论文信息 - How to Set and Manage Your Network Password: A Multidimensional Scheme of Password Reuse

How to Set and Manage Your Network Password: A Multidimensional Scheme of Password Reuse

The rapid development of the Internet and highly decentralized network services, prompting the majority of Internet users continue to register more accounts, and cause a high incidence of password reuse, which makes the user information leakage risks facing the domino-style. Based on the data of Internet password leak door at the end of 2011 as well as the college students’ online survey, the paper analyzed the structural characteristics and reuse behavior of netizen passwords in detail, and thus designed a multidimensional password scheme that infused into the information dimensions and classified management. This scheme, based on the structure of "seed - reuse code", includes three dimensions: the content dimension contains multi-independent "information factor", which constitutes the main part of the password; the formal dimension is responsible for conversion formatting, in order to enhance the complexity and security of the password; and space-time dimension is targeted designed to protect the password timeliness and reusability. Through comparative analysis and quantitative analysis, the new password scheme not only has good memorability and convenience, and can effectively resist the violent attacks and acquaintances attacks.

Zhao Qi | Yang Cheng

[1] Benny Pinkas,et al. Securing passwords against dictionary attacks , 2002, CCS '02.

[2] M. Geetha,et al. OPass: Attractive Presentation of User Authentication Protocol with Resist to Password Reuse Attacks , 2013 .

[3] Clark D. Thomborson,et al. Passwords and Perceptions , 2009, AISC.

[4] Cormac Herley,et al. A large-scale study of web password habits , 2007, WWW '07.

[5] J E Lisman,et al. Storage of 7 +/- 2 short-term memories in oscillatory subcycles , 1995, Science.

[6] Juan Ruiz-Alzola,et al. Biometric identification systems , 2003, Signal Process..

[7] Cheng Yang,et al. An analysis view on password patterns of Chinese internet users , 2013 .

[8] Jae-Hyeon Ahn,et al. Improving information security management: An analysis of ID-password usage and a new login vulnerability measure , 2012, Int. J. Inf. Manag..

[9] Edward W. Felten,et al. Password management strategies for online accounts , 2006, SOUPS '06.

[10] Alan S. Brown,et al. Generating and remembering passwords , 2004 .

[11] Xin Luo,et al. Improving multiple-password recall: an empirical study , 2009, Eur. J. Inf. Syst..

[12] Helmut Schneider,et al. The domino effect of password reuse , 2004, CACM.

[13] Sacha Brostoff,et al. Transforming the ‘Weakest Link’ — a Human/Computer Interaction Approach to Usable and Effective Security , 2001 .

[14] Brent Waters,et al. A convenient method for securely managing passwords , 2005, WWW '05.