Re: Password Psychology

There is one other consideration that should be mentioned here. Especially
as it relates to the time value of the information or service provided which
needs a password.

Case in point, it seems almost every web site you go to, or every time you
purchase new software, you are prompted for a password on the site. Many of
these servces are of no significant import, and as such, most people will
not make an effort for a secure password. I.e. my password for say a new
computer software is not as secure as my password for a yahoo account or my
email account.

And there is the never ending cycle of needing new passwords for work
enviornments. My current work situation requires 3 different passwords for
3 different systems. . . each of a differing level of import. One of the
systems prompts you every 30 days for a new password.

Although password managment software and USB memory tags are great, as with
all things, they can be lost, stolen or fail.









"Booted Cat" <yaoziyuan@xxxxxxxxx> wrote in message
news:1169248255.659114.130310@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
I hypothesize that a person's actual "semantic space for password
conception" is very small (the number of the elements he would possibly
use to construct his password is very small). For example, a person
would usually use names or numbers in his daily life as part of his
password, such as a relative's birthday or phone number.

Gathered enough social information of a person, we might have a high
success ratio in cracking a person's password.

Yao Ziyuan



.