CSIAC

Cyber Security and Information Systems Information Analysis Center

/ Password Security

Topic: Password Security

Password strength is a measure of the effectiveness of a password against guessing or brute-force attacks. In its usual form, it estimates how many trials an attacker who does not have direct access to the password would need, on average, to guess it correctly. The strength of a password is a function of length, complexity, and unpredictability.
Using strong passwords lowers overall risk of a security breach, but strong passwords do not replace the need for other effective security controls.

Podcast

Account Security – Simple Steps to Online Safety

| Leave a Comment

Protecting our various login credentials is both difficult and very important! Here are some useful tips for securing social media and email accounts: Create secure passphrases that are at least 12 characters in length Use different passphrases for each account Use a reputable password manager to keep track of your current passwords. Browse Read More

Digest Article

Aetna Replacing Security Passwords With Machine Learning Tools

| Leave a Comment

In 2016, more than three billion passwords were harvested from breaches by criminals in the U.S., according to Shape Security."Criminals exchange passwords on the Dark Web and use a technique called credential stuffing to apply passwords to targeted web domains and automatically attempt authentication for tens of thousands of compromised passwords," Routh Read More

Journal Article

The Cyber Security Collaborative Research Alliance: Unifying Detection, Agility, and Risk in Mission-Oriented Cyber Decision Making

Published in Journal of Cyber Security and Information Systems
Volume: 5 Number: 1 - Cyber Science & Technology at the Army Research Laboratory (ARL)
Authors: Patrick McDaniel and Ananthram Swami
| Leave a Comment

Abstract: For military networks and systems, the cyber domain is ever-increasingly contested and congested space. Defenders of these systems must fight through adversary action in complex tactical and strategic environments. Just now completing its third year, the Cyber-Security Collaborative Research Alliance has sought to develop approaches for Read More

Air Force Research Laboratory (AFRL) Army Research Laboratory (ARL) Artificial Intelligence (AI) Biometric Cloud Computing Critical Infrastructure Protection (CIP) Cryptography Cyber Crime Cyber Decision Making Cyber Legislation Cybersecurity Cybersecurity Training Cyber Warfare Data Breach Data Security Defense Technical Information Center (DTIC) Did You Know? DISA DoD Acquisition Lifecycle Encryption Hacking Insider Threat Internet of Things (IoT) Intrusion Detection IT Security Machine Learning Malware Mobile Security Modeling & Simulation National Institute of Standards and Technology [NIST] Network Security Open Source Software Operational Technology (OT) Password Security Phishing Protecting Controlled Unclassified Information (CUI) Quantum Computing Ransomware Risk Management Framework (RMF) Secure Software Software Assurance Software Engineering Vulnerability Wargaming Workplace Security