Talk:Dictionary attack: Difference between revisions

From Citizendium
Jump to navigation Jump to search
imported>Howard C. Berkowitz
imported>Sandy Harris
Line 4: Line 4:


Thinking out loud here, I wonder if there is an article inside this on password selection, for which this gives some of the reasons -- bad passwords are also subject to social engineering. It might be worth mentioning that reusable passwords aren't the ideal solution for strong authentication; there's no dictionary attack against a security token. [[User:Howard C. Berkowitz|Howard C. Berkowitz]] 15:05, 27 July 2010 (UTC)
Thinking out loud here, I wonder if there is an article inside this on password selection, for which this gives some of the reasons -- bad passwords are also subject to social engineering. It might be worth mentioning that reusable passwords aren't the ideal solution for strong authentication; there's no dictionary attack against a security token. [[User:Howard C. Berkowitz|Howard C. Berkowitz]] 15:05, 27 July 2010 (UTC)
: I think eventually we need something at [[User authentication]]. There are relevant bits here, at [[Cryptography#One-way_encryption]] and likely elsewhere, but they need to be tied together and other methods — tokens, one-time passwords, smartcards, biometrics, ... — covered. [[User:Sandy Harris|Sandy Harris]] 16:28, 27 July 2010 (UTC)

Revision as of 11:28, 27 July 2010

This article is a stub and thus not approved.
Main Article
Discussion
Related Articles  [?]
Bibliography  [?]
External Links  [?]
Citable Version  [?]
 
To learn how to update the categories for this article, see here. To update categories, edit the metadata template.
 Definition Attacking a password system by encrypting an entire dictionary and then checking if any stored passwords match [d] [e]
Checklist and Archives
 Workgroup category computers [Editors asked to check categories]
 Subgroup category:  Security
 Talk Archive none  English language variant Canadian English

Password selection; authentication; thinking aloud

Thinking out loud here, I wonder if there is an article inside this on password selection, for which this gives some of the reasons -- bad passwords are also subject to social engineering. It might be worth mentioning that reusable passwords aren't the ideal solution for strong authentication; there's no dictionary attack against a security token. Howard C. Berkowitz 15:05, 27 July 2010 (UTC)

I think eventually we need something at User authentication. There are relevant bits here, at Cryptography#One-way_encryption and likely elsewhere, but they need to be tied together and other methods — tokens, one-time passwords, smartcards, biometrics, ... — covered. Sandy Harris 16:28, 27 July 2010 (UTC)