Reply To: 12 Nov 16 – 100 Guesses Is Enough To Crack Your Password
Home › Forums › The Poll Discussion › 12 Nov 16 – 100 Guesses Is Enough To Crack Your Password › Reply To: 12 Nov 16 – 100 Guesses Is Enough To Crack Your Password
The number comes from an experimental password guessing algorithm called TarGuess, which uses stolen bits of personally information to help them guess which words, phrases or numbers you might have used in creating a password. So the lesson is don’t use names or phrases that could be gleaned by looking at your Facebook profile. Part of the reason TarGuess achieved success though is that the research still shows people use terrible passwords, with 123456 being the most common.
This article also mentioned something called an online-offline chasm. In an online attack, your password only needs to be able to survive 1 million guesses. There is little point in making in stronger unless it’s capable of withstanding on offline attack (100 trillion guesses).