Password Pattern and Vulnerability Analysis for Web and Mobile Applications

Research Output

Text⁃based passwords are heavily used to defense for many web and mobile applications. In this paper, we investigated the patterns and vulnerabilities for both web and mobile applications based on conditions of the Shannon entropy, Guessing entropy and Minimum entropy. We show how to substantially improve upon the strength of passwords based on the analysis of text⁃password entropies. By analyzing the passwords datasets of Rockyou and 163.com, we believe strong password can be designed based on good usability, deployability, rememberbility, and security entropies.

Type:

Article
Date:

30 June 2016
Publication Status:

Published
DOI:

10.3969/j.issn.1673-5188.2016.S0.006
ISSN:

1673􀆼5188
Library of Congress:

QA75 Electronic computers. Computer science
Dewey Decimal Classification:

005.8 Data security

http://researchrepository.napier.ac.uk/output/367587 Li, S., Romdhani, I., & Buchanan, W. (2016). Password Pattern and Vulnerability Analysis for Web and Mobile Applications. ZTE Communications, 14, 32-36. https://doi.org/10.3969/j.issn.1673-5188.2016.S0.006

Citation

Li, S., Romdhani, I., & Buchanan, W. (2016). Password Pattern and Vulnerability Analysis for Web and Mobile Applications. ZTE Communications, 14, 32-36. https://doi.org/10.3969/j.issn.1673-5188.2016.S0.006