Scribd Logo
Upload

Welcome to Scribd!

  • Password Presentation

    Uploaded by

    Risabh Shukla
    10 views15 pages

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    10 views15 pages

    Password Presentation

    Uploaded by

    Risabh Shukla

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 15

    You

     and  Your  Passwords  


    Why  Passwords?  
    Threat  -­‐  Cracking  Passwords  
    d131dd02c5e
    d131dd02c5e 6eec4693d9a
    Password Guess

    HASH
    6eec4693d9a 0698aff95c
    0698aff95c

    Password File

    Password  Type   Using  the  CPU   Using  the  GPU  


    6  char  (no  spec  chars)   1  hour  30  sec   4  seconds  
    7  char  (no  spec  chars)   4  days   17  minutes  30  seconds  
    7  char  (spec  chars)   75  days   7  hours  
    9  char  (spec  chars)   43  years   48  days  
    Methods  to  Compromise    
    Accounts/Passwords  
    Defense  

    (passphrases)  

    MulL-­‐factor  

    Host-­‐based  
    encrypLon  
    passwords  
    Password  A6ack  

    EducaLon  
    Password  

    Network  
    lockouts  
    Account  
    changes  

    security  
    Regular  
    Longer  
    Password  Cracking  
    • DicLonary  ASack      Ÿ  
    • Brute  Force   ✔   ✔   ✔   ✔  
    • Rainbow  Tables            
    • GPU  Cracking  
    Password  Sharing   ✔   ✔  
    Phishing/Social  Engineering   ✔   ✔  
    Man-­‐in-­‐the-­‐Middle  ASack   ✔   ✔   ✔  
    Network  Sniffing   ✔   ✔   ✔   ✔   ✔  
    Keylogger   ✔*
    ✔  

    *(unless  digital  cert)  


     
    Look,  a  Demo!  
    RecommendaLons  
    •  Not  just  one  strong  passwords,  but  mulLple  
    strong  passwords  
    •  Password  Escrow  
    •  MulLfactor  
    What’s  a  Strong  Password?    
    •  8  characters   •  11  characters  
    •  Mix  of  upper,  lower,   •  One  each  of  upper,  
    numbers,  symbols   lower,  numbers,  
    symbols  
    •  Change  regularly  
    •  MulLple  passwords!  
     
    Password  Escrow  –  1Password  
    1Password  
    Pros   Cons  
    •  MulLplacorm  and   •  Cost  
    mulLbrowser    
    •  Password  generator  
    •  Password  history  
    •  Sync  with  mobile  devices  
    Password  Escrow  –  LastPass  
    LastPass  
    Pros   Cons  
    •  Free  and  Pay  versions   •  Stores  in  the  cloud  
    •  MulLplacorm  and   (encrypted)  
    mulLbrowser  
    •  Password  generator  
    •  Sync  with  mobile  devices  
    Password  Escrow  –  Keepass  
    KeePass  
    Pros   Cons  
    •  Free     •  May  require  different  
    •  MulLplacorm  and   installaLons  for  different  
    mulLbrowser   OS’s  
    •  Password  generator   •  May  require  some  
    •  Sync  with  mobile  devices   advanced  work  to  sync  with  
    mobile  devices  
    MulLfactor  

    You might also like