Bill Blogs in C#

Bill Wagner discusses C#, LINQ, and other items of interest

Interesing facts on Password strength: length beats complexity

Thanks to Kate Gregory for the reference.

This article: http://www.avertlabs.com/research/blog/index.php/2007/11/02/password-policy-length-vs-complexity/ points out that increasing password length helps more than increasing password complexity in terms of security.

I've been using pass phrases for several years.  Most of my passwords are several word, which means they may be as long as 400 characters. And yet, they are easy for me to remember, and I don't have to write them down on some little sticky note that can be compromised.

 

Published Tue, Dec 11 2007 8:01 AM by wwagner
Filed under:

Comments

# re: Interesing facts on Password strength: length beats complexity@ Tuesday, December 11, 2007 9:33 AM

You don't really have a 400 character password do you? That would be crazy. That would take 2 minutes to enter and that is if you don't make a mistake in the middle somewhere ;-)

What do you do on sites that only allow a password "up to 8 characters"?

by Joel Marcey

# eeyy » Interesing facts on Password strength: length beats complexity@ Wednesday, December 12, 2007 12:51 AM

Pingback from  eeyy » Interesing facts on Password strength: length beats complexity

by eeyy » Interesing facts on Password strength: length beats complexity