Skip to content
Common Password Topologies
Python C Makefile
Branch: master
Clone or download
Latest commit 2a0b84f Sep 12, 2015
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
Makefile initial commit Sep 12, 2015
README.rst initial commit Sep 12, 2015
patterns.c initial commit Sep 12, 2015
patterns.pdf
patterns.png initial commit Sep 12, 2015
patterns.py initial commit Sep 12, 2015
report.rst initial commit Sep 12, 2015

README.rst

Commonly used password topologies

Some patterns of passwords are extremely common, for example Denver14 follows the pattern Ullllldd where

  • u=uppercase
  • l=lowercase
  • d=digit
  • s=special (other character)

Risk

  • Password crackers can search the most common patterns systematically (and do already).
  • Users who use these common patterns are thus at risk.

Therefore, to increase security of your system you should not allow users to choose passwords following these patterns!

This project identifies the most common password topologies.

See the Report

Actions

  • Additional to the other OWASP recommendations (see below).
  • When users set their passwords, check if that password is in a common topology.
  • Encourage users to set pass-phrases, not passwords, and allow long passwords.

References

You can’t perform that action at this time.