Monday, June 1, 2009 [Tweets] [Favorites]

Pass Phrases, Not Passwords

Vincent Gable:

What authentication code do you think is harder for a bad guy to hack, the 7 character strong password “1Ea.$]/”, or the pneumonic for the first 3 characters, “One Elvis Amazon”? Certainly “1Ea.$]/” is harder for a person to remember. It feels like it should be harder to break. But a computer, not a person, is going to be doing the guessing, and all it cares about is how big the search space is.

Comments

Stay up-to-date by subscribing to the Comments RSS Feed for this post.

Leave a Comment