random password generators
play

Random Password Generators Michael Leonhard uic@tamale.net V.N. - PowerPoint PPT Presentation

Apr 22, 2023 •382 likes •642 views

Random Password Generators Michael Leonhard uic@tamale.net V.N. Venkatakrishnan venkat@cs.uic.edu Department of Computer Science University of Illinois at Chicago IEEE Electro/Information Technology Conference 2007 Leonhard &

  1. Random Password Generators Michael Leonhard uic@tamale.net V.N. Venkatakrishnan venkat@cs.uic.edu Department of Computer Science University of Illinois at Chicago IEEE Electro/Information Technology Conference 2007 Leonhard & Venkatakrishnan (UIC) Random Password Generators eit 2007 1 / 25

  2. Everyday Random Passwords Random Password: a password created for you by a machine Bank card PIN Online banking assigned login ID Forgot your password? Get a new (random) one by email. Leonhard & Venkatakrishnan (UIC) Random Password Generators eit 2007 2 / 25

  3. Outline Why We Need Random Passwords 1 Making Good Passwords 2 Our Experiment 3 Conclusion 4 Leonhard & Venkatakrishnan (UIC) Random Password Generators eit 2007 3 / 25

  4. Passwords Are Important Password authenticates user to application. Break-ins harm two parties: ◮ User (SSN, Name, Address, Reputation) ◮ Application (Site Content, Trade Secrets, Liability) Applications have a big stake in password security. Yet, users choose their passwords. Leonhard & Venkatakrishnan (UIC) Random Password Generators eit 2007 4 / 25

  5. User Motivation Example: www.NewYorkTimes.com Password is a nuisance to user. User not motivated to use a good password. Example: www.MidAmericaBank.com Password protects user’s money. Leonhard & Venkatakrishnan (UIC) Random Password Generators eit 2007 5 / 25

  6. Attacking Passwords Guess Intercept at User’s computer Intercept on Network Crack application, recover Password Hashes “Chicago08”: 0x26ba841da2ec8b6118ab63f1ea281d. . . 61f6 Attack another application, recover reused password Leonhard & Venkatakrishnan (UIC) Random Password Generators eit 2007 6 / 25

  7. Reusing Passwords Using one password for multiple applications. Attacker cracks easy target (myspace.com), learns passwords of hard target (bank.com) Application can stop reuse by assigning a password Limitation: person can reuse on future accounts Leonhard & Venkatakrishnan (UIC) Random Password Generators eit 2007 7 / 25

  8. Password Entropy How to measure the randomness of a password? Generator chooses password p from S , set of all potential passwords | S | is the number of possible passwords log 2 | S | is the bits of entropy in p Example Choose p from the set S = { a , b , c , d , e , f , g , h } . | S | = 8 so p has 3 bits of entropy. Each element must have the same chance of being chosen. Leonhard & Venkatakrishnan (UIC) Random Password Generators eit 2007 8 / 25

  9. Thought-Up Passwords Think up a password with mixed-case letters and numbers. It probably has: Words Capital letters starting words Numbers at end GummyBear55 Paris98 GoSox2007 Problem: these are in cracking dictionaries ⇒ Offline Attack is Easy Leonhard & Venkatakrishnan (UIC) Random Password Generators eit 2007 9 / 25

  10. Think-Up Phrase-based Passwords “O Romeo, Romeo! wherefore ⇒ “ORRwatR?” art thou Romeo?” “1. A robot may not injure a ⇒ “1Armniahb” human being . . . ” Problem: same weakness as regular thought-up passwords The Attack: Harvest phrases from the Web, make a cracking dictionary See paper by Kuo, Romanosky, and Cranor in SOUPS’06 Leonhard & Venkatakrishnan (UIC) Random Password Generators eit 2007 10 / 25

  11. Our Objectives We want to study three random password generation schemes. while paying attention to: Security . Memorability . User Affinity . Security studied through entropy analysis of the schemes. Memorability and affinity through actual usability study we conducted. Leonhard & Venkatakrishnan (UIC) Random Password Generators eit 2007 11 / 25

  12. Scheme 1: Random Characters (AlphaNum) Use software to choose letters and numbers. dVysgZ EDaL8p a1LCLQ Every password is equally probable ⇒ GOOD SECURITY (35.7 bits of entropy) Good: very short Bad: hard to memorize Leonhard & Venkatakrishnan (UIC) Random Password Generators eit 2007 12 / 25

  13. Sch.2: Random Words (Diceware) Word List . . . 16666 clerk 21111 cliche 21112 click 21113 cliff ← 21114 climb plaid hey benz fog bribe briny doe slim dodo Every sequence of words is equally probable ⇒ GOOD SECURITY (38.8 bits of entropy) Good: easy to remember Bad: long (for typing) Leonhard & Venkatakrishnan (UIC) Random Password Generators eit 2007 13 / 25

  14. 3: Random Syllables (Pronounce3) Vowels Templates a, e, i, o, u αββαβαβα , ↓ ↓↓ ↓ αββααββα , ⇒ ⇒ adpoaska αββααββα βααβαββα , ↑↑ ↑↑ βααββαβα , βαβααββα , Consonants βαβαβαβα , b, c, ch, d, f, g, h, j, k, l, m, βαβαββαα n, p, ph, r, s, st, v, w, x, y, z Every word has equal chance ⇒ GOOD SECURITY (30.8 bits of entropy) Good: easy to remember Leonhard & Venkatakrishnan (UIC) Random Password Generators eit 2007 14 / 25

  15. Which Generator is Best? Metrics: Security: Amount of entropy in each password Memorability: Can you remember the password? Affinity: Do you like the password? Leonhard & Venkatakrishnan (UIC) Random Password Generators eit 2007 15 / 25

  16. The Experiment Subjects: students in a class on computer security Questionnaire 1: Your assigned password is: adpoaska Write it, solve these puzzles, write it again Leonhard & Venkatakrishnan (UIC) Random Password Generators eit 2007 16 / 25

  17. Password Memorability Study Questionnaire #1 October 16, 2006 Michael Leonhard Thank you for participating in this study of password generators. This study compares the quality of passwords generated by various algorithms. You will act as a user of a website. The website generates a random password for you. You will memorize this password by writing it several times. After two weeks, on October 30, you will need to remember the password and log into the website. Please treat this password as you would any normal password of yours. Your participation is greatly appreciated. Please write your name: _____________________________________ Please pretend that you have registered on a website called Joe Maxwell Internet Auctions. Joe Maxwell Internet Auctions Thank you for registering. Your password is: a1LCLQ To help you memorize your password, please write it in the login box below. Joe Maxwell Internet Auctions Leonhard & Venkatakrishnan (UIC) Random Password Generators eit 2007 17 / 25

  18. Please take a moment and count from 1 through 42 in your mind. Then login again: Joe Maxwell Internet Auctions Login Password: Login Now please solve the following set of equations for y: 2x = 102 – 2y x = 2y + 42 Now login again: Joe Maxwell Internet Auctions Login Leonhard & Venkatakrishnan (UIC) Random Password Generators eit 2007 18 / 25 Password:

  19. 2 weeks pass. . . Questionnaire 2: Remember your assigned password, write it Please answer these questions Leonhard & Venkatakrishnan (UIC) Random Password Generators eit 2007 19 / 25

  20. Password Memorability Study Questionnaire #2 October 30, 2006 Michael Leonhard Thank you for participating in my study of password generators! Two weeks ago, you received a sheet like this one. Using that sheet, you registered at Joe Maxwell Internet Auctions, received a password, and practiced logging in. This sheet is the second part of the study. If you choose to participate in this part of the study, please try to remember your password and log in again. If you do not wish to participate, please leave the sheet blank. I will keep your names and individual performance secret. I greatly appreciate your participation. Please write your name: _____________________________________ Please pretend that you have returned to Joe Maxwell Internet Auctions website. Try to remember your password and write it in the box below. Joe Maxwell Internet Auctions Login Password: Login Please log in again. If you are unsure of your password, please try a different one. Joe Maxwell Leonhard & Venkatakrishnan (UIC) Random Password Generators eit 2007 20 / 25

  21. Please log in again. If you are still unsure of your password, please try a different one. Joe Maxwell Internet Auctions Login Password: Login Please circle your answers to the following questions: Did you remember your password? yes probably don’t know probably not no Did you write your password on the questionnaires? yes no Did you write your password somewhere else? yes no How do you like your password? hate it don’t like it ok like it love it How did you remember your password? Leonhard & Venkatakrishnan (UIC) Random Password Generators eit 2007 21 / 25 Was your password easy or hard to remember? Why do you think so?

  22. Results 19 Participants completed both questionnaires. AlphaNum Diceware Pronounce3 Assigned 6 7 6 Recalled (0 errors) 1 2 1 Recalled (1 error) 2 0 1 Questionnaire 2 yielded much valuable feedback Leonhard & Venkatakrishnan (UIC) Random Password Generators eit 2007 22 / 25

  23. Related work Bunnel et al (CS’97) performed a similar study. schemes were simpler than ours. Pwdgen (Security’05), PwdMultiplier (SOUPS’06) - schemes for generation / storage of online passwords. Both criticized in usability study by Chiasson et al (Security’06). U.S. DoD guidelines on password security. Our technique for analyzing passwords based on this study. Leonhard & Venkatakrishnan (UIC) Random Password Generators eit 2007 23 / 25

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Random numbers We have seen that in many applications we need random number generators For

Random numbers We have seen that in many applications we need random number generators For

Random numbers We have seen that in many applications we need random number generators For example we sue random number generator to obtain session keys; to avoid key guessing If an adversary sees a sequence of session keys He/she

426 views • 16 slides
Draft History of Random Number Generators Seed x 0 , x i = f ( x i 1 ) , u i = g ( x i )

Draft History of Random Number Generators Seed x 0 , x i = f ( x i 1 ) , u i = g ( x i )

1 Draft History of Random Number Generators Seed x 0 , x i = f ( x i 1 ) , u i = g ( x i ) Pierre LEcuyer 2 Draft Once upon a time, ... 5000 years ago Dice, coins, and other devices were used long ago to make random selections

815 views • 50 slides
Introduction to Pseudo-Random Number Generators Nicola Gigante March 9, 2016 Why random

Introduction to Pseudo-Random Number Generators Nicola Gigante March 9, 2016 Why random

Introduction to Pseudo-Random Number Generators Nicola Gigante March 9, 2016 Why random numbers? Lifes most important questions are, for the most part, nothing but probability problems. Pierre-Simon de Laplace 2 Why random numbers?

684 views • 55 slides
Introduction to Pseudo-Random Number Generators Nicola Gigante December 21, 2016 Why random

Introduction to Pseudo-Random Number Generators Nicola Gigante December 21, 2016 Why random

Introduction to Pseudo-Random Number Generators Nicola Gigante December 21, 2016 Why random numbers? Lifes most important questions are, for the most part, nothing but probability problems. Pierre-Simon de Laplace 2 Why random numbers?

1.37k views • 63 slides
Pseudo-Random Generators Computer programming (e.g. randomized algorithm) Elementary and

Pseudo-Random Generators Computer programming (e.g. randomized algorithm) Elementary and

Why do we need random numbers? Simulation Sampling Numerical analysis Pseudo-Random Generators Computer programming (e.g. randomized algorithm) Elementary and critical element in many cryptographic protocols Usually:

157 views • 5 slides
Pseudorandom generators from polarizing random walks Ka Kaave Ho Hossei eini (UC San Diego)

Pseudorandom generators from polarizing random walks Ka Kaave Ho Hossei eini (UC San Diego)

Pseudorandom generators from polarizing random walks Ka Kaave Ho Hossei eini (UC San Diego) Eshan Chattopadhyay (IAS Cornell) Pooya Hatami (UT Austin Ohio State) Shachar Lovett (UC San Diego) Outline Introduce Pseudorandom generators

1.41k views • 88 slides
Random number generators and random processes Eugeniy E. Mikhailov The College of William &

Random number generators and random processes Eugeniy E. Mikhailov The College of William &

Random number generators and random processes Eugeniy E. Mikhailov The College of William & Mary Lecture 11 Eugeniy Mikhailov (W&M) Practical Computing Lecture 11 1 / 11 Statistics and probability intro Mathematical and physical

551 views • 17 slides
ECEN 5022 Cryptography Pseudo Random Number Generators Peter Mathys University of Colorado

ECEN 5022 Cryptography Pseudo Random Number Generators Peter Mathys University of Colorado

Pseudo Random Number Generators ECEN 5022 Cryptography Pseudo Random Number Generators Peter Mathys University of Colorado Spring 2008 Peter Mathys ECEN 5022 Cryptography Pseudo Random Number Generators Random Number Generation Random

352 views • 14 slides
Draft 1 On the Lattice Structure of MIXMAX Random Number Generators Pierre LEcuyer Joint

Draft 1 On the Lattice Structure of MIXMAX Random Number Generators Pierre LEcuyer Joint

Draft 1 On the Lattice Structure of MIXMAX Random Number Generators Pierre LEcuyer Joint work with Paul Wambergue, Erwan Bourceret, and Marc-Antoine Savard MCQMC, Rennes, July 2018 Draft 2 MIXMAX Generators [Akopov, Savvidy, et al.

508 views • 19 slides
Draft History of Random Number Generators Seed x 0 , x i = f ( x i 1 ) , u i = g ( x i )

Draft History of Random Number Generators Seed x 0 , x i = f ( x i 1 ) , u i = g ( x i )

1 Draft History of Random Number Generators Seed x 0 , x i = f ( x i 1 ) , u i = g ( x i ) Pierre LEcuyer Ecole Polytechnique, Palaiseau, D ec. 2017 2 Draft Once upon a time, ... 5000 years ago Dice, coins, and other devices

1.35k views • 85 slides
AMath 483/583 Lecture 26 Outline: Monte Carlo methods Random number generators

AMath 483/583 Lecture 26 Outline: Monte Carlo methods Random number generators

AMath 483/583 Lecture 26 Outline: Monte Carlo methods Random number generators Monte Carlo integrators Random walk solution of Poisson problem R.J. LeVeque, University of Washington AMath 483/583, Lecture 26 Announcements

587 views • 41 slides
Ensembles of random generators of Markovian quantum evolution: spectral properties and

Ensembles of random generators of Markovian quantum evolution: spectral properties and

Ensembles of random generators of Markovian quantum evolution: spectral properties and universality Sergey Denisov (Oslo Metropolitan University) and Wojciech Tarnowski (Jagiellonian University), Dariusz Chruciski (Nicolaus Copernicus

329 views • 28 slides
Random Number Generators: Design Principles and Statistical Testing Pierre LEcuyer Mixmax

Random Number Generators: Design Principles and Statistical Testing Pierre LEcuyer Mixmax

1 Random Number Generators: Design Principles and Statistical Testing Pierre LEcuyer Mixmax Workshop, CERN, Geneva, July 2016 2 What do we want? Sequences of numbers that look random. 2 What do we want? Sequences of numbers that look

1.31k views • 128 slides
What does a random 3-manifold look like? Nathan Dunfield University of Illinois slides and

What does a random 3-manifold look like? Nathan Dunfield University of Illinois slides and

What does a random 3-manifold look like? Nathan Dunfield University of Illinois slides and references at: http://dunfield.info/preprints/ Random Heegaard splittings: Fix g and Pick at random: generators S for MCG ( g ) . A random

320 views • 4 slides
Canary Numbers: Design for Light-weight Online Testability of True Random Number Generators

Canary Numbers: Design for Light-weight Online Testability of True Random Number Generators

Canary Numbers: Design for Light-weight Online Testability of True Random Number Generators Vladimir Roi, Bohan Yang, Nele Mentens and Ingrid Verbauwhede Acknowledgment This work is supported in part by the European Commission through the

348 views • 19 slides
Security of Pseudo-Random Number Generators With Input Damien Vergnaud cole normale

Security of Pseudo-Random Number Generators With Input Damien Vergnaud cole normale

Security of Pseudo-Random Number Generators With Input Damien Vergnaud cole normale suprieure INRIA PSL wr0ng April, 30th 2017 (with Yevgeniy Dodis, David Pointcheval, Sylvain Ruhault & Daniel Wichs) Damien Vergnaud (ENS)

694 views • 57 slides
SOCI 224 Social Structure of Modern Ghana Session 3 Demographic Changes: Rural-Urban

SOCI 224 Social Structure of Modern Ghana Session 3 Demographic Changes: Rural-Urban

SOCI 224 Social Structure of Modern Ghana Session 3 Demographic Changes: Rural-Urban Migration Lecturers: Dr. Fidelia Ohemeng & Dr. Mark K. M. Obeng Department of Sociology Contact Information: fohemeng@ug.edu.gh College of Education

787 views • 24 slides
Potential Synergies of Theorem Proving and Model Checking for Software Product Lines um 1 , Jens

Potential Synergies of Theorem Proving and Model Checking for Software Product Lines um 1 , Jens

Potential Synergies of Theorem Proving and Model Checking for Software Product Lines um 1 , Jens Meinicke 1 , Fabian Benduhn 1 , Thomas Th Martin Hentschel 2 , Alexander von Rhein 3 , Gunter Saake 1 May 7th, 2014 1 University of Magdeburg,

951 views • 74 slides
Administrivia Lab 4 due Thursday, 11:59pm. Lecture 10 Lab 3 handed back next week. Answers:

Administrivia Lab 4 due Thursday, 11:59pm. Lecture 10 Lab 3 handed back next week. Answers:

Administrivia Lab 4 due Thursday, 11:59pm. Lecture 10 Lab 3 handed back next week. Answers: Advanced Language Modeling /user1/faculty/stanchen/e6870/lab3_ans/ . Main feedback from last lecture. Bhuvana Ramabhadran, Michael Picheny, Stanley F.

422 views • 29 slides
The Deep Underground Neutrino Experiment with an emphasis on astrophysics Outline I. Status of

The Deep Underground Neutrino Experiment with an emphasis on astrophysics Outline I. Status of

The Deep Underground Neutrino Experiment with an emphasis on astrophysics Outline I. Status of DUNE Design Collaboration Schedule, including ProtoDUNE II. Physics of DUNE Beam and atmospheric neutrinos Supernova

647 views • 43 slides
Romans: the Heart of the Ma0er Gods Assurance

Romans: the Heart of the Ma0er Gods Assurance

Romans: the Heart of the Ma0er Gods Assurance Lamplighters Womens Bible Study Nov. 4, 2015 It is Well with my Soul When peace

415 views • 19 slides
Hampath on solving optimal control problems by indirect and path following methods STRUCTURAL

Hampath on solving optimal control problems by indirect and path following methods STRUCTURAL

Hampath on solving optimal control problems by indirect and path following methods STRUCTURAL DYNAMICAL SYSTEMS : Computational Aspects SDS2010 O. Cots in collaboration with J.-B. Caillau and J. Gergaud June 2010 O. Cots (IMB Bourgogne)

437 views • 30 slides
Modeling the Tradeoff between Inventory and Capacity to Optimize Return on Assets in Production

Modeling the Tradeoff between Inventory and Capacity to Optimize Return on Assets in Production

Modeling the Tradeoff between Inventory and Capacity to Optimize Return on Assets in Production Scheduling Authors: Cindy Wu & Jose A Gonzalez Duhart Advisor: Dr. Bruce Arntzen MIT SCM Research Fest May 22-23, 2013 1 Introduction

483 views • 27 slides
NON-BLOCKING DATA STRUCTURES AND TRANSACTIONAL MEMORY Tim Harris, 21 November 2014 Lecture 7

NON-BLOCKING DATA STRUCTURES AND TRANSACTIONAL MEMORY Tim Harris, 21 November 2014 Lecture 7

NON-BLOCKING DATA STRUCTURES AND TRANSACTIONAL MEMORY Tim Harris, 21 November 2014 Lecture 7 Linearizability Lock-free progress properties Queues Reducing contention Explicit memory management Linearizability 3

1.07k views • 93 slides

More recommend