SRA 221 Lecture Notes - Lecture 6: Dictionary Attack, Brute-Force Attack, Password Cracking

A phonetic password generator picks two segments randomly for each six-letter password. [ assume that letters can be repeated: e. g. babtat is a valid password] [you can calculate it, or just mention whether it is high or low, and why] [hint: you may get an idea after working on password cracking lab] By doing this using brute force would be very difficult even without a cracking software. When looking at the cracking lab we just had, a brute force attack would be speeded up by software to a few hours so breaking the password would be easy. Indicate two possible changes that would make it stronger and state why: we would implement a third set so it would be cvc cvc cvc = 2,2053. This would then increase the probability of guessing one password correctly to 1/10,720,765,130.