A Password Creation Strategy Based on Category Attribute and Sensitive Information

In the unsafe network environment, how to protect user’s data security is one of the most challenging problem. To solve this problem, secure and memorable passwords is one of method. For the aim of the trade-off between the memorability and security, this paper introduces a novel approach to classify password creation policy according to category attribute, and describes the transform-policy of ID-password pairs across multi websites. Creation policy for password is proposed to measure the propagation of sensitive information, mainly focus on individual sensitive information and behavior characteristic of users. The experiment results show that for Chinese users the transform of sensitive information can be evaluated precisely by the method.