ad-assurance - [AD-Assurance] Something to keep us all paranoid
Subject: Meeting the InCommon Assurance profile criteria using Active Directory
List archive
- From: David Walker <>
- To: InCommon AD Assurance Group <>
- Cc: DHW <>
- Subject: [AD-Assurance] Something to keep us all paranoid
- Date: Wed, 19 Jun 2013 11:06:04 -0700
- Authentication-results: sfpop-ironport04.merit.edu; dkim=pass (signature verified)
Here are a couple of articles to keep us all scared about passwords. Probably no direct impact on our work, although the fact that passwords like qeadzcwrsfxv1331 can be cracked when weak encryption is employed might have bearing on our decision of whether entropy is a mitigation for weak encryption.
- Anatomy of a hack: How crackers ransack passwords like “qeadzcwrsfxv1331” - http://arstechnica.com/security/2013/05/how-crackers-make-minced-meat-out-of-your-passwords/
- Those meters that rate password strength work, until they don't - http://gcn.com/blogs/cybereye/2013/06/password-strength-meters-dont-always-work.aspx?s=gcntech_120613and
David
- [AD-Assurance] Something to keep us all paranoid, David Walker, 06/19/2013
- RE: [AD-Assurance] Something to keep us all paranoid, Capehart,Jeffrey D, 06/19/2013
Archive powered by MHonArc 2.6.16.