The password security analysis of network forums
暂无分享,去创建一个
In this paper, we analyze the password security of two popular network forums under the circumstances of both server and cookie encryption. Firstly, we investigate the inner encryption principles for user's password in each forum including cryptographic algorithms, key derivation ways and encrypted storage. Besides, we evaluate and compare the password security level according to password recovery ability nowadays. In order to enhance the security of forum users' passwords, we also give some pieces of suggestion with respect to concrete implementation way of encryption algorithms and strategy of password choice.
[1] Lijun Zhang,et al. The security analysis of PhpBB forum , 2014 .
[2] Philippe Oechslin,et al. Making a Faster Cryptanalytic Time-Memory Trade-Off , 2003, CRYPTO.
[3] Andreas Klein,et al. Attacks on the RC4 stream cipher , 2008, Des. Codes Cryptogr..
[4] Li-Yi Wei,et al. Parallel white noise generation on a GPU via cryptographic hash , 2008, I3D '08.