| Publisher | USENIX Association | ||
|---|---|---|---|
| Format | HTML & PDF | Date added | 25 Aug 1999 |
| Topics | UNIX, Anti-Hacking, Application Security Tools | ||
| Downloads | 1072  popular | ||
As computer technology improves, the security of specific ciphers and one-way hash functions periodically must be reevaluated in light of new technological advances. In this paper we evaluate the security of the UNIX password scheme. We show that the UNIX password scheme is vulnerable to brute-force attack. Using PixelFlow, a SIMD parallel machine, we are able to "crack" a large fraction of passwords used in practice in 2-3 days of computation. We explain how a SIMD machine built in today's technology could "crack" any UNIX password in two days. We also describe in this paper a simple modification to the UNIX password scheme that makes it harder to break encrypted passwords using dictionary and brute force attack, thus extending the useful life of the UNIX password scheme. The modified password scheme is compatible with the existing password scheme.
Did you find this white paper useful?
20 out of 50 users found this white paper useful
Related white papers
Technology Firm Improves Application Uptime, Achieves Significant Productivity Gains
CDW is a premier technology solutions company that provides sales, design, implementation, and management of computer systems. With 6,300 employees and a data center running 1,200 servers, CDW faces many...
Migrating to Windows from UNIX and Linux
This paper explains why to consider migrating to Windows from UNIX, then choose from detailed information on how to move from UNIX systems to Windows XP, Windows 2000, and the...
GGZ NHN Improves Performance and Availability of McKesson's Electronic Patient Dossier Horizon GGZ
GGZ Noord-Holland-Noord (GGZ NHN) wanted to improve primary system performance and stability of McKesson's electronic patient dossier, Horizon GGZ, and enable interactive operations by users while the organization runs batch...
Migrating From UNIX/RISC to Red Hat Enterprise Linux on Intel Processor-Based Servers: Driving Higher Value Deep Into the Data Center
Red Hat Enterprise Linux running on Intel processor-based servers is helping companies cut TCO by up to 50 percent and more versus comparable UNIX/RISC solutions, while providing a better foundation...
TANDBERG Endpoints and IP
H.323 is an International Telecommunications Union (ITU) standard that describes the protocols, services and equipment necessary for multimedia communications including audio, video and data on networks without guaranteed Quality of...
TANDBERG Gateway and IP
H.323 is an International Telecommunications Union (ITU) standard that describes the protocols, services and equipment necessary for multimedia communications including audio, video and data on networks without guaranteed Quality of...
Ways to Migrate a Windows Application Onto UNIX/Linux
Some few reasons to migrate a Microsoft Windows application to UNIX are scalability, server consolidation, customer demand and other business factors. This white paper investigates the choices available and provides...
