Educause Security Discussion mailing list archives

Re: Passphrases v Password

From: shanna leonard <ssl () EMAIL ARIZONA EDU>
Date: Tue, 9 Jul 2013 00:29:02 -0700

On 7/8/13 7:02 AM, Tim Doty wrote:

I've been resisting, but I will point out that that xkcd significantly overstates the entropy of English
which ruins his analysis. Relying on simple passphrases as protection against hash cracking

doesn't work against real threats
(http://arstechnica.com/security/2013/05/how-crackers-make-minced-meat-out-of-your-passwords/)

I'm not sure that I would call that a "real threat". How real it isdepends on the format of your password hashes and how simple access isto that hash store.

In the offline cracking example given, the crackers had access to simpleunsalted md5 hashes. This made their task significantly easier (in termsof compute time) than it would have been had they only had a copy of awell constructed password db, e.g. a good passworddb (e.g. counterpane'spasswordsafe), or a set of "slower" hashes.

"slow hashes" with a reasonably well-constructed (e.g. mostly english18+ character master passphrase with a bit of perturbation, ie typo andthrow a few symbols in the middle) is still slow to crack (e.g.passwordsafe discussion:)http://sourceforge.net/p/passwordsafe/discussion/134800/thread/671fd0d4/#2a53

Likewise bcrypt linux passwords by default use 5000 encryptioniterations and are computed much more slowly than simple md5 or NThashrendering them more difficult to crack than the example.

http://samsclass.info/123/proj10/comparing-hashes.htm
http://arstechnica.com/security/2012/08/passwords-under-assault/4/

"If the LinkedIn passwords had been hashed using bcrypt, I never wouldhave been able to crack 90 percent of them," he told Ars in an e-mail."The number of attacks I had to run, combined with the sophistication ofthe attacks I had to run to get many of the passwords [more than] 15characters,

would have taken literally centuries to finish.

That said, the race is certainly on - the crackers are nipping at theheels of what were recently considered to be well-constructedpassphrases. Writing a complex completely random 20-character masterpassword down on a piece of paper and putting it in your wallet islooking better and better! :)


Shanna Leonard
ssl () email arizona edu
University of Arizona

Current thread:

Re: Passphrases v Password, (continued)
- - Re: Passphrases v Password Will Froning (Jul 05)
    - Re: Passphrases v Password Rich Graves (Jul 05)
    - Re: Passphrases v Password Mike Osterman (Jul 05)
  - Re: Passphrases v Password Steven Alexander (Jul 05)
- Re: Passphrases v Password Cathy Hubbs (Jul 05)
  - Re: Passphrases v Password scott hollatz (Jul 05)
    - Re: Passphrases v Password Ray McClure (Jul 06)
  - Re: Passphrases v Password Tim Doty (Jul 08)
    - Re: Passphrases v Password randy (Jul 08)
    - Re: Passphrases v Password Tim Doty (Jul 08)
    - Re: Passphrases v Password shanna leonard (Jul 09)
    - Re: Passphrases v Password Steven Alexander (Jul 09)
- Re: Passphrases v Password Lisciotti, Kevin (Jul 05)