Interesting talk on password security/usability research. https://www.ted.com/talks/lorrie_faith_cranor_what_s_wrong_with_your_pa_w0rd

Name
Options
Comment
File	Or URL:
Whitelist Token

Video Stream Embedding
Advanced Options	Always Noko Always Sage
Video Timestamp
Captcha Type	Captchouli
Spoiler	Unset Spoiler Image NSFW Image
Password	(For file deletion.)
Markup tags exist for bold, itallics, header, spoiler etc. as listed in " [options] > View Formatting "

File:lorrie_faith_cranor_what_s….jpg (317.58 KB,1280x720)

Anonymous 09/14/20 (Mon) 21:41:56 No.4433

Interesting talk on password security/usability research.
https://www.ted.com/talks/lorrie_faith_cranor_what_s_wrong_with_your_pa_w0rd

Anonymous 09/14/20 (Mon) 21:59:11 No.4434

I used to think using Passw0rd for my WoW account was so clever
(it wasn’t)

Anonymous 09/14/20 (Mon) 23:25:43 No.4435

Are passphrases weak against dictionaries? I don't know how much time you add by jumping from one or two words to four.

Anonymous 09/15/20 (Tue) 00:14:18 No.4436

>>4435
The number of possibilities for the attacker to check is the number of words you're choosing from to the power of 4. So if you're choosing randomly from 2000 words for example, one word takes 2 thousand tries, two words take 4 million tries, three words take 8 billion tries, four words take 16 trillion tries, and so on.

Anonymous 09/15/20 (Tue) 00:23:13 No.4438

>>4436
I should also point out that if the words are related to each other, that greatly reduces the number of tries that are needed, because the attacker can only test combinations where the words are related. To get the most out of the four words technique, the words have to be truly random and independently chosen.

Anonymous 09/15/20 (Tue) 00:40:09 No.4439

>>4436
>>4438
So it'd be a lot safer than any eight digit password but not as safe as a longer pronounceable arbitrary pass or one with numbers and symbols. It's not a bad trade-off.

Anonymous 09/15/20 (Tue) 01:53:08 No.4440

A random 8 word password would be better than 8 digit because there are more words possible than characters... but they shouldn't be in a sequence

Anonymous 09/15/20 (Tue) 01:59:38 No.4441

aw shit I meant character

Anonymous 09/15/20 (Tue) 02:35:50 No.4442

I sometimes use youtube links as the password. How safe are they?

Anonymous 09/15/20 (Tue) 02:45:12 No.4443

safe i think. Theres a numberphile on how YouTube will never run out of links, but if you let someone know that you do this then it's easier because they can just assume your pass is 8 characters long and not have to waste time brute forcing all 0-7 base64 characters

Anonymous 09/15/20 (Tue) 08:58:45 No.4447

>>4442
https://www.google.com/search?q=site:https://www.youtube.com/watch%3Fv=
3.78 Youtube videos according to that search, so 3.78 billion tries.

Anonymous 09/22/20 (Tue) 22:56:26 No.4553

>>4447
And could be substantially less of a search space if it's a popular video or one that the attacker knows the user likes.

Anonymous 09/22/20 (Tue) 23:55:20 No.4555

test test

/b/ - Boson Technology

New Reply