Sunday, March 27, 2011

MSN publishes table on how long automated password cracking really takes: with 8 character "random" pw's of all possible chars, you're pretty safe

MSN, in a series of stories about home and computer security, offers a chart on how long it would take a hacker to crack a password of any given length and all possible upper and lower case letters, numbers, and special characters.  The link is here

Passwords that appear totally random and that are not reused anywhere else are stronger. Strings that help a user remember the complete password should be significant (as code words for things) only to the user and not be published or discussed with others. 

With only lowercase characters, for an 8-character password, it’s about 2 days; but with all possible characters, it’s about 200 years.

No comments: