Zero-Sum Password Cracking Game: A Large-Scale Empirical Study on the Crackability, Correlation, and Security of Passwords

Shouling Ji; Shukun Yang; Xin Hu; Weili Han; Zhigong Li; Raheem Beyah

首页> 外文期刊>IEEE transactions on dependable and secure computing >Zero-Sum Password Cracking Game: A Large-Scale Empirical Study on the Crackability, Correlation, and Security of Passwords

【24h】

Zero-Sum Password Cracking Game: A Large-Scale Empirical Study on the Crackability, Correlation, and Security of Passwords

机译：零和密码破解游戏：密码可破解性，相关性和安全性的大规模实证研究

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

In this paper, we conduct a large-scale study on the crackability, correlation, and security of 145 million real world passwords, which were leaked from several popular Internet services and applications. To the best of our knowledge, this is the largest empirical study that has been conducted. Specifically, we first evaluate the crackability of 145 million real world passwords against 6+ state-of-the-art password cracking algorithms in multiple scenarios. Second, we examine the effectiveness and soundness of popular commercial password strength meters (e.g., Google, QQ) and the security impacts of username/email leakage on passwords. Finally, we discuss the implications of our results, analysis, and findings, which are expected to help both password users and system administrators to gain a deeper understanding of the vulnerability of real passwords against state-of-the-art password cracking algorithms, as well as to shed light on future password security research topics.

机译：在本文中，我们对1.45亿个现实世界密码的可破解性，相关性和安全性进行了大规模研究，这些密码是从几种流行的Internet服务和应用程序中泄露的。据我们所知，这是已进行的最大的经验研究。具体来说，我们首先在多种情况下针对6种以上的最新密码破解算法评估了1.45亿个现实世界密码的可破解性。其次，我们研究了流行的商用密码强度计（例如Google，QQ）的有效性和可靠性，以及用户名/电子邮件泄漏对密码的安全性影响。最后，我们讨论了我们的结果，分析和发现的含义，它们有望帮助密码用户和系统管理员更深入地了解真实密码针对最新密码破解算法的漏洞，例如并阐明未来的密码安全性研究主题。

著录项

来源
《IEEE transactions on dependable and secure computing》 |2017年第5期|550-564|共15页
作者
Shouling Ji; Shukun Yang; Xin Hu; Weili Han; Zhigong Li; Raheem Beyah;
展开▼
作者单位

College of Computer Science and Technology, Zhejiang University, Hangzhou, Zhejiang, China;

School of Electrical and Computer Engineering, Georgia Institute of Technology, Atlanta, GA;

IBM T. J. Watson Research Center;

Software SchoolFudan University;

Software SchoolFudan University;

School of Electrical and Computer Engineering, Georgia Institute of Technology, Atlanta, GA;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
Markov processes; Dictionaries; Training; Security; Training data; Electronic mail; Games;

机译：马尔可夫过程;词典;培训;安全性;培训数据;电子邮件;游戏;
入库时间 2022-08-17 13:36:17

相似文献

外文文献
中文文献
专利

1. User practice in password security: An empirical study of real-life passwords in the wild [J] . Chao Shen, Tianwen Yu, Haodi Xu, Computers & Security . 2016,第auga期

机译：密码安全性中的用户实践：野外真实密码的实证研究
2. GPUs power games, crack passwords [J] . Head C. PC World . 2010,第11期

机译：GPU助力游戏，破解密码
3. GPUs Power Games, Crack Passwords [J] . Head Chris PC World . 2010,第11期

机译：GPU助力游戏，破解密码
4. Performance factors of a CUDA GPU parallel program: A case study on a PDF password cracking brute-force algorithm [C] . Ignatius Leo Sri Hendarto, Yusuf Kurniawan International Conference on Computer, Control, Informatics and its Applications . 2017

机译：CUDA GPU并行程序的性能因素：以PDF密码破解蛮力算法为例
5. A Study on Homophone Words in the Dictionary-Based Password Cracking [D] . Mandapaka, Ajay. 2017

机译：基于字典的密码破解中的同音词研究
6. Recurrent GANs Password Cracker For IoT Password Security Enhancement [O] . Sungyup Nam, Seungho Jeon, Hongkyo Kim, 2020

机译：反复使用GAN密码破解程序可增强IoT密码安全性
7. Measuring the impact of information security awareness on social networks through password cracking [O] . Okesola Julius Olatunji 2014

机译：通过密码破解衡量信息安全意识对社交网络的影响

Zero-Sum Password Cracking Game: A Large-Scale Empirical Study on the Crackability, Correlation, and Security of Passwords

摘要

著录项

相似文献

相关主题

期刊订阅