Documente Academic
Documente Profesional
Documente Cultură
Lecture on Passwords I
Honeywords:
Making Password-Cracking Detectable
1. Introduction
2. Technical Description
3. Honeyword Generations
4. Policy Choices
5. Attacks
Password g.
Is g a honeyword ?
setting off an alarm or
notifying a system
administrator,
letting login proceed as
usual,
letting the login proceed,
but on a honeypot
system,
tracing the source of the
login carefully, etc
Password Eligibility
Failover
Selective alarms
It may be helpful raise an alarm if there are honeyword hits
against administrator accounts or other particularly sensitive
accounts, even at the risk of extra sensitivity to DoS attacks.
Different actions
Raise silent alarm , Allow login, Allow for single login
only, etc...
(-) chaffing-with-a-password-model
Weak DoS (denial of service) resistance, means that an adversary can with
non-negligible probability submit a honeyword given knowledge of the password;
strong DoS resistance, means that such attack is improbable