The Center for Education and Research in Information Assurance and Security (CERIAS)

The Center for Education and Research in
Information Assurance and Security (CERIAS)
Center for Education and Research in Information Assurance and Security

Password policy simulation and analysis

Author

Elisa Bertino, Richard Shay, Abhilasha Bhargav-Spantzel

Entry type

proceedings

Abstract

Passwords are an ubiquitous and critical component of many security systems. As the information and access guarded by passwords become more necessary, we become ever more dependent upon the security passwords provide. The creation and management of passwords is crucial, and for this we must develop and deploy password policies. This paper focuses on defining and modeling password policies for the entire password policy lifecycle. The paper first discusses a language for specifying password policies. Then, a simulation model is presented with a comprehensive set of variables and the algorithm for simulating a password policy and its impact. Finally, the paper presents several simulation results using the password policy simulation tool.

Date

2007

URL

http://portal.acm.org/citation.cfm?id=1314405

Booktitle

Workshop On Digital Identity Management. Proceedings of the 2007 ACM workshop on Digital identity management

Key alpha

Bertino

Pages

1-10

Publisher

ACM

Affiliation

Purdue University

Publication Date

2007-00-00

Isbn

978-1-59593-889-3

BibTex-formatted data

To refer to this entry, you may select and copy the text below and paste it into your BibTex document. Note that the text may not contain all macros that BibTex supports.