apparea-4----Page:6
1 2 3 4 5 6 7 8 9 10 11 12 13
|
Are passwords obsolete? Basic rules: If it is generated by the user, it can certainly be cracked If it can be remembered by the user, it can probably be cracked Exception: If the password is exchanged over a protected connection (SSL, TLS, IPSEC) If the challenge/response mechanism is designed to resist dictionary attacks |