lousy when used alone. Anyone who has studied biology can tell you, it's messy. The day-to-day variation and error levels of most measurements make it nearly impossible to uniquely identify a person. Fast DNA sequencing might work, but would still have too many false positives.

IMHO, an ideal system would be something like an EEG, which would measure your brain waves while you thought of your "password". Two complementary factors rather than two independent or a single "strong" factor.

Re:Biological validation

[Sir_Eptishous]

Thats why they call it two-factor authentication.
Unless of course it's multiple-realm authentication...

Re:Biological validation

[eksith]

Chopping off things is usually harder to do on people who're paranoid to begin with. ;)

If it's fingerprint recognition, I think the Mythbusters ran an episode where they duplicated a fingerprint from a CD. Voice passwords can be spliced together from existing recordings of the victim's speech (Burn notice). Retinal scans can be hacked into by tapping into the data feed of the scanner (some movie with a title I can't remember). Hey, they have skimmers for credit cards already, so this isn't much of a stretch. Besides, we practically every week a new report of industrial control/automation devices and platforms being exposed to the internet all ripe with vulnerabilities.

DNA, of course, may be the last bastion for security. That is until biohacking and cheap cloning (of cells scraped from some part of the body or just found laying around) will become commonplace.

Re:Biological validation

[eksith]

Ack, I meant to write, "we see practically every week".

Re:Biological validation

[elucido]

There's going to be a shift from passwords in general. Not only are they often insecure, but there's no verification that the person typing in the password is the user who owns it.

No, we're going to switch to biological means. This will be more secure, but as a side effect, there will be more assaults in which the eye/finger/penis is removed and used to gain access to these bio-protected systems.

If someone has to remove your penis to get your password perhaps you should choose another profession.

Re:Biological validation

[Daetrin]

"I wasn't cheating on you! I swear! I was just checking his password to verify his identity!"

Two factor authentication

[pwnies]

Don't use a longer password, just use two factor authentication.

Re:Two factor authentication

[swilde23]

As long as it's actual two-factor authentication. None of the fake crap that people call two-factor.

For the record, asking me to pick a picture isn't a second form. Something you know, something you have, etc...

Re:Two factor authentication

[SuricouRaven]

Almost a good solution. But it isn't free, which is a problem. Your bank can issue two-factor authentication easily enough, as can any website of significant value. But what about, for example, a website like Tribal Wars: They have a great many users, but only a tiny per-user income. They survive by keeping the per-user cost low (There's a reason the site is mostly text). If you ask them to spend $15 to buy and mail a dongle to every user, they'll go out of business in an instant. So what do you propose? The only solution I see is to switch to third-party verification: Log in with a facebook ID, and use their token. But I think Facebook has too much power already, it'd mean the end of what little privacy is left.

Re:Two factor authentication

[swillden]

Use Google Authenticator. The app runs on all Android and iOS devices and you can download an SDK to implement support for it in your system. If you do that, Google is not involved in the login process at all, you're just using their (open source) software, so there's no privacy impact.

However, it's also worth pointing out that using third-party authentications from Facebook, Google, etc. via OAuth also doesn't really impact privacy as much as you might think. The third-party authenticator only knows that an authentication was done, and nothing more. Further, for web sites that implement OAuth correctly (which really isn't that hard), there's no reason to limit the third-party authenticator to those big-name providers. In fact, you can run your own OAuth server in your basement and use that as your "third-party" authentication provider, implementing whatever form of authentication you like with whatever degree of security (or not) that you want.

Re:Two factor authentication

[CastrTroy]

If Google can provide an App for my phone that provides the second factor (Google Authenticator), then any other company should be able to do the same. Offer a separate "dongle" for anybody who doesn't have a smart phone and you are set. You could probably make a dongle that supported giving out keys for multiple sites. So instead of having a separate dongle for each service you subscribe to, you have a single dongle which can give out different keys for all services. This would probably work much like and Android phone, that could support many apps for 2 factor authentication, but could be much cheaper and simpler than a phone.

Re:Two factor authentication

[swillden]

As long as it's actual two-factor authentication. None of the fake crap that people call two-factor.

No kidding. My bank (I really need to change) uses two factor authentication. To log in you have to know both the username and the password! In order to make this more secure, they apply password quality requirements to both. Yes, that's right, your username must be mixed case and contain alphabetic and numeric characters, and must be at least 8 characters in length. Symbols are not allowed, however, since that would just be weird.

For the record, asking me to pick a picture isn't a second form.

Most places that use a picture aren't using it as a second authentication factor. It's an anti-phishing countermeasure. The idea is that you pick a picture when you set up your account and then every time you log in you should see your picture. If you don't see your picture, then you know you aren't really looking at your bank's (or whatever) web site, but an attack site. Of course it's not an effective countermeasure against attack sites that use your credentials to connect to the real bank site in the background, get the picture from the bank and then show you what you expected to see. But it does prevent some phishing.

Re:Two factor authentication

[swilde23]

Totally agree... which is why I'm attempting to point out that it isn't two-factor. Banks might get it, but the security "experts" that seem to inhabit most IT departments don't.

Re:Two factor authentication

[swilde23]

I suppose the other thing that my bank does is requiring you to enter a generated number (which they provide by SMS or automated call) to a phone number they have on file. The number is only valid for a few minutes (I don't know the actual timeout).

This seems closer to two-factor, except 1) they have the number generator, so it isn't something YOU have and 2) you can tell their log-in site that "this computer is trusted" and you don't have to enter the number again.

Re:Two factor authentication

[xaxa]

The Google Authenticator thing is open source etc -- you can add it to PAM (on Linux), so you can authenticate for SSH or sudo.

I followed this a while ago, and didn't have any problems: http://www.howtogeek.com/121650/how-to-secure-ssh-with-google-authenticators-two-factor-authentication/ (although I haven't kept using it, it was just an experiment).

There were some notes on making the implementation more secure, but I can't find the bookmark.

Re:Two factor authentication

[swillden]

That's actually a reasonable two-factor approach, IMO. The second factor is something you have: the phone. It's on you to give them a number for a phone you have fairly exclusive access to, but that's not too hard.

As for the fact that they use it to mark your computer as "trusted", that's also quite reasonable. What they're actually doing is converting the phone call/SMS second factor into a cookie second factor. Essentially making your trusted computer's browser's cookie store the second factor. That's not tremendously secure, but it's also not bad unless your computer is compromised. The thing about many two-factor schemes is that they slow down authentication so much that people refuse to use them. So the bank allows you to degrade the security slightly via the authentication cookie (which likely expires after a while) in order to make login more convenient. If you don't want that greater convenience, don't ever check the "remember this computer" checkbox. Most people do.... and yet it really does significantly increase the obstacles for an attacker.

Re:Two factor authentication

[interkin3tic]

The SUMMARY mentions that. Last line. Not talking about the fucking article, the summary:

Multifactor authentication strategies, such as phone texts, iris scans, and dongles are also likely to become more widespread, especially by banks

+4 insightful?

TLDR: yes.

Re:Two factor authentication

[flink]

Most places that use a picture aren't using it as a second authentication factor. It's an anti-phishing countermeasure. The idea is that you pick a picture when you set up your account and then every time you log in you should see your picture. If you don't see your picture, then you know you aren't really looking at your bank's (or whatever) web site, but an attack site. Of course it's not an effective countermeasure against attack sites that use your credentials to connect to the real bank site in the background, get the picture from the bank and then show you what you expected to see. But it does prevent some phishing.

Why wouldn't the phishing site just MitM this? Phishing site collects your username, sends your username to bank, gets password screen HTML back with picture and pass phrase, echos picture and pass phrase to you.

Re:Two factor authentication

[flink]

Whoops, never mind!

Re:Two factor authentication

[Dragonslicer]

Google Authenticator is, as far as I know, just an implementation of a standard OTP algorithm. Any OTP program (I have the one from the Maemo repository on my N900) should work fine.

Re:Two factor authentication

[AmiMoJo]

Apologies for picking on you, but I'm getting fed up with deliberately unverifiable anecdotes on Slashdot. You could easily say which bank with no risk to yourself or the bank, simultaneously allowing us to confirm what you say and avoid said bank ourselves. But no, you deliberately keep it vague and avoid mentioning the name.

I'm willing to give you the benefit of the doubt here. You probably aren't karma whoring with a make-up anecdote that is sure to please the Slashdot masses. A lot of posters clearly are being deliberately non-specific to make their made-up story impossible to disprove though.

Re:Two factor authentication

[mike.mondy]

I suppose the other thing that my bank does is requiring you to enter a generated number (which they provide by SMS or automated call) to a phone number they have on file. The number is only valid for a few minutes (I don't know the actual timeout).

This seems closer to two-factor, except 1) they have the number generator, so it isn't something YOU have and 2) you can tell their log-in site that "this computer is trusted" and you don't have to enter the number again.

That's not just close; it *is* two factor. You have the phone. Well, maybe some guy who took it at gunpoint has it, but it's still a different factor (have) than the password (know).

Yeah, the ability to disable the mailing of numbers by flagging the computer as trusted arguably *does* remove the 2nd factor. However, I imagine that that bank feels that browser or IP fingerprinting still yields a "something you have".

Re:Two factor authentication

[demonlapin]

your username must be mixed case and contain alphabetic and numeric characters

Amex subscribes to this idiocy, though they don't require mixed case. WTF?

Re:Two factor authentication

[swillden]

You could easily say which bank with no risk to yourself or the bank, simultaneously allowing us to confirm what you say and avoid said bank ourselves. But no, you deliberately keep it vague and avoid mentioning the name.

I didn't do it deliberately, just didn't do it.

First Bank of Colorado. http://www.efirstbank.com./ Though if you really want to check my anecdote you'll have to go to a branch and open an account.

Re:Two factor authentication

[Rockoon]

Offer a separate "dongle" for anybody who doesn't have a smart phone and you are set.

The thing you myopic twits dont seem to get is that most people do not have a smart phone so these silly arguments of yours are bullshit that don't mean anything.

Re:Two factor authentication

[swilde23]

This.

Thank you (I turn my head for a few minutes, and I get a bunch of replies from people that are security "experts").

If someone else is doing the generating and just telling me the code, it is not a thing that I have.

Re:Two factor authentication

[swilde23]

Also, Cyprus Credit Union in Utah.

Re:Two factor authentication

[PlusFiveTroll]

unless your phone gets snatched, then they have your email and your mobile.

Re:Two factor authentication

[swillden]

The phone is a second authentication factor. An attacker who knows your password does not have sufficient information to compromise your account. An attacker who has your phone (or has cloned it) does not have sufficient information to compromise your account. Only an attacker who has both can do it. That's the very definition of two-factor authentication. It makes no difference whether the authentication code is generated on the phone or only delivered via the phone.

In fact, under some threat models there is a security advantage to not computing the authentication code on the device; it's an approach that is more resistant to attacks that use phone malware as a vector.

Ask any real computer security expert (without the scare quotes) that you like, and they will agree. For that matter, my credentials classify me as a real computer security expert in most circles, though I'm a security engineer, not a security researcher. But I work with security researchers on a regular basis.

Re:Two factor authentication

[mike.mondy]

No, phone is not a second factor. It's just a different communication channel to send auth data.
Still can be cloned by an attacker and auth data intercepted.
IOW it's not something you have, it's something that gets sent to you over different channel.

You're arguing that a phone is not a physical object because it can be used to communicate data. By that logic, the RSA secure-id hardware token I have is also not a second facter and would just be a different mechanism to give me auth data that I type into my work's VPN SW in addition to my password. That's bad logic. You're confusing the question of whether or not a phone is an object that may be physically possessed with how that object is used.

As noted at two factor authentication, the three types of factors are knowledge (something you know), possession (something you have), and something you are.

The typical example of "something you know" is, of course, a password.

Both a phone and a physical key are objects. Things you might have. Neither is knowledge. A door key may be used to move tumblers while the phone is used to receive secrets to be echoed back. Note that you're receiving a new secret that you didn't previously *know*. This is quite different than, for example, simply typing in your phone number.

Nor is whether or not something is a physical posession or whether its knowledge related to whether or not it can be compromised. A physical key can be duplicated; a phone can be cloned; either can be stolen. Nor would we bother with using more than one factor if it wasn't possible that factors could be compromised.

However, some attack vectors work by using one type of factor in place of another. For example, say you get the serial number of my hardware token, acquire the algorithm the tokens use to generate changing numbers, and any necessary initial conditions. Some might argue that you're using knowledge to subvert a mechanism designed to require use of a unique physical object. Calling it a virtual duplicate might be more accurate. Still, my physical token remains a physical object; it doesn't disappear in a puff of logic just because you found a way to trick the system is to thinking you had something you don't have.

Re:Two factor authentication

[Legion303]

That's not just close; it *is* two factor. You have the phone.

GP was right. The bank's not sending the code to *your phone*, they're sending the code to a phone number they have on their system. A very subtle but important distinction.

Re:Two factor authentication

[j2.718ff]

As long as it's actual two-factor authentication. None of the fake crap that people call two-factor.

For the record, asking me to pick a picture isn't a second form. Something you know, something you have, etc...

My American bank does the lame picture you describe.
When I opened a bank account while in Europe, every time I would make a transfer, I had to enter a confirmation number, which they would SMS to my phone. It's so simple, and it actually adds a layer of security!

Re:Two factor authentication

[azadrozny]

But then your password, the thing you know, is there to back you up. I know that some users might have their password saved in their phone's browser, but that is a fault of the user, not the system.

Re:Two factor authentication

[AmiMoJo]

Thanks. As I say I wasn't singling you out in particular, just making a general point that lots of people post anecdotes that could easily be verified by omit some key information, making it look like they are lying.

Re:Two factor authentication

[AK+Marc]

Well, the token is a phone. If the argument is that someone could clone the phone, then how is that not also an argument against tokens, as they could be cloned like a phone could?

Re:Two factor authentication

[swilde23]

The token isn't the phone, the token is the thing that the bank is sending you on the phone. It's not on the phone, it's just being displayed by the phone.

Re:Two factor authentication

[AK+Marc]

Then the token isn't the token. The token is the algorithm installed on it that's being displayed on the token.

Duh...OK.

[Ol+Biscuitbarrel]

hunter22

Re:Duh...OK.

[Megane]

Not long enough.

hunter12345

Re:Duh...OK.

[geekoid]

I remember when I was 12.

Re:Duh...OK.

[Capt.DrumkenBum]

44 actually.
You are only young once, but if you are lucky you can be immature forever. :)

Re:Duh...OK.

[steelfood]

Why did you just post a bunch of stars?

Re:Duh...OK.

[AmiMoJo]

All I see is *********.

Re:Duh...OK.

[Unixnoteunuchs]

Mine is absolutely uncrackable: spock

Re:Why the heck are faster computers a problem at

[wiredlogic]

We should have legislation prohibiting cleartext and unsalted password storage. At least for any site that handles money. That will help quite a bit to inhibit the sort of casual database cracking that goes on today.

Deloitte, get out from under the rock

[jfurcean]

It sounds like Deloitte has been partying like its 1999.

Fine

[BenSchuarmer]

I'll change it to 123456

I love old news.

[mcmonkey]

The relationship between password length and password strength is old news.

But don't tell users, tell the programmers and system admins. I regularly encounter systems where max password length is 12 or fewer characters. For some reason there are also systems that don't allow characters other than letters and numbers in passwords.

Let us make longer, more secure passwords. Let us use special characters, unicode, tabs and spaces!

Re:I love old news.

[mcmonkey]

For years a password that was at least eight characters long and included mixed-case letters, at least one number, and one non-alphanumeric symbol was considered relatively strong.

Yes, and those years were 1999 to 2004.

Re:I love old news.

[SolitaryMan]

12? I know a freaking BANK where the character limit for the password is 8. Yep 8 character password to online banking.

Re:I love old news.

[SuricouRaven]

xapsdogien32
> Error: Must include at least one punctuation character.
xapsdogien32!
> Error: Must not contain a dictionary word.
xapsd_ogien32!
>Error: Maximum length twelve characters.
psd_ogien32!
> Error: Must include an uppercase character.
A1!
> OK

Re:I love old news.

[Verunks]

blizzard uses case insensitive passwords, it's fun since their games are probably the most targeted by hackers, I know they have authenticators and they lock the account as soon as they detect a suspicious login but I still don't see any reason on why they don't use case sensitive passwords

Re:I love old news.

[gman003]

What's worse than limited space is limited characters. My bank doesn't allow any non-alphanumeric character in the password, and has a 10-character limit. I half-suspect it's case-insensitive.

So that's a password space of what, 62^10? 36^10 if case-insensitive? My calculator doesn't even turn that into scientific notation.

Re:I love old news.

[mcmonkey]

blizzard uses case insensitive passwords, it's fun since their games are probably the most targeted by hackers, I know they have authenticators and they lock the account as soon as they detect a suspicious login but I still don't see any reason on why they don't use case sensitive passwords

Thinking about case-insensitive passwords makes my brain hurt.

Re:I love old news.

[swillden]

12? I know a freaking BANK where the character limit for the password is 8. Yep 8 character password to online banking.

I was an IBM security consultant for about 10 years. I worked for all sorts of corporations big and small, talking to them about their security practices. Do you know which industry consistently had the worst security practices? Banking. It's amazing. I once talked to a bank that moves very large amounts of money (9+ figures) daily in wire transfers, communicated by kermit transfer of unencrypted files over a dialup modem. This was around 2005, and it actually wouldn't shock me to learn they're still doing it the same way.

Now I work for Google, and part of my job entails setting up secure communications with banks. Almost without exception every bank tries to argue us into lowering our security requirements. It's not like we're asking for anything crazy, either: strong encryption and mutual authentication using standard algorithms and protocols and adequately-large keys (e.g. 2048-bit RSA, 128-bit AES, etc.), with proper key exchange protocols and periodic key rotations. It's not rocket science, but it's beyond the IT staff of most banks.

I am frankly amazed that there aren't more major security breaches in our banking infrastructure.

Re:I love old news.

[davidshewitt]

I shit you not - the rules you just described are the ones in use at my bank! Needless to say, I plan to switch soon.

Re:I love old news.

[houghi]

The problem is that it is all nice on paper. But when I have to reset my password every 27 minutes (OK, every month.) I will not be able to remember a complicated one.

So I will use a weaker one. I will write it down. I will do anything, so I can do my job. If IT does not factor in the human way of thinking, then it is not looking at all the information.

Sure 18 x 70 is safer then 8 x 26 characters. But you need to divide by the human factor. You make things 10 times harder. I will cheat my way out of it.

People are lazy and as long as you don't count on that, all the rest of your counting is wrong.

For offices? Card reader/badge and pincode. Simple for all. Secure for almost anything. Way more secure then what we have now. And you can even use the same password for all I care.

Re:I love old news.

[Kaenneth]

The thought occurred to me that maybe we are being a little too paranoid about our security; or at least the bank people might see it that way.

You don't need to be frisked/microwave scanned/background checked/sniffed by dogs/racially profiled to walk into a bank where there might be a few million dollars ready to be dispensed on payday.

So, do we really need encryption that would take a billion years to crack to protect each virtual bank account?

There is always risk. You might make a robbery-proof bank (scaring away all the customers...) only to have the building swallowed by a sinkhole. And you could require 32 character passwords and surgically implanted access tokens only to have someone come up with a fast factoring method (maybe something quantum based?), or a $5 pair of pliers applied to the testicles. To a big bank, that's what insurance and risk pools are for. I think more money has been lost by rogue traders who were given access, bad investments, etc. than lost to external hackers. Or did hackers cause the big Mortgage Crisis?

I love to study encryption as a hobby, but I'm also careful to watch out for thinking things need more nails, just because I happen to have a hammer.

Re:I love old news.

[JakartaDean]

My bank, HSBC in Indonesia (but I suspect their web framework is the same around the world) requires a user ID, a password (must be characters and numbers IIRC) and a one-time key from a dongle. I'm generally happy with it. But... the user ID is case sensitive and the password *isn't*. I just know this because in the early days I was assigned an upper case user ID and I never changed it, and I sometimes forget to hit the caps lock key to unset it before entering the password. I just hope they convert the password to a consistent case then hash it for comparison to a hashed password in the DB

Re:I love old news.

[snadrus]

Funny, I worked for IBM Support where major tools had a password char limit of 8. If IBM Consulting ever found IBM Engineering, the effects would be astounding.

Re:I love old news.

[SolitaryMan]

Yes, I agree that there are always risks. But compromised bank account means losing all your money, potentially even more and then some future money as well.

That is pretty important, if you ask me.

Re:I love old news.

[swillden]

Shoemaker's children...

Re:I love old news.

[KiloByte]

Actually, that's good for the user, as it stops the FUD that's most posts in this discussions are riddled with.

Want to have a secure passwords? Pick an 8 character reasonable one (not a dictionary word, but no pure randomness either). Not longer, you'll just forget it, or be tempted to reuse.

And why even that long? Because you don't know the lockdown policies implemented by the other side, nor whether they're actually in place. They are actually hard to design, as it's too easy to allow DoS attacks against users. Thus, what your password needs to endure is several hours or perhaps days of, let's say, no more than 1000 attempts per second. The attacker can't bring down or seriously slow down the target server/servers, and you can expect a rig of more than several login servers to have at least semi-competent monitoring, so that's the upper limit for brute force attempts.

But, but, but one can download the password hashes, you'd say. Except, it's a rare case to gain access to the password db but not whatever was protected by these passwords -- or at least, have read-write access to that password db. Or, be able to install a nice logger that stores your password the next time you log in (somehow, most websites send plain text over SSL instead of challenge-response hashing on the client side).

There are uses where you need an actual long secure password: gpg key, disk encryption. And hardly anything else.

Re:I love old news.

[IAmR007]

Just look at how insecure credit cards are. They could at least make them smartcard-only devices and use real cryptographic security. As for online banking, USB smartcard readers are cheap.

On the other hand, when banks are dealing with each other's money, they can really go all out on security. Although the range is still limited, several banks have set up point to point high quality fiber lines with quantum cryptography devices on either end, which is perfectly secure like one-time-pads.

Re:I love old news.

[sgtrock]

I am frankly amazed that there aren't more major security breaches in our banking infrastructure.

Yeahh, those of us in IT in the banking industry love consultants like you. Seriously, who has the better track record in preventing loss through computer theft and fraud? Those of us who have to protect your money for a living, or consultants who get to waltz in, pronounce their wisdom from on high, and leave?

Look, I'll grant you that security, both information and physical, is hard. Security between parties is even harder. Changing customer behavior, especially retail customers, takes forever. Figuring out how to pay for changes to meet an ever changing threat model is extremely difficult. Yet, as an industry we seem to be doing a pretty good job of it. When was the last time you heard about someone getting away with millions? (No, I'm not talking about investment bankers, I'm talking about consumer and commerical bankers. The ones handling your money, not those sociopaths ripping the rest of us off.)

Did it ever occur to you that the reason why banks do things the way that they do is because the level of loss through theft is essentially zero? We take our responsibility to protect our clients' assets very seriously, if for no other reason than a high profile report of loss through negligence on our part is guaranteed to cost us millions (if not billions!) in lost revenue and fines.

U.S. banks have auditors from a dozen different Federal agencies PLUS the Payment Card Industry consortium crawling through our IT infrastructrure literally on an almost daily basis. If we don't measure up, it can cost us tens of millions in fines and/or lost business through loss of access to Visa and MasterCard's networks. I'm sure banks in other countries face similar scrutiny.

Any bank of significant size has multiple layers of checks layered throughout their business logic. Just cracking the front door by any number of means doesn't give you instant access to account information, nor does it give you authorization to open up a wire transfer. Not to mention the fact that everyone, not just the customer facing staff, goes through annual refresher training on how to spot fraud of all types. Don't forget, banks have to absorb the losses, not the customer. (Yes, yes. I know we have insurance. What do you think would happen to our insurance rates if we continually screwed up? Not to mention the risk of having the country holding our charter just shutting us down!)

Personal examples: In the past several years, I have had a change in my purchasing behavior on my credit card trigger a contact from the issuing bank within a few days on at least three separate occasions. On two occasions, I have had an issuing bank spot a problematic transaction (used in another country on another continent), shut down the card, notify me, and re-issue a fresh card within two days. On every single occasion, the issuing bank absorbed all the costs associated with those actions. Those five(-ish) examples cover three different credit card networks and four different issuing banks.

Dealing with security issues is what we do every day. We have dedicated information security people constantly looking for new ways to strengthen and extend our defenses. We have development staff who get hammered if they bring in weak solutions, so they've learned to do the right thing. We have the aforementioned sensitivity to fraud.

We do know what we are doing. :-)

Re:I love old news.

[mcmonkey]

Actually, that's good for the user, as it stops the FUD that's most posts in this discussions are riddled with.

Want to have a secure passwords? Pick an 8 character reasonable one (not a dictionary word, but no pure randomness either). Not longer, you'll just forget it, or be tempted to reuse.

Oh the arrogance. How do you know what I'm likely to remember or forget? And exactly 8 charaters, but no dictionary words, or combinations of words, and no dictionary words with the obvious substitions (1 for i, 0 for o, etc), and no pure randomness. How many combinations does that leave? Not enough.

And what about my personal method of generating hard to guess/crack but easy (for me) to remember passwords? That requires more than 8 characters, special characters, etc. The more restrictions put on passwords, the easier they are to guess, the easier they are to crack (just exclude all the options that break the rules), and they harder they are to remember.

Re:I love old news.

[mcmonkey]

Well yeah. But the issue is having to change passwords every month, not the length or complexity of your password.

And if you want a password of regular letters A to Z, 8 characters in length, why shouldn't I be able to use a longer pass phrase with special characters? That some people want an 8 characters password is in no way an arguement that an 8 characters max should be the rule.

And in this situation, it doesn't matter anyway. If I had to use a system that required a password change every month, I'd be writting it down. Most places I've worked required password changes every 90 days. It usually takes about 3 weeks before I remember to type the new password before trying the old one. So changing password every month for me == yellow sticky on the monitor.

Re:I love old news.

[KiloByte]

You can use your method but don't need passwords that long. My point is, the "common wisdom" that gets spread here badly inflates the entropy needed. Beyond being able to withstand 2^25-30 attempts, there is no real gain anymore. You are safe against brute forcing over network, hacks against the target server defeat you just the same. All you would gain is the attacker not learning what your password is -- which doesn't matter unless you reuse it somewhere else.

Using too long too complex passwords does have its costs: wasted time and mental effort, and especially, an urge to give the same weight to network-secure and locally-secure passwords. Since you brag about your password scheme, I guess you use the same for both. As using strong passwords for most uses would tire most reasonable humans, this means the password you use for things that can be attacked locally is too weak. Ie, because of the drive to use long passwords where you don't need them, you use too short ones in places that matter.

(Obviously, by "length" I mean entropy, everywhere. That "8 characters" is only a rule of thumb.)

I've gotchyer

[Sir_Eptishous]

dongle hangin!

Sites that prevent the browser from remembering pa

[ZorinLynx]

I'd be more than happy to use long, more secure passwords if I'd be allowed to let my device memorize them. More and more sites are using the HTML option that denies autofill, keeping devices from memorizing passwords on them.

It should be possible to tell a device to ignore that HTML option if you have a passkey set on the device. Not letting devices remember passwords is less secure than just allowing it because people will use weaker, easier to type in passwords.

Not to mention Google's bad habit of making you reenter your password every so often. Just keep me logged in, damnit. My phone has a passkey.

Git Rid of Asinine Password Requirements First

[Secret+Agent+Man]

• Minimum lengths? Sounds good.
• Require a non-alphanumeric symbol? Sounds good.
• Must have at least one lowercase letter, capital letter, punctuation, number? Uh...
• Max length of 12 characters. Wat?

Some password requirements are perfectly acceptable, even encouraged. There exist plenty, however, that just make one scratch one's head. Why would a maximum length any lower than several hundred characters ever be necessary? More egregious limitations include requiring an insanely complex number of symbol/letter/number combinations (easy for AI, hard for humans, as XKCD eloquently points out) and, of course, passwords restricted to numbers only. Sadly financial institutions seem to be fond of this one, possibly under the mentality that a PIN is just as good as a password, and customers won't forget that!

Re:Git Rid of Asinine Password Requirements First

[SuricouRaven]

There are two reasons I can think of the maximum length limits:
- Badly-written software using too-short fixed space allocations.
- Reducing the number of users who come up with a super-secure long password, but forget it themselves by the next day.

Re:Git Rid of Asinine Password Requirements First

[PRMan]

Why would a maximum length any lower than several hundred characters ever be necessary?

Because it's on a mainframe. I worked for a place where there was a limit of 8 alphanumeric characters because they didn't want to change the width of the mainframe column. I finally convinced them to have a long, hashed web password separate from the mainframe that then looked up the (of course unencrypted) mainframe password and then fed the mainframe password into it for the call. While still insecure internally, at least we were secure EXTERNALLY.

Re:Git Rid of Asinine Password Requirements First

[gman003]

Also, systems with unencrypted passwords in a VARCHAR(12) field.

Seriously people, it's not hard to use encryption, and if you run the password through a nice one-way hash, you get a fixed-length string. Doesn't matter if I use my ultra-secure 22-character password, half of which is non-alpha characters. You get the same length string as the guy using "password".

Re:Git Rid of Asinine Password Requirements First

[techno-vampire]

Allowing passwords to use mixed case, numbers and symbols is a good idea. The more characters allowed in passwords, the more potential passwords there are, and the harder brute force attacks get. (I don't know enough about other attacks to guess if this is true for them as well.) However, requiring mixed case and numbers and symbols negates this because it limits the possible passwords by eliminating all those that don't meet all of the requirements. Yes, lazy people will probably stick to just letters in one case, but attackers would still have to write their programs to take all of those possibilities into account. Add into that a limited number of attempts before the account is locked and breaking into an account that way becomes far more difficult.

Re:Git Rid of Asinine Password Requirements First

[SuricouRaven]

The CANary program I wrote does that. One step involves the user submitting an HTML form with a file and a password - potentially a very large file. It'd be very annoying if the user uploaded their two-gig file only to discover they mistyped the password, so the page with the form also includes a one-byte checksum. It verifies the password against that before accepting it. One byte is small enough that it'd be impractical to brute-force against: One in every two-to-the-eigth attempts would match by chance. The server verifies the password properly upon receipt of the form.

Re:Git Rid of Asinine Password Requirements First

[sootman]

My bank's requirements are awesome:
1) numbers and letters ONLY
2) NOT case-sensitive

Yup -- exactly 36 unique characters. This is so you can enter it on a phone. Yes, really. I'm surprised they don't exclude 'Q' and 'Z' in case a customer has a really old phone.

Re:Git Rid of Asinine Password Requirements First

[the+eric+conspiracy]

In other words you were insecure.

Re:Git Rid of Asinine Password Requirements First

[BevanFindlay]

Agree. We have similarly stupid password rules at my work, along with forced password changes every couple of months or so. (And, forcing password changes on a regular basis of course simply results in people writing down the passwords, so please, IT admins, don't do it!) (Example reference here).

XKCD's excellent commentaries have already been covered to death, but I wonder that no one seems to have thought of having a password-checking routine that does away with idiot rules and simply checks against a periodically-updated list of the most common passwords (sort of like a rainbow table, but I'm stretching the definition somewhat). So, disallow "P@ssword1" (which is a dumb password, but passes almost every rule set I have ever seen), but let someone have "beagles twirl widdershins up my saxophone" (which was suggested in an article on passwords... oh, about a decade ago, and I still remember it because it's very hard to forget).

It's really hard to remember

[Tsolias]

ÂHumans have trouble remembering passwords with more than seven characters, and it is difficult to enter long, complex passwords into mobile devices let's say you type your current 7-char password 2 times, is it harder to remember? I guess it will be even harder to remember to type it 3 times, if 14-chars are no longer safe enough in the future.

Re:It's really hard to remember

[elucido]

ÂHumans have trouble remembering passwords with more than seven characters, and it is difficult to enter long, complex passwords into mobile devicesÂ

let's say you type your current 7-char password 2 times, is it harder to remember? I guess it will be even harder to remember to type it 3 times, if 14-chars are no longer safe enough in the future.

Some humans. Apparently I must have a genius level IQ because my Linux password is over 30 characters and I remember it fine. The only difficult part is actually having to type that monster to log in when the room is dark and the screen is asleep.

Secret Plans

[SJHillman]

I think some places encourage short passwords. StudentLoans.com is Citibank's site for, you guessed it, student loans. The MAX password length is eight characters. That only encouraged me to pay off my loan to them faster just so I wouldn't have to deal with security like that.

Of course, nowhere in the signup do they warn you that only the first eight characters of your password will be accepted, nor does the login box limit you to inputting eight characters. I signed up with abcdef12345678 and tried signing in with abcdef12345678 but it gave me password refused. By luck, I tried abcdef12 and it worked. Screw Citi and all of the others still using password schemes from the early 90s

Re:Secret Plans

[wiredlogic]

I've run into issues where I signup to a site oblivious to the fact that there is a length limit because their validation is only done with local Javascript that I've usually got disabled by NoScript. It can be anoying to sucessfully sign up and then not be able to log in.

Passphrases

[ScottCooperDotNet]

We should encourage the use of longer passphrases rather than passwords and eliminate or raise limits on their length. It's much easier to remember a sentence than a string of random characters.

Too many banks in the US also have limits on both user names and passwords. :(

Re:99% blame on system administrators.

[eksith]

The problem with this is that most people demand to use an easy to remember password and will stubbornly ignore their own password hints. This happened quite a lot at a fashion company I worked for (I wasn't responsible for the web end, thankfully), and customers kept complaining, no joke, "why should a password be case sensitive?"

It wasn't uncommon for customers to blurt out their passwords on the phone either. One lady started giving me her credit card number out of the blue, thinking that was the problem. When these are the types of people you're dealing with, the lockout is quite a bit more of a hassle. I think they switched to OAuth as a result.

People are getting used to the idea of online security, but growing pains are plenty.

Re:Passwords are shit.

[LordLucless]

Probably not. I can type my mis-spelt Shakespeare quote of a passphrase faster than I can type an obtuse non-alphanumeric-laden password, because I'm far better at typing English sentences than I am weird symbol sequences.

Re:Why the heck are faster computers a problem at

[CanHasDIY]

We should have legislation prohibiting cleartext and unsalted password storage. At least for any site that handles money.

Personally, I'm surprised PCI doesn't require this already.

Re:Passwords are shit.

[Wonko+the+Sane]

Because a lot of websites, especially financial sites, have stupid limitations on password length and/or complexity.

Re:Passwords are shit.

[Zerth]

Passphrases are uncommon because many sites think that "at least" means "exactly" when setting up the user database.

I've dropped one bank because of it. And those secret question/answer fields that are also 8 characters long because they might waste entire megabytes of storage if everyone had room for a complete response.

Re:Passwords are shit.

[CanHasDIY]

Only if you hunt and peck for everything.

FWIW, it took me about half the time to type the above line than it takes to type my current 12 semi-random character password.

Use TPM

[Chemisor]

Instead, store your password on a TPM chip, from where the hash can not be stolen and where the attempt rate can be regulated. This way even 7 character passwords can be quite secure.

Re:Use TPM

[elucido]

Differential power analysis and side channel attacks. Do I have to go into details?

Re:Use TPM

[drinkypoo]

Differential power analysis and side channel attacks. Do I have to go into details?

I expect a 500 word essay on why you expect anyone to care that you still need to maintain physical security on my desk by morning. There ought to be an appendix on how you located my desk and gained entry...

Re:Use TPM

[Chemisor]

Side channel attacks only work when you can physically access the target. The chance of you being able to sniff the power usage of my PC while I'm sitting at it and typing my password is basically zero. Direct physical attacks on the computer inside the user's house never happen, due to extremely low reward/effort ratio.

Re:Use TPM

[DeadCatX2]

Yes, please do go into details.

Please remember that Trusted Platform Module chips have special protection against side channel attacks. And differential power analysis is not impossible to foil. Consider the example in section IV.B) of the following paper: https://www.nics.uma.es/seciot10/files/pdf/liu_seciot10_paper.pdf

1) Blind the message M using vi: M0 = vi M mod N.
2) Blind the exponent E using a random number r (for a 1024-bit RSA, r is typically 32 bits): E0 = E +r fN.
3) Do exponentiation after blinding: C0 = M0E0 mod N.
4) After receiving C0, un-blind it to get the original value of C: C = v f C0 mod N.

Blinding the exponent and the message significantly increases resistance to DPA. And that's just some people running some code on an 8-bit microcontroller, I imagine the big names can invent even better methods of resisting DPA. Off the top of my head, how about a series of resistors that are flipped on and off randomly during calculations to create distortion in the input power?

Re:Use TPM

[Rich0]

If you're doing this server-side then you still need to let the passwords replicate between systems, and that makes them vulnerable. You also need to back them up.

If you're doing this client-side you additionally need to sync them across multiple devices, and during transit they're likely to be even more vulnerable unless the TPM chips support this internally. Back up is also an issue here.

For syncing you could have the TPM devices do a CA-mediated key exchange and that keeps things pretty secure no matter what media the data passes over. For backups unless you have a backup TPM somewhere you need to have a copy of your encryption keys stored otherwise you won't be able to recover them if you lose the TPM. For client machines that is going to be tough to pull off.

Re:Use TPM

[elucido]

That is not exactly true. There are ways from the powerline for example but I admit it's not something Mallery would do unless extremely motivated.

Longer?

[PPH]

passwordpasswordpassword

Re:Longer?

[PRMan]

I'm changing mine to:

12345678901234!

Well? Secure, right?

Re:Passwords are shit.

[CanHasDIY]

... and don't give me that 'muscle memory' crap, if you're rotating passwords like you should, muscle memory doesn't even come into the picture.

Re:Sites that prevent the browser from remembering

[pmontra]

Use keepassx. Usernames and password won't be stored into your browser and that could be annoying but you'll always be able to paste them into any login form. Or at least I never experienced any problem. There is also an Android version and you can copy the password db file among devices (dropbox or manual file copy).

Re:99% blame on system administrators.

[MindPrison]

Same thing for my boss...I insist that he uses long advanced passwords, but he's old and hates complex things in life, likes to play music and sing...and yet he runs a 6 digit company, the worst part is that he uses his silly easy passwords on hundreds of sites.

It would be nice...

[Junta]

If 99% of sites didn't put such a restrictive short length on their password length. I can remember and don't mind typing a pretty long sentence, but then the site generally complains because of the spaces or because I exceeded something silly like a 33 character limit. I will also say that some forbid special characters, some require. If you are going to stick me with no more than about 12 characters and refuse use of symbols like & and $, it's asinine. If you see that I have a 48 character password and complain that not one of them is 'special', you are impairing my ability to use a memorable password of appropriate length...

no solution

[Tom]

Password length matters to brute force attacks - and if your application allows a brute force attack to happen, it is broken already, insecure by design.

Enforcing longer passwords will not improve security for real-life cases. Enforcing more cryptic passwords will actually reduce security for real-life cases. Why? Because people will need to type slower, making shoulder-surfing easier. People will start to write passwords down, and they will re-use passwords more often.

You can't solve this issue with simple solutions like "use longer passwords". The only thing that will do is make "password1234" the new standard instead of just "password".

Re:no solution

[GWRedDragon]

Isn't it funny how "require more complex passwords!" has risen to the level of knee-jerk groupthink mantra, and typically anyone questioning it is shouted down as ignorant?

Re:no solution

[geekoid]

Shoulder surfing? please that's such a tiny problem. Far less the 1% of attempts are based on that. Where are you where someone is shoulder surfing and you don't know? Cause that, literally, need to be watching you fingers.

If the trade off for people not being able to sit across the world and get into your bank is I have to be aware someone isn't stand right next to me, then that would be great.

" People will start to write passwords down,"
train them to use a personal; formula, with a site specific addon.
Really fucking secure.

Re:no solution

[houghi]

And not only the length helps this. Also the fact that you need to change your password each month (Worst I have seen was every week).

If you password is "password1234" I am pretty sure your next password will be "password1235".

The amount of password resets an IT department gets and the time they waste with it will grow the more complicated it gets.

And if in the past 8 characters was enough, but now we need 12. How much longer till we need 24, 48, 192, 7832 characters to have a safe password?

The problem by only looking at password is excluding the human. It is a technical solution for a social problem.

Re:no solution

[dcollins]

"People will start to write passwords down, and they will re-use passwords more often."

People already write passwords down, and re-use passwords. That's the fact on the ground. Because the meaningless symbolic junk we tell them to use is inherently non-memorable. The point is to allow long passphrases in standard English that are finally memorable.

Re:no solution

[camperdave]

Password length matters to brute force attacks - and if your application allows a brute force attack to happen, it is broken already, insecure by design.

Riiight! 'Cause nobody could download the password database and run a brute force cracker against it on their own system. It doesn't matter if *YOUR* system allows brute force or not. If it solely relies on passwords, it is insecure.

Re:no solution

[Tom]

Of course it matters what my system allows. Just because there is a theoretical possibility of a different attack vector does not mean I should leave the front door unlocked.

If it solely relies on passwords, it is insecure.

Nonsense, like all blanket statements in IT Security. It depends on your thread model, the required protection level and the external factors.

Re:no solution

[Tom]

People already write passwords down, and re-use passwords.

I know. Less than a year ago I've given a keynote on this topic.

But do you want to push this undesired behaviour even more, or blame the user, or realize that humans behave in certain ways for certain reasons, and eliminate the root cause (free buzzword to sell this idea to management included).

Re:no solution

[Tom]

train them

ROFL.

We've been trying to train users for over 20 years. If there were even the slightest bit of merit to user security trainings (aside from selling courses and consulting hours, of course) don't you think something would've come out of it by now?

Re:99% blame on system administrators.

[SuricouRaven]

Two reasons:
Firstly, because the attacker may not need to authenticate against the server, if they have managed to hack in and get the encrypted password or found a way to determine it by MITMing a legitimate authentication.
Secondly, because what you describe is itsself abuseable for DoS attacks. It allows an attacker to simply log in repeatedly with a bad password to disable an account. Even if the account can be reenabled after some effort, that's enough to cause serious disruption in some fields. Lock the competitor's salespeople out on the morning of a big conference, or use it to delay members of an opposing MMORPG team while your own people storm their territory.

Oblig xkcd

[EmagGeek]

http://xkcd.com/936/

jeff

[unholy1]

I knew there'd be a back door

Meaningless.

[GWRedDragon]

Nothing has changed.

When applying a hash+salt to a password to store in a database, you run it a bunch of times to take up an attacker's cpu time. By picking the number of repeated hashes, processing a password->hash attempt can be made to take any amount of cpu power. When designing a system, one attempts to choose a value such that, with current systems, it takes a reasonable amount of time to process a login but also too long for an attacker to brute force.

TFA talks a lot about the 'number of possible combinations', but in reality that is not strictly relevant.

What matters here is only how much more cpu power is available to attackers than to the site owner. This ratio is what determines the number of 'combinations' required to defend against attack by someone who steals the database. So, if attackers start using hardware to run hash algorithms, sites can as well, and the same balance would be maintained.

not my problem

[Charliemopps]

I've got logins for what... 200 sites? This is a problem for the sites, not me.
Passwords don't work. Think of something new. I can not remember 200 passwords that are 9+ characters, can't contain real words, have special charcters and God knows what else.

The solution for the end user? Don't use these sites for anything important. Don't store and personal information. Don't do business with sites that retain your credit card number and give you no option to not store it.

Re:not my problem

[geekoid]

Passwords do work. You just need a plan.

Example: a hard password, with the site name added backwords. easy peasy
First Dog-street I grew up-site name.

Sp0t_M4ine_t0dhs4ls

no, that isn't may password, it isn't the formula for my passwords, I never had a dog named sport, and I didn't grow up on Maine, although I did live on a Maine st once. yes, like the state.
8 characters? yeah, that's broke.

Re:not my problem

[dkf]

8 characters? yeah, that's broke.

Especially when combined with "no non-alphanumeric characters, case-insensitive". I've even seen worse than that (split into 7 character groups; use last group, which could be as short as 1! Aaaaaaaah!) but that was a while ago now.

The amount of stupid out there is pretty high. If Deloitte can persuade some of the worst offenders (i.e., banks) to shift even a little towards better practices, they'll still have done something good. Not that I'm holding my breath.

Re:not my problem

[IAmR007]

X.509 authentication is quite a bit more secure than passwords and dead easy to use. However, it relies on the user keeping the certificate safe. Smartcards fix that problem, but most devices don't have built-in support for them.

Just use voice recognition already!

[sl4shd0rk]

I speak all my passwords aloud into either my desktop microphone, laptop microphone or mobile microphone. This allows me to use the longest phrases without having any difficulty typing. People get a bit annoyed when I'm using the computers at the library but I explain it's all in the best interest of security.

Re:Just use voice recognition already!

[Bruzer]

Assuming this is not made up... What software allows you to do this across all three of the devices you listed?

Link?

Re:Passwords are shit.

[Archangel+Michael]

No, but LastPass does!

I already use a 25 character password.

[elucido]

So this (just use an 8 character password) is for sissies. I also don't write my passwords down and they include special characters, large and small letters, numbers, and are completely random. It's not possible to crack a 25 random character password. I suggest everyone follow me and use 25 characters at least.

Re:I already use a 25 character password.

[drinkypoo]

I can't tell if you are joking. Why would it be impossible to crack?

Serious whoosh. Everyone knows that a 25 character password will only be impossible to crack until 2038.

Man, that's going to suck for iPhone users

[Overzeetop]

Every damned time you turn around the iPhone is asking you to enter your password for iTunes. And with the on screen keyboard it's torture to actually enter a password with mixed case, numbers and (heaven forbid) symbols.

I, for one, do not look forward to our excessively long password overlords.

Bank of Montreal's password must be exactly 6 char

[sanchom]

Bank of Montreal's passwords for online banking must be exactly 6 characters long, and contain no special characters.

There should be a limit to password retries. !0.

[elucido]

Password length matters to brute force attacks - and if your application allows a brute force attack to happen, it is broken already, insecure by design.

Enforcing longer passwords will not improve security for real-life cases. Enforcing more cryptic passwords will actually reduce security for real-life cases. Why? Because people will need to type slower, making shoulder-surfing easier. People will start to write passwords down, and they will re-use passwords more often.

You can't solve this issue with simple solutions like "use longer passwords". The only thing that will do is make "password1234" the new standard instead of just "password".

You should get 10 chances to enter your password and then your data should self destruct if encrypted.

What aren't accounts locked?

[macbeth66]

After three tries, the account is locked and you then have to go through a bunch of Q & A to get it unlocked?

As for those short passwords with the stupid rules. UGH! I can't remember them. Let me use a whole sentence!

I'll use strictly cash...

[Jane+Q.+Public]

... before I'll submit to an iris scan at a bank. Several local banks have tried using thumbprints on checks, and it is NOT well-accepted by their customers and others.

Re:I'll use strictly cash...

[elucido]

... before I'll submit to an iris scan at a bank. Several local banks have tried using thumbprints on checks, and it is NOT well-accepted by their customers and others.

That is okay, our alien bankers are preparing to give us anal probes to determine our DNA and intestine microbial based authentication.

Re:I'll use strictly cash...

[drinkypoo]

Several local banks have tried using thumbprints on checks, and it is NOT well-accepted by their customers and others.

I had to give a thumbprint to cash my checks from IBM. The proper bank was right next to my home in Austin. I found it to be quite annoying.

Trusted Source?

[Shinare]

FTFA "Password vaults are likely to become more popular for managing multiple accounts and minimizing password re-use, but they will require strong multi-factor authentication." Make sure that vault comes from a trusted source... Who's that?

Re:Trusted Source?

[Legion303]

Make sure that vault comes from a trusted source... Who's that?

http://multimedia.3m.com/mws/mediawebserver?mwsId=SSSSSufSevTsZxtUox_9lx_UevuSevTSevTSevTSeSSSSSS--&boundedSize=310

Exactly. Most of the time the sites cause the prob

[elucido]

I typically use a 25 character password as an absolute minimum. I memorize the whole thing and it's easy for me to remember this stuff for some reason (I must be gifted). I don't remember it at first but when you gotta type something in every few minutes to install anything or do anything you remember it.

I haven't had a reason to use a 48 character password but I would have no problem remembering it if I needed to. Linux for example does not seem to put restrictions on the length of your root password or your passwords for certain things. But certain websites are ridiculous. They want to practically tell you your password by restrictions. You can't use too many of this letter or that, you can't use a password longer than this but shorter than that, for fuck sake why don't they just give me my one time password to my email address which is secured by at least a 25 character password and be done with it?

Re:Passwords are shit.

[fermion]

There is the issue of mobile devices. Then there is the issue of requirements for number, or no support for special characters, or some websites will not accept words in the dictionary, even in combination.

But passphrases are not going to be magic bullet. A website that claims to be secure should actively try to crack passwords and tell users which are weak. One time pads, i.e. texting to phones a code, is also a highly secure procedure. But users forget their phone, and websites have to have something to get around the security. Which is always the issue. Sites always have to have a means to get around the security.

Have to double it

[rjmonna]

That's a bummer. I always use 12345. Knowing this, I'm changing it to 1234567890.

Make a bigger effort

[geekoid]

to teach people easy to remember passwords.

Examples:
All you kids, case appropriet, change vowels to numbers.
First line of you favorite poem, backwords with vowel substitution.

Hell: 1_L1k3_B1g_Butt5

Re:Make a bigger effort

[Daetrin]

Examples:
[...]

Hell: 1_L1k3_B1g_Butt5

How DARE you rip off Jonathan Coulton like that?!?!??!

Er... "delay loop"?

[Empiric]

This strikes me as largely a non-issue caused by poor login security design.

Why not simply code the authentication such that for every successive request that fails to a given account, an enforced delay of, say, the square of the number of sequential login failures to that account, in seconds, is applied before the next attempt?

This would allow for actual humans to make several errors at an slowly-increasing wait each time, whereas for a scripted attack, after 200 tries we're up to 11 hours per try and growing fast. It seems that a brute-force attack becomes entirely unlikely to succeed under these conditions.

Standard Linux distros interject a delay between login attempts, why isn't this considered basic and expected good design for all login authentication contexts?

Use one time passwords

[elucido]

I used my online banking today and they limit to 8 characters EXACTLY... even though they demand a non alpha-numeric character and mixed case. I keep thinking, these idiots still don't get it. Also, obligatory.

There is really no reason not to use one time passwords for banking. The bank can email you a new password or text it to your phone every time you verify your identity with them.

Re:Use one time passwords

[corbettw]

So now your bank information is only as secure as your text or email account? No thanks, that's a tragedy waiting to happen.

Re:Use one time passwords

[retchdog]

they could require it in addition to what's already there...

Re:Use one time passwords

[corbettw]

In that case, yeah, that would be a huge help. It would slow down getting into your account, of course, but I think the trade off would be worth it.

Test your password

[Synerg1y]

Only one way to tell if you're password is truly secure, some techniques may be less obvious than others, but I like this one cause it shoves them in your face:

http://www.passwordmeter.com/

You can also theorize how long it would take to crack your password here:
http://daleswanson.org/things/password.htm

Of course, you can also always grab a copy of ophcrack (windows users... most of you) : ophcrack.sourceforge.net/ and test it out for yourself, just remember it's YOUR hardware that's testing the password, not a botnet.

Re:Test your password

[camperdave]

A password validator website. What an amazing way to build a password dictionary!

Re:There should be a limit to password retries. !0

[ehynes]

So if I want to wipe out your data I just attempt to log in to your account 10 times using a bogus password. Even if your data's backed up, the next time you go to log in might not be a great time to have to do a restore.

Re:Bank of Montreal's password must be exactly 6 c

[geekoid]

That's one way to prevent people from using 'Password' as their password.

Multi-factor authentication

[elucido]

Don't use a longer password, just use two factor authentication.

Use more than two factors and generate a one time password.

Re:Taste the rainbow tables...

[Robadob]

I would use longer passwords, but multiple sites like to limit passwords to arbitrary lengths like 14 and 16 (live.com and slashdot.org last time i checked). What reason is there to have any password length limit (other than arbitrary passwords of like 100kb of data) if they should be storing them as salted hashes?

Thomas Baekdal wrote about this before xkcd

[jaklumen]

http://www.baekdal.com/insights/password-security-usability back in 2007. I don't deny that Randall Munroe has summarized the method very, very well however. I also wouldn't be surprised if he was familiar with Baekdal's article. So of course it's not just length alone, it's 3 or 4 common or uncommon words, with spaces acting as special characters. Please, read it. I think Baekdal understands this very well, both user-side and server-side. It may not be watered down enough for the non-tech layman to understand, but I think it's very well-written for anyone tech-savvy. And yes, he basically agrees server admins have a responsibility, too-- good password user policy, salt and hash on password databases, etc.

Re:Thomas Baekdal wrote about this before xkcd

[Legion303]

AOL (believe it or not) wrote about this way before either of them. See any early 90s free trial disk for citation. And DOD predated all of the above, sometime in the mid 80s.

Inside job?

[elucido]

The only reason to restrict password length is to facilitate an inside job. Passwords should go up to 300 characters.

I created a 300 character password for the hell of it in Linux. It was fine but so inconvenient to type that I switched to 30 or so. Also there is no real security benefit beyond bragging rights of being able to memorize garbage like those people who memorize Pi.

Re:Inside job?

[mcmonkey]

The only reason to restrict password length is to facilitate an inside job. Passwords should go up to 300 characters.

I don't know how likely that really is, but how else do you explain it? 8 or 12 characters max in a password? 300 is getting silly, but 30 is certainly reasonable. Are they trying to save bits?

8 characters is long enough!

[schizz69]

batmansupermanspidermanwonderwomanrobingandalfgolemgreenlantern

Re:Sites that prevent the browser from remembering

[elucido]

Use keepassx. Usernames and password won't be stored into your browser and that could be annoying but you'll always be able to paste them into any login form. Or at least I never experienced any problem. There is also an Android version and you can copy the password db file among devices (dropbox or manual file copy).

Keepass doesn't work for certain sites. Certain sites still make you type everything in character by character.

Can we eliminate the most common passwords?

[AdamHaun]

There have been a few stories in the last year or two with analyses of stolen password databases. The overwhelming majority of the passwords were based around a few simple schemes like abc123, ABC123, 123456, etc. Wouldn't it be possible to simply not let users choose those passwords? If you know what the 10,000 most common passwords are, you can hook the list into your account creation routine and reject them. Seems like an big improvement for very little effort on the user or server end.

Re:Can we eliminate the most common passwords?

[the+eric+conspiracy]

To a reasonable approximation there are only 10,000 passwords.

Re:Passwords are shit.

This.

My bank (not named to protect the guilty) has the following restrictions on password:

-Maximum 8 characters
-No special characters
-Case insensitive (they don't tell you this, I only found out after fat-fingering my password and it still letting me in)

I have complained multiple times to multiple people on different levels, and still nothing. The response was "If your account is hacked, it is because you have viruses on your computer". Sure, a keylogger is the most likely avenue for attack, but why make brute forcing easy?

Re:There should be a limit to password retries. !0

[elucido]

My data is backed up to the cloud. Try wiping that.

Hmmmm

[slashmydots]

Deloitte predicts that 8-character passwords will become insecure in 2013

I'm gonna say he hit the nail on the head there since 22 letter passwords were insecure in 2012.

Insecure

[Murdoch5]

Everything is insecure, every month we need to change the password, use a better password, use a better username etc.... Here is a new concept, lets only use biometrics that are also paired with a one time pass, the encrypted entry is generated at access time and is valid for 20 seconds and if you miss it your locked out for 24 hours no matter what. That would be secure, anything less by next month will be insecure.

Re:There should be a limit to password retries. !0

[geekoid]

You can compare the hash of what the entered to a rainbow table of most common hashes and not allow those.

Re:There should be a limit to password retries. !0

[elucido]

So if I want to wipe out your data I just attempt to log in to your account 10 times using a bogus password. Even if your data's backed up, the next time you go to log in might not be a great time to have to do a restore.

Also I would be tipped off that someone is trying to access my data if it's destroyed. Basically if you have precious data then back that up to the cloud and the rest of it you should care more about privacy of the data than the data itself.

When do "they" ever learn?

[futhermocker]

Forcing people to change their password to comply to "their" rules only makes passwords weaker.
Users should be teached to create passwords with a formula or pattern for each separate site or service and to NEVER EVER use the same password twice.

For example, name of the site, year of signup, a non character and a non guessable unique postfix: slashDot2012@noncoward
And no, this is not my formula nor my password, heh...

Also, strictly reinforcing policy forcing people to change it every X weeks, will eventually lead to people writing it down on a post it and stick it underneath their keyboard or even on a visible place. Just walk through an office and look around.

Google gets it, I have the same password since signup, years ago. They warn sometimes, but you can click that away without forcing you to change it or else you cannot login. When a site or service forces me to change my password, they essentialy tells me they are insecure about their security...

Re:99% blame on system administrators.

[geekoid]

His password:
" I_Like_To_Play_Misic_4_u."

Re:99% blame on system administrators.

[geekoid]

Its actually a good question.

Make it 12 characters long. Now you don't need case sensitivity.

bullshit

[slashmydots]

Password vaults are likely to become more widely used out of necessity.

BULLSHIT! If my password was omgponies1 then my new password is now omgponies1omgponies1. I can remember it and you can't crack it.

Thing = phone, not generator

[DragonWriter]

I suppose the other thing that my bank does is requiring you to enter a generated number (which they provide by SMS or automated call) to a phone number they have on file. The number is only valid for a few minutes (I don't know the actual timeout). This seems closer to two-factor, except 1) they have the number generator, so it isn't something YOU have

The thing you have is the phone, not the generator, so it is two factor.

2) you can tell their log-in site that "this computer is trusted" and you don't have to enter the number again.

The replaces the phone with the specific computer as "the thing you have". Still two-factor.

RTFA. About stolen file of hashed passwords

[doug141]

"Most organizations keep usernames and passwords in a master file. That file is hashed... master files are often stolen or leaked. A hashed file is not immediately useful to a hacker, but various kinds of software and hardware can decrypt the master file and at least some of the usernames and passwords. Decrypted files are then sold, shared or exploited by hackers."

Re:RTFA. About stolen file of hashed passwords

[Todd+Knarr]

The only problem is rainbow tables. Storage is getting to the point where it's becoming feasible to store all possible hashes and the strings that generate them. For 64-byte hashes and 64-character maximum string length, 4 1TB hard drives will let you store roughly 32 billion hashes. Binary search takes worst-case 29 comparisons on that. So, for under a grand I can build a NAS box that'll let me take 32 billion possible passwords, pre-compute the hashes of them and turn cracking any password into an exercise in disk seeks. If it's in my list, I can crack it in at most the time it takes to do 29 seeks of the disk heads.

More expensive hashes only help you there if you make them so expensive it becomes burdensome for the sites to use them too, because that's the only way to make it infeasible to pre-compute the hashes.

Re:RTFA. About stolen file of hashed passwords

[darkHanzz]

The only problem is rainbow tables That's what salt is for

Size doesn't matter (for websites)

[jopsen]

Many websites these days allows you to try 3 passwords, then requires captcha and/or waiting period, possibly combined with email, etc...
In these cases password size doesn't matter

In fact it only matters if the hash of the password is publicly available or the password is used for encryption of sorts. This is not common for websites.

Re:Size doesn't matter (for websites)

[eksith]

Ideally, if they used a salt, then yes, size wouldn't matter since technically just one character supplied by the user is enough. Problem is a lot of places still don't and it's a real pain to implement login changes when there's a large user base. Clients really don't want to hear that their passwords need to be reset (since that would take a short while even for hundreds of thousands of records), even though they can easily change it to something else with a reset email.

Why not use a car key? We solved this one already.

[Nefarious+Wheel]

Why not fit PCs with an automotive style ignition lock? You could have just another car key on your keyring. Modern ones have embedded codes. You could even go farther and embed an RSA-style code generator in the key. You wouldn't need a display or a button to press, since you're downloading a code to the ignition lock anyway.

User defined self destruct sequences

[elucido]

My solution would be to allow for each user to select a self destruct sequence option where if the hashes do go missing and this does occur that their data will be destroyed in this case so that hackers have no chance of accessing it. Some people would rather destroy the data than let it get into the wrong hands.

Rodney McKay's password?

[cashman73]

What about a variant of Rodney McKay's password from Stargate Atlantis? "16431879196842" -- use the year of Isaac Newton's birth, the year of Albert Einstein's birth, your birth year, and the number 42. You could swap out the birth years of other famous supergeniuses and even add a third person for added security. I bet CowboyNeal uses the birth years of CmdrTaco and his mom for his password,. . . ;-)

Re:Rodney McKay's password?

[KiloByte]

I bet CowboyNeal uses the birth years of CmdrTaco and his mom for his password,. . . ;-)

Try weight, although without using scientific notation it'd be too long to type.

Re:Rodney McKay's password?

[L4t3r4lu5]

You're limited the keyspace to just 10^n. A typical desktop will take hours to break it, a concerted effort on dedicated hardware (parallel processing on CUDA or simlar hardware) will do it in minutes.

Adding just one lowercase letter will make the keyspace required to brute force 36^n. This means it will take 3.6 x as long per character to break.

http://howsecureismypassword.net/ See for yourself.

Password strength should match importance

[erice]

I at least try to use better passwords for more important logins. I don't waste brain power or worse resuse high quality passwords for sites where it really doesn't matter if my account gets hacked.

The annoying trend I see that the sites that most often enforce "better" passwords are the ones I don't care about. Must have at least one upper and one lower character, must have a non-alpha numeric character, no more than two consecutive characters: All this just so I can post to a web forum. Meanwhile the bank will accept almost anything.

Google glass - keyboarded passwords not an option

[pbarker]

I don't think people have quite got the implications of google's new headwear (Project Glass). Others have gone before - but Google have shown they can push into the mass market.

I think you should assume from this point forward that anyone wearing eyewear is recording everything they're looking at in sufficient resolution and frame rates to play back your typing later and thus discerning your password.

Previously you'd call this "shoulder surfing" - but they human eye doesn't really do "zoom". Digital zoom from digital eyewear, on the other hand, means your password could reasonably be read off your moving fingers from a bus-length away.

A second factor is now a requirement, IMO. Interesting times.

Re:Passwords are shit.

[bjourne]

My bank (not named to protect the guilty) has the following restrictions on password:

Name and shame away! Stupid password restrictions like that is a telltale sign that they are storing your password in plain text. Probably on some really arcane or buggy system if it doesn't even handle case-sensitivity correctly. The only way that companies are going to get their act together is if customers change to a competitor because they are fed up with crappy account security.

Re:Passwords are shit.

[mrbester]

Verified by Visa is like this with the added hassle of asking for three specific letters from the password. This is bloody annoying as it means having to tick off letters on your fingers / some mental map to pick the right ones. Even if you have an eight letter word as the complete password who keeps it stored as a byte array in their head? It only adds security by irritation to the one person who is actually authorised to use the damned thing.

Sneakers

[naroom]

My voice is my passport. Verify me.

KeyPass

[ISoldat53]

I use KeyPass to manage my passwords. The only password I need to remember is the one for KeyPass. I don't even know some of the passwords it uses. This should be a feature built into browsers.

Future Article:

[virgnarus]

It's 2155, and Daniel Vectorstar, our resident security analyst, states that everyone this year should keep their passwords to a minimum of at least 3 pages, single-spaced...

Could be even worse?

[TimTucker]

I'd tried accessing a 401k account with JP Morgan a while back and had to call their 800 #.

Interestingly enough, their voice system asked for my password. Not only had they dropped case out the window, but for each character in the password they'd also managed to condense from 3 letters and 1 number down to just 1 number.

Re:Could be even worse?

[bjdevil66]

I've seen the dropping of letter case for at least one major CC company for a password I use (I found out by accident). PaSsWoRd is no safer than password...

That suggests to me that they are much more concerned about protecting the DB tables with the hashes in them from being stolen, vs. what the password combo actually is...

Re:Passwords are shit.

[CanHasDIY]

No, but LastPass does!

...

2013, and still no viable way of punching someone via TCP/IP...

lol

Re:99% blame on system administrators.

[Gorobei]

Hell, make it 13 characters long (just add '~' at the end to indicate snarky,) that way all the haxxors will be confused because they didn't guess you were being snarky.

Web site design confounds saving passwords

[LoadWB]

"Password vaults are likely to become more widely used out of necessity."

A long time ago I memorized my passwords. They started with simple six character passwords to more complex 10 characters. Later as complexity requirements became more disparate between systems, including aging and having to retire otherwise good passwords, I gave up and started saving them, instead.

I use the built-in password saver in Firefox with a master password and FIPS enabled (http://luxsci.com/blog/master-password-encryption-in-firefox-and-thunderbird.html) and with my user profile encrypted by Windows EFS. I use apg (http://www.adel.nursat.kz/apg/) to generate random passwords as long as 48 characters and with character sets dependent upon site requirements.

To my aggravation many web sites do not allow me to save my password. To mitigate this I have a bookmark button with Javascript code to strip all autocomplete=off from the forms. I get more aggravated with sites which have maximum lengths or do not allow certain special characters. So far as I know, if you hash what you get from the user it should not matter what is used for the password,assuming it meets complexity requirements.

Sure, I could get a third party password utility, but I feel that I should be allowed to use the built-in utilities available to me. While my way does have its weaknesses, and I know not everyone manages passwords much worse, the situation is no less aggravating.

Re:Why not use a car key? We solved this one alrea

[drinkypoo]

We did solve this one already and it's called the iButton. The only place I've actually seen them used correctly is The UPS Store. The local one uses them for everything, locks, copiers, you name it. They have them in the wall, in the floor, wherever it's most convenient for them to be to relate to a particular function.

You can get a Java Crypto iButton which is pretty much what it sounds like, so not only can you get one with a crypto accelerator but you can actually upgrade the software that runs on it.

Re:Passwords are shit.

[drinkypoo]

It's ridiculous for a bank to ever depend on a "Secret" question, anyway, unless that question is "what is passphrase number three". Asking what my pet's name was or what street I lived on as a child leaves me vulnerable to data mining attacks.

just five longish words

[Ralph+Spoilsport]

would create so much entropy, it would be nearly uncrackable. Something like the names of the people who lived next door when I was a kid, in order of age:

gabriel janice maximillian kevin patrice

That's 40 letters (including the spaces).

Or, the full name of my cat:

eric the ring tailed chickabeastie defender of the realm

I think it would help if we could use "forbidden" chars like { or or $ etc.

Re:just five longish words

[lennier]

would create so much entropy, it would be nearly uncrackable. Something like the names of the people who lived next door when I was a kid, in order of age

That's nice. Now do it 30 times with a different list of people for every website you visit. And change each of those every year.

The problem isn't so much keeping one password secure for life. It's keeping track of a separate, secure-for-life, password for every. single. data. service. you will ever interact with in your life. Because you can't trust any one of them not to save your password and use it to hack into the others.

Re:Passwords are shit.

[LateArthurDent]

Verified by Visa is like this with the added hassle of asking for three specific letters from the password. This is bloody annoying...

Much more worrying that being annoying, it indicates they store your actual password, not a hash of it. Otherwise, they wouldn't be able to verify individual letters.

Re:Passwords are shit.

[Ol+Olsoc]

Why aren't passphrases more common?

The should be. I enjoy wordplay in the first place, and passphrases just allow me to mess with that. Sometimes for grins I throw in something obscene.

But for all the hoopla, it is pretty clear that Slashdot users and the world at large are severely separated. We're dealing in passphrases and computer generated randome number/letter/symbol sequences, while probably 80 percent of peoople out there are using Password1, or Letmein! or 1234567 other simple to crack passwords.

To the extent that I doubt there is much Brute forcing going on any more. Simply throw out some of the more likely passwords, and you are likely to catch something.

can't be too long

[CaptainNerdCave]

Most awful password experience?
"Password must be at least 12 characters, with one number, one upper case letter, and one special character."
Thisis1passwordsystemthatsucks!
I had to call support when logging in for the first time, and then I learned that there is an unpublished maximum length. Wow.

I keep sending emails to company security admin people about their poor security practices, and I don't think they care.

Security questions?
Pictures?
Forcing some format?

Jeez... at least get with the freaking late twentieth century and let me use up to 256 characters...

Best passwords ever, and easiest to remember: Pick a song that's important to you, and use your favorite line. Ain't nobody going to guess which Celine Dion song I picked...

That Was So 90's

[Zamphatta]

People still use 8 character passwords? Heh. I wish sites would allow us to log in using GnuGP encryption keys. Seems then you could have 1 password that's not really breakable. You'd only have to keep safe a couple files (the public & private key), like physical keys to your house or car. I think most people could handle that.... and it would really simplify password management.

use permutation of common phrase as password

[Forever+Wondering]

How about using the [very simple] hash (e.g. slight mangling) of a common phrase. The phrase is easy to remember. A simple program produces a password.

---

The criteria that a lot of websites need:
- uppercase and lowercase
- must have digits
- must have some non-alphanumeric chars [many don't allow the full set but underscore is usually safe]

I created a very simple perl script to do this. Here are some generated passwords from common phrases that are 2-4 words in length:
12_kCq_wRb_xFn_205
16_pMj_rVd_yZl_sGd_221

37_lPp_dNs_gNr_S_99

193_mSh_rTs_cVs_194

104_mRt_pCn_T_105
109_lCn_lBd_D_180
55_mRt_tSn_kCr_pSf_nSr_S_186

The mangling isn't trying to be cryptographically hard by any means. I don't consider the mangling to particularly clever. But, these seem to me to be sufficiently strong passwords. I haven't run them over a PW strength assessment algorithm but they're stronger than PWs I've used at various websites that rate my personal ones as strong.

The groupings used here are deliberate as one PW in a group might clue in the other(s). If you'd like to take up the challenge, a few hints: (1) phrases you've surely typed before, (2) a common comparison, (3) part of a well known company logo/trademark, (4) an author, a novel, and the author's real name.

[If anyone's interested] I'll post the original phrases, the algorithm description, and the perl script [if I can figure out the html tag slashdot needs for unformatted] tomorrow as a reply to this post.

A new model for passwords?

[Lairdykinsmcgee]

I can admit immediately that I know incredibly little about this subject. So, I'm wondering if the cure for this issue is not necessarily longer passwords, but a different style of passwords? Ignoring the shear inconvenience of a model like any of the following, would they indeed solve the problem? 1) Require captcha every time we enter a password? 2) Include a captcha style word displayed on the page that is tacked on to the end of your personal password? (If my password is 'dogs1337,' and the captcha is 'gelmug,' the new password would simply be 'dogs1337gelmug') 3) Require two distinct 8+ character passwords? Any of the above would at least allow for a significant increase in possible password combinations if all we are worried about is the ability to brute force 8 character passwords. But, I suspect that might not be the only worry?

Re:A new model for passwords?

[Opportunist]

Security comes in three forms:

1. Something you know (passwords, access credentials)
2. Something you have (key, token, access cards)
3. Something you are (biometry, finger scans)

You can hardly improve on a single one of them. Requiring more or more elaborate forms of any does not really increase security sensibly. Brute forcing passwords or credentials is already pretty much a thing of the past. Requiring longer, more elaborate passwords do not necessarily lead to more security for more than one reason. The obvious one is, that you can NOT expect a human being to remember some bizarre character combination like d5Zn$2aUk%kR'snawP. What will people do? Note it down. Which turns security into a combination of 1 and 2, but an OR combination thereof. It's enough to EITHER know the password OR have the post-it that it was written on. The same applies to password vaults, where it becomes enough to have them, not know a password.

A good improvement of security means that you add another security group to the fold with an AND combination. Require a password AND a token. Like ATMs do, requiring your bank card AND a code. That it's not foolproof, well, ATMs are a good example why not. Coincidentally, a good reason just WHY they are not is actually lying in the fact that people, again, make the mistake of writing down their ATM code and storing it together with their card, reducing the security to a Model 2 only security. Which also illustrates why it is usually pretty pointless to create more of the same kind of security layer, because requiring two passwords only means I have to sniff two (being entered at the same time, meaning I get them at the same time), or requiring two tokens (because most humans store them at the same place, like the ATM card and the written down code).

So improving security can only mean requiring authentication from another group of the three. But ADDITIONALLY. Not instead of. Replacing passwords with fingerprint scanners (as seen quite often today, especially with laptops) does not really increase security by a lot. At least if we're talking about company laptops where the (currently) authorized user may well not be one anymore tomorrow. Though at least biometry ensures that the person entrusted with access cannot easily grant it to a third person, unless he is physically present.

Wish there was a hallOshame for bad password sites

[kfsone]

One of the reasons I find myself needing a password vault is the bizzare array of password policies out there today. Take Chase Bank, for instance, who only allow alpha-numeric characters.

But the worst part is often the why: In an effort to assist you in securing your password, some sites want to perform password validation server-side. Just stop and think about that for a moment. Why would a website exclude characters like apostrophe, percent, semicolon, etc, from a password field?

Well done: In order to assist your security today, I'll be storing your information alongside a plain-text history of your passwords - you can trust us! Now, obviously, if we allowed funny characters into those passwords, all hell could break loose. But by restricting you to easier to crack passwords, and then storing them in plain text too, the only risk is if we screw something up in the code that checks incoming passwords. We just proved we're smart enough to have already thought of that!

Re:Passwords are shit.

[camperdave]

Probably not. I can type my mis-spelt Shakespeare quote of a passphrase faster than I can type an obtuse non-alphanumeric-laden password, because I'm far better at typing English sentences than I am weird symbol sequences.

Never did any assembly language programming, did you?

Re:99% blame on system administrators.

[camperdave]

What the blaze is a six digit company? Ranked in Fortune 999999, or something?

Deloitte, get with the times

[Opportunist]

Who in their sane mind (in ITSEC, that is) is still dabbling with brute force problems? Seriously, Deloitte, stick with economy audits, at least there you can't do much more harm than has already been done to this economy, but stay out of real work, will ya? At least we could do without your "recommendations" to your clients to require bizarre combinations of characters from their employees that only leads to them noting them down on a post-it and stick it underneath their keyboards (which, oddly, you do NOT have a recommendation against ... but I ramble).

Whether your password has 3 or 30 characters, and how many special characters in what odd combination and how many generations back you may not repeat even 2 of those characters again is moot. NOBODY on the "other side" bothers with brute forcing anymore. Passwords are being sniffed, hacked or simply lifted in other ways, from keyloggers to the good old "this is your IT-department on the phone, we need your password". And when I have your secretary TELL me her password, it's frickin' pointless to make it 100 chars long. Only means I have to talk to her longer. Which, I admit, may or may not be a nuisance to me when I get tasked with testing something you "secured". Depending on how nasty the voice of the person I audit is.

The security hole is NOT the length of your password. Get with the times, brute forcing just simply and plainly takes too long. Even if it's only a 3 char password, there are simply ways that get the attacker access far easier, more reliably and with a lot less effort.

toilette and douche

[ajdub]

the bobs hive is not exactly the first place i tend to think of when i want to know about information security trends... maybe they should stick to their core competencies. like really busy powerpoint templates that the government likes and "anybody whoever built an empire..."

1-2-3-4-5

[conspirator23]

Wait, that's the combination on my luggage!

Just make easy to remember passwords.

[blanks]

Am I the only person who generates easy to remember yet difficult to read / crack passwords based on things like movie / cartoon / book quotes or music lyrics? I don't think I have ever make a totally random password for myself and instead create easy to remember passwords from all sorts of phrases. The only problem with this is when sites disallow long passwords (so many limit passwords under 10,12,20 characters).

Take for example (random things off the top of my head) the sun will come up to morrow, to morrow. Tswcu2m2m. Or Dance your cares away Worrys for another day DycaWfad. Throw in a few !! or $$ at the beginning or ending and you're set.

password

[the+eric+conspiracy]

I only have to have a password stronger than yours.

Re:99% blame on system administrators.

[dkf]

What the blaze is a six digit company? Ranked in Fortune 999999, or something?

You seriously underestimate the size of the economy. A mom-and-pop store is a six-digit company...

Re:Sites that prevent the browser from remembering

[the+eric+conspiracy]

There are a variety of workarounds for that problem.

Some I've seen are:

1. Browser plugin.
2. Bookmarket
3. Use of console to enter Javascript

http://superuser.com/questions/405877/is-there-a-browser-extension-that-bypasses-restrictions-of-pasting-passwords

Re:Sites that prevent the browser from remembering

[jatoo]

I like that Google asks you for your password again for certain tasks. I don't tell my google password to anyone, but I do often leave my session open when I walk away (who doesn't?). I'm willing to take the risk that someone could get 5 minutes looking at my inbox, but I don't want to take the risk that the person could read my web history or change my password.

Prompting you again for these tasks makes perfect sense.

Yeah, But That Darned Real World.....

[rueger]

Last week I ran into the first site that actually REQUIRED a punctuation character in the password. My immediate thought was of the time a couple of years ago when I seemed to keep running into sites that refused to accept my firstname.lastname@gmail.com, address when I tried to register because no e-mail address would have a period in it.

Honestly it feels to me that the whole username/password regime is on its last legs, and is about to collapse under its own weight.

I really don't want biometrics, but I could certainly live with a minimal RFID/NFC key (just like my car, or maybe my phone) that would authenticate me on whatever machine I'm using. If we need something, I want it easy and portable. Maybe a pinky ring with embedded chip?

Meanwhile I'll stick with one long complex tricky password for sites that actually matter (like banks); and another short snappy one for stuff like slashdot and forums that don't (90% of places). About four times a year I change them both to keep stuff fresh.

For everything else my password is "Forgot password? Click here to reset."

Somehow, xkcd always says it perfectly

[ZeldorBlat]

http://xkcd.com/936/

I just plain gave up

[cpct0]

At first, I used complex alphanumeric passwords.
Then some system asked me for some Case. So I added up some actual Easily Guessable Case.
Then some system asked me for some Sp#ci@l characters. So I added them (@g@!n e@sy to f!nd).
Then some system decided it didn't like Sp#ci@l characters. So I only added them when needed only
Then I tried migrating to Pass Phrases. However, the Sp#ci@l still needs to be there sometimes, and sometimes they don't like that, and sometimes, spaces aren't supported, and sometimes, there's a limit of 15 characters.
Then, I found one site that actually asked me for PRECISELY 8 characters, with mixed, number and special. The frag!
And I have two places where I need to switch passwords every now and then (3 months and 6 months)

So I freaking gave up. At home, my crap is seriously secure. It's long pass sentences with some mistakes in them, it's easy to remember them, and hard to figure them out. Whenever I can, I use these pass sentences, always different, because my brain actually remembers these passwords, and they are kind of related to the system in question, for example, on a Fruity system, I might write "I SIRIously love cider" ;)

Everywhere else, the "dick" sites and systems, I have 3-4 passwords, precisely 8 characters in length, with option@1 specials and one ever incrementing character somewhere... Because I need to remember these.

Oh and then, for crappy sites I couldn't care less about, I'm in the top 50 easiest passwords to find. Find them, I couldn't care less. :)

Re:99% blame on system administrators.

[camperdave]

What the blaze is a six digit company? Ranked in Fortune 999999, or something?

You seriously underestimate the size of the economy. A mom-and-pop store is a six-digit company...

You haven't answered the question. what is a six digit company?

Don't mistake inconvenience for security.

[SgtChaireBourne]

Don't mistake inconvenience for security. A lot of security theater is very inconvenient, often on the premise that if it hurts more it must be working better. Real security improvements have little or no effect on usability, and can actually go either way easier or harder.

except

[postermmxvicom]

Except you would have to dedicate as much time to it as it would lock someone out. For instance, 5 bad attempts take you 0s + 1s + 2s + 4 + 8s = 15s and locks them out for the next 16s. So, if you wanted to lock someone out for a day, you have to spend a day (less one second) locking them out. Even if you automated this attack, surely IT could handle that.

Re:Sites that prevent the browser from remembering

[Nofsck+Ingcloo]

It turns out that the numbnuts at PogoPlug have somehow arranged to forbid pasting userid or password into their login form. I emailed them about it and their response was that they would consider changing it as a feature enhancement. So keepass is useless there and I have to hand type my complex password. Idiots!

Re:Passwords are shit.

[L4t3r4lu5]

My "bank" (Nationwide Building Society) mails you a device which uses a debit card linked to your account, your PIN, and a specific key schedule like RSA tokens to log in and sign transactions. To log in you are provided with an 8 digit code, to sign a transaction you must provide a one-time code for the transaction generated by Nationwide and the amount paid to the device, and it returns an 8 digit signing key.

I wish I could use this when I go out shopping. It's brilliant.

Not the length that counts, seemingly

[DulcetTone]

The issue appears to be using a password that is one of a top N passwords.

The XKCD comic is laughably inaccurate, .e.g, in that it says that the presence or absence of capitals is one bit of entropy. Of course it is -- if you regard the first character ONLY as the candidate for capitalization.

tone

Actually, the REAL solution...

[raehl]

...don't let people have access to the hashed passwords for your system.

From the user's perspective, it's don't use the same password in more than one place, so that if one place does let its hashed passwords loose, it can't be used against you.

8 character?

[Bryan+Bytehead]

My 9 character password has been busted for two years now. I now have a system that gives me 13 character passwords that are now different for each site. Unfortunately, not every account, something I've been thinking about. That seems adequate for now, my wife was bitching about how she had to go with the new system when I was trying out Win 8 Consumer Preview since I was using my Hotmail account.

Maybe using 4 "symbols" as it were, but I wouldn't limit myself to seven characters, I'm thinking about adding in a number sequence that not many people would actually know (phone number from the '60/'70s, my first work data entry machine (029 and 129 would NOT be the numbers! :), possibly the now current address of a former home that was only a RR number back then, actually, quite a few of those...), and finally adding something to identify the site to identify the account.

Of course, I always had to deal with the sites that only allowed 8 characters way back then. Some would take more, but the actual password was limited to 8. Sad actually.

Passwords are on their way to being dead. It really is only a matter of time.

I was one of the lucky 250K+ of Twitter that had to reset their passwords.

Re:Passwords are shit.

[chrismcb]

I like how a forum, for a small community, has better password requirements than my bank does.