New types of password

Discussion in 'other software & services' started by blacknight, Sep 8, 2017.

  1. blacknight

    blacknight Registered Member

    Joined:
    Sep 25, 2007
    Posts:
    3,344
    Location:
    Europe, UE citizen
    ( Not sure this is the appropriate section to post it )

    I read sometimes that secure password can be long nonsense phrases, that would have the vantage to be long and easy to memorize. For example one password could be: " red furnitures ride deserts that eat some stupid onion ": is it true ? is it tested ?


     
  2. rossnixon

    rossnixon Registered Member

    Joined:
    Aug 14, 2013
    Posts:
    38
    Location:
    New Zealand
    It is true. It works because it is so long. You could include a nonsense or misspelled word also.
     
  3. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    Yes it's true. And if you don't use English it's even "more secure". :)
     
  4. blacknight

    blacknight Registered Member

    Joined:
    Sep 25, 2007
    Posts:
    3,344
    Location:
    Europe, UE citizen
    No problem ! English is not my native language. :D But why ? A long phrase is anyway a combination of letter: softwares that try to find the combination make not difference between languages, they try combinations.
     
  5. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    If they are going to use brute-force then language doesn't matter. If dictionary attack is conducted, passphrases in some languages can be a little "safer" than in other.
     
  6. pegas

    pegas Registered Member

    Joined:
    May 22, 2008
    Posts:
    2,961
    and don't forget to include symbols.
     
  7. blacknight

    blacknight Registered Member

    Joined:
    Sep 25, 2007
    Posts:
    3,344
    Location:
    Europe, UE citizen
    Thank you.
     
  8. blacknight

    blacknight Registered Member

    Joined:
    Sep 25, 2007
    Posts:
    3,344
    Location:
    Europe, UE citizen
    In retrospect: if I use a nonsense phrase very long no matter which language I use: anyway the phrase has not sense, so no automatic dictionary can guess it, because it is only a sequence of letter. Different the case if I used " To be or not to be...": here a structured literary dictionary could be find it easy.
     
  9. RockLobster

    RockLobster Registered Member

    Joined:
    Nov 8, 2007
    Posts:
    1,812
    If seen some password apps that have a pretty neat way of dealing with the password problem you think of a master password.
    Then in the app, for each site you put in a name for the site, then your username which it saves.
    To get the password to use for the site you just enter the master password.
    The app then combines your name for the site, your username and your master password and applies a hash algorithm to it.
    So the resulting password is a hash of all that.
    The upshod is.
    The passwords are not saved on the device they are generated only when you enter the master password.
    Every site ends up with a different secure password.
    Using a new master password changes all the passwords at once.
    I have seen several of these apps around using various different hash algorithms to do it.
     
  10. monkeylove

    monkeylove Registered Member

    Joined:
    Dec 10, 2013
    Posts:
    226
  11. blacknight

    blacknight Registered Member

    Joined:
    Sep 25, 2007
    Posts:
    3,344
    Location:
    Europe, UE citizen
    Interesting: you mean this: http://masterpasswordapp.com ?
     
  12. blacknight

    blacknight Registered Member

    Joined:
    Sep 25, 2007
    Posts:
    3,344
    Location:
    Europe, UE citizen
    Anyway I would like a comment about my post n. 8.
     
  13. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    Yes, in this case it's really unlikely that your phrase would be found in dictionary.
     
  14. RockLobster

    RockLobster Registered Member

    Joined:
    Nov 8, 2007
    Posts:
    1,812
    Yes that looks like one of them that idea is probably close to an ideal solution for the so many sites, so many passwords problem
     
  15. blacknight

    blacknight Registered Member

    Joined:
    Sep 25, 2007
    Posts:
    3,344
    Location:
    Europe, UE citizen
    Ya but, I'm thinking, an automatic dictionary with an autocomplete function, like Google uses for example, could complete and recognize the words of the phrases: " red furnitures ride deserts that eat some stupid onion " = the program finds R, then it finds E, so it completes = RED, and going on.....

    - I have not concerns or problems about my passwords ! Neither I have special security requirements except privacy: it's only a theoretical question.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.