-
Why do I need a long password?
by Jeff • March 10, 2012 • Password • 0 Comments
Security experts suggest that you create passwords with 8 or more characters. Why does password length matter? When a hacker attempts a bruce force attack, longer passwords make it more difficult.
The success of the brute force attack depends on two things. 1) password length and 2) number of possible characters that are being tested.
Let’s assume that a brute force attacker will use all lower case letters, all upper case letters, plus about fourteen common keyboard symbols. That gives the attacker (26+26+14)=66 characters to work with. A 1-character password has 66 different combinations. While a 2-character password has 66*66 combinations or 4,356 combinations. The table below continues the calculation. The time to crack column is based on testing 250,000 passwords per second.
CharactersCombinationsTime to Crack418,974,73676 seconds51,252,332,5765009 seconds682,653,950,0164 days75,455,160,701,056253 days8360,040,606,269,69646 years923,762,680,013,799,9003014 years101,568,336,880,910,800,000198,927 yearsIn summary, when it comes to password security, more characters are safer.
-
News
- Microsoft dismisses claim of hack attack on Xbox Live - GMA News May 24, 2013
- Twitter Deploys Two-Factor Authentication to Protect User Accounts - eWeek May 24, 2013
- Twitter steps up security after hack attacks - RTE.ie May 23, 2013
- Twitter Just Launched Two-Factor Authentication To Stop Hackers. Turn It On. - Forbes May 22, 2013
- Yahoo Japan Data Breach: 22M Accounts Exposed - InformationWeek (blog) May 20, 2013
- 4 Steps To Protect Your Business And Partners From Cyber Attacks - Business 2 Community May 19, 2013
- LulzSec Hackers Sentenced In London - InformationWeek May 16, 2013
- Name.com forces customers to reset passwords following security breach - Network World May 9, 2013
- How to Protect Yourself After a Hacking Attack - Better Business Bureau (blog) April 30, 2013
- LivingSocial hacked; 50 million affected - CNET April 26, 2013
