[Reader-list] Passwords

Bijoyini bijoyinic at yahoo.com
Tue Oct 8 00:00:26 IST 2002 

In addition to just a word, some applications now have
the ability to accept passPHRASES (as opposed to
passWORDS). So you can type in a whole sentence
instead of just a word. It is harder to hack if you
think of all the permutions involved in hacking a
sentence instead of a word. Moreover, a password is
chose from a the set of symbols that include
alphabets, numbers and some special characters. This
set of symbols is small. A passphrase is selected from
the natural language dictionary that typically
comprises of 10 000 words to 500 000 words (for a
range of users). This set is larger than the set of
alphabets.

Some claim that it is also easier to remember "I l0ve
m0vies, f00tball, f00twear and gr00ve" (letter O
replaced by number zero) than "rt34fd0".


> -- Base the password on mnemonics or acronyms, not
> words or names. 
> Use your favourite song titles, movies, football
> teams as starters. 
> It's got to be something that you know a lot about,
> but not something 
> that other people can find out about you--such as
> your birthday, your 
> place of birth, or your kids' names. The first
> letters of the movie 
> The Year of Living Dangerously, for example, could
> be used in 
> conjunction with its two main stars, Mel Gibson and
> Sigourney Weaver, 
> to read "tyoldmgsw."
> 
> -- That's just the start. Now you have something you
> can remember, 
> but it's still just basic letters. You need to turn
> some of them into 
> numbers, punctuation symbols and capitals. Try
> turning the o into a 
> similar-looking zero, the l into a one and the s
> into a five. That 
> would give you "ty01dmg5w" which is a lot better,
> and still easy to 
> remember, since the numbers are similar to the
> letters they've 
> replaced.
> 
> -- This, sadly, is still not good enough. The people
> who write 
> hacking programs are on to this kind of trick, so
> your password is 
> still vulnerable. It needs an extra trick or two.
> Try capitalizing 
> the family-name letters, alter the 0 to
> similar-looking bracket marks 
> (), and move the numeric characters one key to the
> left on your 
> keyboard.
> 
> If your passwords are as good as that, then you
> should be safe. But 
> there's still a weakness, and it's still human.
> Never give your 
> passwords to anyone, don't reuse them for different
> accounts, and 
> change them every few months. Store them on your
> personal digital 
> assistant if you like, but remember that, even if
> it's in a 
> well-encrypted file, all your valuable info is just
> one password away 
> from being accessed by someone. If they steal your
> device, chances 
> are they're eager enough to try to crack the
> password protecting all 
> your passwords. Passwords are better kept in your
> head, triggered by 
> things you'll never forget.
> 
> Now, if you'll excuse me, since I've told you my
> password I've got to 
> go make up a new one.
> 
> Write to me at jeremy.wagstaff at feer.com
> _________________________________________
> reader-list: an open discussion list on media and
> the city.
> Critiques & Collaborations
> To subscribe: send an email to
> reader-list-request at sarai.net with subscribe in the
> subject header.
> List archive:
<https://mail.sarai.net/pipermail/reader-list/>


__________________________________________________
Do you Yahoo!?
Faith Hill - Exclusive Performances, Videos & More
http://faith.yahoo.com

More information about the reader-list mailing list