University of Cambridge conducts password study June 2, 2012 - 11:41 AMT PanARMENIAN.Net - The largest-ever study on user-selected password security shows that no matter how old the users are or what language they speak, their passwords are unsuccessful. According to VentureBeat, the study, conducted by Joseph Bonneau at the University of Cambridge, analyzed the password strength of about 70 million Yahoo users. While the data was protected with hashing and Bonneau was unable to see individual account info, he was still able to measure relative strength of passwords across various demographics like age, gender, and nationality. “We find surprisingly little variation in guessing difficulty; every identifiable group of users generated a comparably weak password distribution,” Bonneau wrote. What’s also funny in the study is that when users are prompted to give a debit or credit card number, that had no effect on whether the password associated with the card would be stronger. People with cards associated with their accounts avoid extremely weak passwords like “1234,” but they don’t do much beyond that. Another fascinating bit is that no matter what language the user speaks, the password is almost always weaker than security experts suggest. “More surprisingly, even seemingly distant language communities choose the same weak passwords and an attacker never gains more than a factor of 2 efficiency gain by switching from the globally optimal dictionary to a population-specific lists,” Bonneau wrote. The study indicates that the people who have the strongest passwords are also in the same category as folks who change their passwords occasionally. Most people simply keep the same password associated with an account for years, significantly increasing the likelihood of the account being hacked. Bonneau suggests people chose a randomly selected number at least nine digits long because it will be easy enough to remember like a phone number and still provide an above-average level of security. He also says that businesses that make people create passwords should make users pick tougher passcodes. “A stricter password selection policy might produce distributions with significantly higher resistance to guessing,” Bonneau wrote.   Top stories Yerevan will host the 2024 edition of the World Congress On Information Technology (WCIT). Rustam Badasyan said due to the lack of such regulation, the state budget is deprived of VAT revenues. Krisp’s smart noise suppression tech silences ambient sounds and isolates your voice for calls. Gurgen Khachatryan claimed that the "illegalities have been taking place in 2020."   Partner news Most popular in the section |  Latest news Turkey replacing term "Central Asia" with "Turkestan" in textbooks  The Turkish Ministry of Education is replacing the term "Central Asia" with "Turkestan" in textbooks.Armenian, German presidents meet in Berlin Armenian and German Presidents Vahagn Khachaturyan and Frank-Walter Steinmeier met in Berlin.Armenia assumes presidency of Mediterranean Network of Regulatory Authorities The Commission on Television and Radio of Armenia said it expects productive cooperation in various formats.Balance of attached cards in the Idram&IDBank app From now on, users will be able to view the online balances of cards issued by ArCa system banks and attached to the app. |
