David C. Feldmeier, Philip R. Karn  Home/Search
Context Related
| ja.net/CERT/JANETCERT/....crypto_89.ps Cached: PS.gz PS PDF This document uses CoBlitz to cache paper downloads. If your firewall is blocking outgoing connections to port 3125, you can use these links to download local copies.
Image Update HelpPS.gz PS PDF From: ja.net/CERT/JANETCERT/SUMMARY (more) (Enter author homepages) |
Rate this article:      (best)Comment on this article |
Abstract: Passwords in the UNIX operating system are encrypted with the crypt algorithm and kept in the publicly-readable file /etc/passwd. This paper examines the vulnerability of UNIX to attacks on its password system. Over the past 10 years, improvements in hardware and software have increased the crypts/second/dollar ratio by five orders of magnitude. We reexamine the UNIX password system in light of these advances and point out possible solutions to the problem of easily found passwords. The paper... (Update)
Similar documents based on text: More All
0.7: Person Version [Year [[ DEC 3100 Sun 3/50 Sun 4/280 VAX 11/780 - Unix Bsd Baldwin (Correct)
0.4: XQS/MD*Crypt as a Means of Education and Computation - Feuerhake (2002) (Correct)
0.2: A Simple Scheme to Make Passwords Based on One-Way Functions Much .. - Manber (1996) (Correct)
Related documents from co-citation: More All
12: Password Security: A Case History - Morris, Thompson - 1979
4: Encrypted Key Exchange: Password-Based Protocols Secure Against Dictionary Attac.. - Bellovin, Merritt - 1992
4: Reducing Risks from Poorly Chosen Keys - Lomas, Gong et al. - 1989
BibTeX entry: (Update)
D.C. Feldmeier and P.R. Karn, "UNIX Password Security - Ten Years Later", Proceedings of Crypto'89, published as Lecture Notes in Computer Science, No.435, Springer-Verlag, pp.44-63. http://citeseer.ist.psu.edu/188968.html More
@inproceedings{ feldmeier89unix,
author = "David C. Feldmeier and Philip R. Karn",
title = "{UNIX} Password Security - Ten Years Later",
booktitle = "{CRYPTO}",
pages = "44-63",
year = "1989",
url = "citeseer.ist.psu.edu/188968.html" }
Citations (may not include all citations):108 Prediction and entropy of printed english (context) - Shannon - 1951
61 Password security: A case history - Morris, Thompson - 1979
53 The internet worm program: An analysis - Spafford - 1989
51 Security in Computing (context) - Pfleeger - 1989
51 Exhaustive cryptanalysis of the NBS data encryption standard (context) - Diffie, Hellman - 1977
38 Cryptography: A Primer (context) - Konheim - 1981
22 Speeding up secret computations with insecure auxiliary devi.. (context) - Matsumoto, Kato et al. - 1988
11 An application of a fast data encryption standard implementa.. (context) - Bishop - 1988
8 Efficient hardware and software implementations for the DES (context) - Davio, Desmedt et al. - 1984
4 Analytical characteristics of the DES (context) - Davio, Desmedt et al. - 1983
2 source code (context) - Baldwin, crypt
2 source code (context) - Mitchell, Questor
The graph only includes citing articles where the year of publication is known.
Documents on the same site (http://www.ja.net/CERT/JANET-CERT/SUMMARY.html): More
A High-Speed Software DES Implementation - Feldmeier (1989) (Correct)
UNIX Password Security - Walter Belgers (1993) (Correct)
Establishing a Computer Security Incident Response Capability.. - John Wack (1991) (Correct)
Online articles have much greater impact More about CiteSeer.IST Add search form to your site Submit documents Feedback
CiteSeer.IST - Copyright Penn State and NEC