Too much predictable Passwords

Solutions Magazine's picture
Submitted by Solutions Magazine on Wed, 25/03/2009 - 16:03

 

We keep on repeating: the man is the first source of vulnerability of any
information system. The analysis conducted by blogger Robert Graham
on 20 000 passwords which were stolen and published following the hacking of the site phpbb.com is proving this once again.

While good practice recommends to combine letters and numbers in a password, one third of the  users of the website only use a word from the dictionary.
Amongst them, the majority chooses a single term designating a fruit or a color for example, rather than an abstract concept or a term sensitive to the spelling. Most obvious
yet 16% of passwords are first names, a choice that facilitates the task of the hackers seeking access to the account of a user who they know the name from.

"123456" and "qwerty" ... are in the top 5 of the passwords.
For 14% of the users, the password consists of a sequence of adjacent keys on the keyboard. Predictable, "123456" and "qwerty" are always on top, followed by combinations such as "1a2z3e"or"1aqw2zsx ", two codes expressed in azerty which by their frequency only offer a little protection. Finally, 4% of the users choose the term "Password" ....

Our partner: solutions-magazine