Overview#

Password Quality is the degree resistance to a password value from being obtained by an Unauthorized entity (ie an Attacker)

Password Quality deals with Password Complexity or what Password Entropy

Generally "Truly" random passwords are better than any other methods. Also the longer a password is the better.

Password-composition Policy must strike a balance between maximizing security and maximizing Usability. Generally results indicate that, as might be expected, increases in Password Quality (ie entropy) often correlate with a decreases in usability.[1]

Unauthorized entity Obtains a password by:

Components of Password Quality#

Typical components of Password Quality within the Password-composition Policy include:

Poor Practices for Password Quality [2]#

A common piece of password advice is to substitute characters, such as numbers or special characters, for letters. For example, password becomes p@$$w0rd. These are sometimes called "leetspeak" passwords, because "elite" hackers originally used such character substitutions. However, these are easily defeated by Password Guessing Attacks.

More Information#

There might be more information for this subject on one of the following:

Add new attachment

Only authorized users are allowed to upload new attachments.
« This page (revision-13) was last changed on 08-May-2017 15:29 by jim