Escolar Documentos
Profissional Documentos
Cultura Documentos
Agenda
My
/////////////////////////////////////////////////////
pass phrase is hard to guess
Correct
Correct horse battery staple
staple
yeti
yeti permutes kilobyte visas skin
skin
Easier to remember
More secure?
...
Diceware
is
Entropy
Strength comparation
XKCD:
Trough 20 years of effort,
we've successfully trained everyone to use
passwords that are hard for humans to remember,
but easy for computers to guess
https://xkcd.com/936/
Hashing + salting
Hashing + salting
Use slow and good and hash functions like bcrypt never
MD4, MD5 or SHA1.
Generate new random salt for each user, do not reuse salt.
Password cr/hacking
Phishing
Social engineering
2FA
New methods
https://goo.gl/0rwfkJ
RSA auth.
Questions?