[148682] in cryptography@c2.net mail archive
Re: [Cryptography] Passwords are dying - get over it
daemon@ATHENA.MIT.EDU (Jonathan Thornburg)
Tue Dec 24 19:29:43 2013
X-Original-To: cryptography@metzdowd.com
Date: Tue, 24 Dec 2013 16:24:28 -0800 (PST)
From: Jonathan Thornburg <jthorn@astro.indiana.edu>
To: Cryptography <cryptography@metzdowd.com>
In-Reply-To: <2409E53C-9AAD-4028-8C69-55311A182E7F@me.com>
Errors-To: cryptography-bounces+crypto.discuss=bloom-picayune.mit.edu@metzdowd.com
On Tue, 24 Dec 2013, Arnold Reinhold wrote:
> A 10 word Diceware? password has 129 bits of entropy. Not trivial
> to memorize, but easier than your 13 words, and the individual words
> are shorter on average as well, e.g.:
What are the advantages & disadvantages of this (diceware) vs the old
"think of a long sentence or phrase, and take the 1st letter of each word"
scheme. E.g. "FDR was elected to 3 full terms as US president & also
served part of a 4th term, but he was never vice-president" gives
Fwet3ftaUp&aspoa4t,bhwnv-p
That's 26 characters, with surely at least 4 bits of entropy/character,
so we're comfortably over 100 bits of entropy.
--
-- "Jonathan Thornburg [remove -animal to reply]" <jthorn@astro.indiana-zebra.edu>
Dept of Astronomy & IUCSS, Indiana University, Bloomington, Indiana, USA
"There was of course no way of knowing whether you were being watched
at any given moment. How often, or on what system, the Thought Police
plugged in on any individual wire was guesswork. It was even conceivable
that they watched everybody all the time." -- George Orwell, "1984"
_______________________________________________
The cryptography mailing list
cryptography@metzdowd.com
http://www.metzdowd.com/mailman/listinfo/cryptography
