Educause Security Discussion mailing list archives

Re: Password entropy

From: Roger Safian <r-safian () NORTHWESTERN EDU>
Date: Fri, 21 Jul 2006 16:04:15 -0500

At 05:28 PM 7/20/2006, Basgen, Brian put fingers to keyboard and wrote:

Right, this is where I think he is being misleading, because his
equation doesn't allow for an entropy variable. You are right in that is
how he is using it, but I don't think he is being accurate via the
assumptions he has made.


Just to be clear, I would use this tool to provide guidelines.  It's
a reasonable representation for various scenarios or character set, and
length, but I'm not sure it's really striving for complete accuracy
in every situation.



--
Roger A. Safian
r-safian () northwestern edu (email) public key available on many key servers.
(847) 491-4058   (voice)
(847) 467-6500   (Fax) "You're never too old to have a great childhood!"

Current thread:

Re: Password entropy, (continued)
- Re: Password entropy Roger Safian (Jul 20)
- Re: Password entropy Roger Safian (Jul 20)
- Re: Password entropy Graham Toal (Jul 20)
- Re: Password entropy Valdis Kletnieks (Jul 20)
- Re: Password entropy Basgen, Brian (Jul 20)
- Re: Password entropy Roger Safian (Jul 20)
- Re: Password entropy Basgen, Brian (Jul 20)
- Re: Password entropy Harold Winshel (Jul 20)
- Re: Password entropy Harold Winshel (Jul 20)
- Re: Password entropy Graham Toal (Jul 21)
- Re: Password entropy Roger Safian (Jul 21)
- Re: Password entropy Valdis Kletnieks (Jul 23)
- Re: Password entropy Roger Safian (Jul 23)
- Re: Password entropy Roger Safian (Jul 23)
- Re: Password entropy Paul Russell (Jul 23)
- Re: Password entropy James H Moore (Jul 23)
- Re: Password entropy Valdis Kletnieks (Jul 23)
- Re: Password entropy Harold Winshel (Jul 24)
- Re: Password entropy Robert Kerr (Jul 24)
- Re: Password entropy Graham Toal (Jul 24)
- Re: Password entropy Roger Safian (Jul 24)

(Thread continues...)