|
|
|
|
Password Generator This software is provided free of charge to assist companies and organizations in strengthening the security of their information systems.
Overview Unfortunately most users and administrators of computer systems inherently choose weak passwords. These passwords are usually weak because they are often objects found in the person's workspace, names of siblings / pets, hobbies and etc., which are all items most likely well known to their co-workers as well. Another alternative to a user chosen password is to provide a strong password to the user, however this may lead to the password being too complex for the user to remember, which may result in them recording the password by some means such as on a Post-It note stuck to their computer screen. This is an ironic situation as one would like the user to have a complex password, however not too complex that they are forced to record it by some means. In addition, this solution breaks the authentication process by having the password known by others. Desirably, the chosen password should resist password guessing attacks, which requires the complete password not be a word found in a dictionary. Password Generator attempts to solve the problems described above by providing strong, but memorable passwords, which are resistant to password guessing. Password Generator accomplishes this by using adjectives, nouns and fake random words. Please note, Password Generator does not thwart a brute force password attack and, as such, a wrong password attempt lock out policy should be instituted. Typically, this can be set at the system level and will disable the users' account after a specified number of bad login attempts. In addition, many systems can force a user to choose a complex password (i.e. including upper/lower case, numbers, special characters and etc...). However, it is important to not have too many requirements such that a user will write their passwords down. |
|
|
Send em
ail
with questions or comments about this web site to