"Give Me Letters 2, 3 and 6!": Partial Password Implementations and Attacks

@inproceedings{Aspinall2013GiveML,
  title={"Give Me Letters 2, 3 and 6!": Partial Password Implementations and Attacks},
  author={David Aspinall and Mike Just},
  booktitle={Financial Cryptography},
  year={2013}
}
A partial password is a query of a subset of characters from a full password, posed as a challenge such as “Give me letters 2, 3 and 6 from your password”. Partial passwords are commonly used in the consumer financial sector, both online and in telephone banking. They provide a cheap way of providing a varying challenge that prevents eavesdroppers or intermediate systems learning a shared secret in a single step. Yet, despite widespread adoption among millions of consumers, this mechanism has… CONTINUE READING
BETA

From This Paper

Figures, tables, and topics from this paper.

References

Publications referenced by this paper.
SHOWING 1-10 OF 19 REFERENCES

SkullSecurity blog, passwords page. http://www.skullsecurity.org/ wiki/index.php/Passwords

  • R. Bowes
  • Accessed September
  • 2012
2 Excerpts

Similar Papers

Loading similar papers…