Brute-force countermeasures

Password brute-forcing refers to trying all password permutations until the attacker finds the right one. Here are some of the most common ways to mitigate that risk: Increase the length of the password. With every additional character, the number of permutations goes up exponentially. Say you use 26 letters and 7 characters. You’ll get 8 billion combinations. Increase that to 8 characters and…

Read More

Security Questions: Not So Secure

Do you force your users to pick from a list of predefined security questions? Who is my favorite singer? I don’t have one, and even if I did, tastes change over time. What was the name of my first dog? His name was Rex. That was your guess number one anyway. In what hospital was…

Read More