Security Information |
|
Passwords or Pass Phrase? Protecting your Intellectual Property
Much has been said on the theory of password protection for files, computer login, and other network access. In the past we used a combination of letters, special characters, and other techniques to try and prevent unwanted or unauthorized access to our computers, resources, and networks. A new theory on passwords is emerging that may help us remember our access codes, be more secure, and generally keep hackers and thieves out of our networks. A password is a combination of words, letters, and special characters that only the user knows, allowing access to a computer or other information resources. As humans we have a large number of codes and numbers we need to remember every day - such as the key lock on our apartment entries, national identification numbers, automobile license or tag numbers, telephone numbers - it is a large and confusing suite of items we need to memorize. When selecting a new password or pass code for access to a computer system, most of us understand how difficult it is to remember complex codes, and thus we select something already know n to us, such as names, birthdays, national identifiers, or other known items, and then place a number or character in front of the name or number thinking it is secure. This is easy to understand, as most of us simply do not have an ability to instantly recall large numbers of complex codes. In a worst case we simply write down the complex code on a piece of paper, and leave it in a desk, our pocketbook, or in many cases taped to the front of our computer monitor. However, to a hacker this makes access to your network or computer much easier, at they generally only have to learn a couple things about you, and add a few numbers to the front or ending of your personal data - you would be surprised how often this grants access to computers and networks. Ad some good "cracking utilities" to the hacker's suite of tools, and you can understand the threat. PassPhrases are a concept that will help us create more secure, easy to remember safeguards for our computer and network resource protection. A passphrase is a selection of words and/or numbers that are 15 characters or more in length, and are easy for us to remember. A couple examples of a good pass phrases are: ? igotodalaieejdaily ? shehasbeautifulhair ? surfinginhawaiiisgreat According to Mark Minasi, a noted security consultant, a 15 character pass phrase will require a cracking program the following number of computations to try and break a 15 character pass phrase: ? 15 lowercase letters = 1,677,259,342,285,725,925,376 possibilities ? Try a million a second, it'll take 531,855 centuries/years to break the code As you can see, this is a pretty good level of security for your resource. Another concern with passwords is if you forget or lose the password, and are using a utility like Microsoft's Encrypting File System (EFS), you run the risk of losing all access to your important files if you require a hardware reset of your password. All EFS encrypted files are linked to your login profile, meaning if you encrypt a directory or file with EFS, and you do a hardware reset on your computer, those files and directories are lost FOREVER. For Microsoft Windows users you can now also use spaces within your pass phrase, however we would not recommend embedding spaces in your pass phrase, as that actually does allow a cracker better access to getting your code - it may help them crack it in 100,000 years rather than 250,000! (About the Author - John Savageau is a managing director at CRG-West, responsible for managing operations and architecture for several of the largest telecommunications interconnect facilities in the US, including One Wilshire in Los Angeles)
MORE RESOURCES: Man arrested for kicking north Georgia hospital security guard in the face, biting him - WSB Atlanta Texas Homeowner's Security Camera Captures House Flood - Videos from The Weather Channel The Weather Channel Former security guard convicted of killing unarmed man during an argument at a Memphis gas station ABC News Kansas has a new border security mission and tougher penalties for killing police dogs The Associated Press Former security guard Gregory Livingston found guilty of murdering man at Kroger gas station over loud music Action News 5 Los Angeles Times: UCLA police chief accused of ‘security lapses’ before attack on pro-Palestinian encampment KTLA Los Angeles Security guard shoots, kills man outside southwest Atlanta strip club, police say Atlanta News First The U.S.-Japan Alliance Council on Foreign Relations Laredo UISD receives 100% safety and security audits from TEA Laredo Morning Times Sweden “On Terror Level Four” As Security Is Tightened A Week Before Eurovision Song Contest Deadline Dave Chappelle's attacker sues Hollywood Bowl, security 2 years after he stormed stage: report New York Post Not Every Security Clearance Investigation is the Same ClearanceJobs Former security guard found guilty of killing man over loud music WREG NewsChannel 3 Florida university graduation events draw security, advisories | Local News | chronicleonline.com Citrus County Chronicle Accelerating Innovation: Introducing SocX, SecureIQLab's AI-Powered Cloud Security Validation Platform PR Newswire Ripple effect: Local agencies ramp up security after state, national cyberattacks on water supplies Altoona Mirror UCLA's top cop, accused of security lapse, faces calls to step aside. He defends his actions 2UrbanGirls Netherlands Prepares for World War II Remembrance Amid Gaza Security Fears U.S. News & World Report Verdict found after deadly 2021 Kroger fuel center shooting WATN - Local 24 NSA Highlights Mitigations against North Korean Actor Email Policy Exploitation National Security Agency College campuses tighten security amidst graduation ceremonies Abccolumbia.com Chaotic lake getting fence and security Wink News Kansas has a new border security mission and tougher penalties for killing police dogs Bowling Green Daily News Cabana Live shooting: Victim sues venue, security, others WESH 2 Orlando Microsoft will base part of senior exec comp on security, add deputy CISOs to product groups GeekWire Belgium’s Aikido lands $17M Series A for its ‘no BS’ security platform aimed at developers TechCrunch The Mystery Of EgyptAir's Inflight Security Officers... One Mile at a Time Joe Andruzzi Foundation, Amplix, celebrate reaching $1 million milestone in food security grants The Sun Chronicle Security guard gets life in prison for killing unarmed man at East Memphis Kroger gas station WATN - Local 24 Three National Security Bills from Senator Rubio Signed into Law West Orlando News Dave Chappelle attacker suing Hollywood Bowl security for negligence New York Daily News Hong Kong’s national security laws ‘not major concern for arbitration community’ South China Morning Post The Nordics in NATO: Women, Peace and Security and Regional Defense Peace Research Institute Oslo (PRIO) Security footage released from bible trailer fire | Lebanon | lebanondemocrat.com - Lebanon Democrat Man arrested for attacking hospital security guard, nurse Habersham County deputies say Yahoo! Voices Pillen deploys Nebraska National Guard to assist with storm recovery, security • Nebraska Examiner Nebraska Examiner Energy, Climate, and Grid Security Subcommittee Hearing: "The Fiscal Year 2025 Department of Energy Budget" Energy and Commerce Committee Private security worker raises concerns over handling of UCLA encampment violence FOX 11 Los Angeles Bodega owners, advocates address spike in armed bodega robberies, call for ramped-up security measures News 12 Bronx Iranian Security Forces Shoot Teenage Border Porter ایران اینترنشنال |
RELATED ARTICLES
Spyware Attacks! Windows Safe Mode is No Longer Safe Many of us have run into an annoying and time-consuming error. With your machine running goofey you decide to run a scan for trojans and spyware. Top Ten Spyware and Adware Threats Identified On December 8, 2004 Webroot, an award winning anti-spyware solution provider, released a press release identifying the ten most significant emerging spyware and adware threats. Most of these you probably haven't heard of and a few may surprise you. Protection for Your PC - Painless and Free! Viruses, Bugs, Worms, Dataminers, Spybots, and Trojan horses. The Internet is a veritable minefield of things that can invade your PC and affect it's Security and Performance. Is Your Email Private? Part 1 of 3 In a word, no - an email message has always been nothing more than a simple text message sent unencrypted to a recipient we choose. So all the email that we so blithely send all over the Internet everyday is neither private nor secure. Whats All This I Hear About Firewalls? At this point, if you've got the whole "turning the computer on" thing down; you are ready to learn about firewalls. Whether you use your computer for business or pleasure, it is important to have a firewall. 8 Surefire Ways to Spot an EBAY Scam E-Mail and Protect Yourself from Identity Theft Ebay is a great site and is used by many to buy and sell new and used Items. It truly is the worlds Largest Garage Sale Unfortunately when an online site becomes as big and popular as E-Bay the scam artists seem to just naturally follow. Web Browsing - Collected Information You may not realize it, but as you are surfing the web all sorts of details are being left behind about your computer and where you have been. Most of this information is used harmlessly in website statistics, but it could also be used to profile you, or identify you as a vulnerable target for an exploit. Online Shopping: 10 Tips For Safe Online Shopping Have you ever bought a product or service from the internet?Yes? Me too. You're not alone?Some of the reasons why most people are shopping online are: they can buy anything at anytime because Internet shopping is available 24 hours, all the time. Secrets On Security: A Gentle Introduction To Cryptography Let us take the example of scrambling an egg. First, crack the shell, pour the contents into a bowl and beat the contents vigorously until you achieved the needed result - well, a scrambled egg. The Importance of Protecting Your PC from Viruses and Spam Today the internet is a mine field of malicious code looking to harm your computer. Hackers want to have access to your PC for both fun and profit. Mail Forwarding - Why Would You Do It? First of all we need to get some terms stated. I have been in the business for just over two years and there is still some confusion over the topic. Corporate Security for Your Home Business The words Corporate Security may conjure up images of a group of techies working in a wire-filled basement room of Microsoft or HP, combating hackers and terrorists online using words like algorithm and encryption. If you own your own business, do not allow yourself to think that security is only for big corporations. SCAMS - Be Aware - And Report When Necessary The Internet is a vast International Network of people and businesses - and a place where people can make a fairly decent living. However, it is also a place where certain unsavory characters can freely roam - to take your dollars and run. Criminals are Fishing For Your Identity What is Phishing? In a typical Phishing attack, a criminal will send you an email which appears to be from a well known company, bank or government agency. The email will direct you to click on a link which directs you to a Website or pop-up box that looks like the company's or organization's legitimate site. Three-pronged Trojan Attack Threatens Security on the Internet Glieder (Win32.Glieder. Clown Internet Scam - An Internet Scam is Currently Targeting Clowns and Other Entertainers I am the victim of an internet scam. It is very hard to write that sentence, but it's necessary in order to warn my fellow clowns, magicians and other entertainers, and to prevent them from being taken for $2,800. Sarbanes-Oxley: A Cross-Industry Email Compliance Challenge Is your enterprise following the rules?The bulk of financial information in many companies is created, stored and transmitted electronically, maintained by IT and controlled via information integrity procedures and practices. For these reasons, compliance with federal requirements such as the Sarbanes-Oxley Act (SOX) is heavily dependent on IT. Avoid Internet Theft, Fraud and Phishing Since its birth, the Internet has grown and expanded to unprecedented, unmanageable proportions. Information, software, news, and much more flow freely through its twisted pathways. Virus and Adware - Fix them Both! We all get the odd virus now and then, but sometimes that one virus could cause so many problems. In this article I shall be going though just some of the problems that these virus software programs can do, and how to fix them. What is Spyware? The most frustrating part of having Spyware on your computer is the sheer feeling of helplessness that is invoked. Your computer slows down, it no longer does what you instructed it to, it seems to have a mind of its own. |
home | site map |
© 2006 |