An Analysis on Vulnerabilities of Password Retrying
Recently, due to security concerns, most of the computing systems have employed authentication based access control mechanisms. Again, in general, a considerable number of such systems we use in our day-to-day life. Hence, we also have to memorize a considerably large number of passwords, which incu...
| Main Authors: | , , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
American Scientific Publisher
2018
|
| Subjects: | |
| Online Access: | http://umpir.ump.edu.my/id/eprint/19609/ http://umpir.ump.edu.my/id/eprint/19609/ http://umpir.ump.edu.my/id/eprint/19609/ http://umpir.ump.edu.my/id/eprint/19609/1/An%20Analysis%20on%20Vulnerabilities%20of%20Password%20Retrying.pdf |
| Summary: | Recently, due to security concerns, most of the computing systems have employed authentication based access control mechanisms. Again, in general, a considerable number of such systems we use in our day-to-day life. Hence, we also have to memorize a considerably large number of passwords, which incurs the issue of memorability. Mostly, a user retries password due to memorability problem. However, password retrying leads to several vulnerabilities. The main objective of this paper is to unveil these vulnerabilities with appropriate evidences. In this process, we discover and report an attack, named retry attack, which is discussed elaborately. An experiment has been performed and a survey has been conducted to examine the impact of such attack on 27 participants—where the experiment has been designed in such a way that it does not violate the ethical regulations of the university and preserves the secrecy of the participants’ passwords. The results evidently demonstrate the impact of such attack. At the end, some suggestions are noted that would assist a user to tackle this kind of attack. |
|---|