Security Software Zone Security Software Zone
Home Contact Us
Search in
Forum SecurityToolbox Submit Software
Security Software Zone Login
Security Software Categories
News - Articles - Reviews
Free Newsletter
Join our mailing list and receive
security software news and
advice from our experts.
Submit
  Security Software Zone » Software Reviews » Encryption » Brute Force Attack - Guess a person's username, password, credit-card number or cryptographic key

Brute Force Attack - Guess a person's username, password, credit-card number or cryptographic key
Category: Encryption
Published: 02/02/2007, 11:52  
Editor: Security Software Zone
 
Print article
Send to a friend
Search in reviews

Many systems will allow the use of weak passwords or cryptographic keys, and users will often choose easy to guess passwords, possibly found in a dictionary. Given this scenario, an attacker would cycle though the dictionary word by word, generating thousands or potentially millions of incorrect guesses searching for the valid password. When a guessed password allows access to the system, the brute force attack has been successful and the attacker is able access the account.

The same trial and error technique is also applicable to guessing encryption keys. When a web site uses a weak or small key size, its possible for an attacker to guess a correct key by testing all possible keys. Essentially there are two types of brute force attacks, (normal) brute force and reverse brute force. A normal brute force attack uses a single username against many passwords. A reverse brute force attack uses many usernames against one password. In systems with millions of user accounts, the odds of multiple users having the same password dramatically increases. While brute force techniques are highly popular and often successful, they can take hours, weeks or years to complete.
Bookmark to:
Add 'Brute Force Attack - Guess a person's username, password, credit-card number or cryptographic key' to Del.icio.us Add 'Brute Force Attack - Guess a person's username, password, credit-card number or cryptographic key' to digg Add 'Brute Force Attack - Guess a person's username, password, credit-card number or cryptographic key' to FURL Add 'Brute Force Attack - Guess a person's username, password, credit-card number or cryptographic key' to reddit Add 'Brute Force Attack - Guess a person's username, password, credit-card number or cryptographic key' to Technorati Add 'Brute Force Attack - Guess a person's username, password, credit-card number or cryptographic key' to Yahoo My Web Add 'Brute Force Attack - Guess a person's username, password, credit-card number or cryptographic key' to Stumble Upon Add 'Brute Force Attack - Guess a person's username, password, credit-card number or cryptographic key' to Google Bookmarks Add 'Brute Force Attack - Guess a person's username, password, credit-card number or cryptographic key' to RawSugar Add 'Brute Force Attack - Guess a person's username, password, credit-card number or cryptographic key' to Squidoo Add 'Brute Force Attack - Guess a person's username, password, credit-card number or cryptographic key' to Spurl Add 'Brute Force Attack - Guess a person's username, password, credit-card number or cryptographic key' to Netvouz Add 'Brute Force Attack - Guess a person's username, password, credit-card number or cryptographic key' to Rojo Add 'Brute Force Attack - Guess a person's username, password, credit-card number or cryptographic key' to Bloglines Add 'Brute Force Attack - Guess a person's username, password, credit-card number or cryptographic key' to Tailrank
Add comment
Security Software Zone is not responsible for the content of these User comments. The views and opinions expressed are those of the individual poster and not the Security Software Zone.
User comments (0):

There is no comment for this review.
 
Reviews related to Brute Force Attack - Guess a person's username, password, credit-card number or cryptographic key
 

Christopher Calisi Named Chairman & CEO at NetClarity
 A leading provider of network access control (NACWall) products, NetClarity, has named Christopher Calisi as Chairman and Chief Executive Officer. Calisi worked as a senior executive with several leading computer data integrity and security companies including Symantecm, in his more than 25-year long career.
Read More >
03/31/2008, 16:04
 

Sticky Password Manager Prevents RCSR Attacks
 As Chaplin Information Services (CIS) reports on 21 Nov, 2006 -- Mozilla Firefox and Internet Explorer web browsers exposes saved passwords to clever attackers. This vulnerability named a Reverse Cross-Site Request (RCSR). This flaw affects all users who use built-in password managers in Firefox and Internet Explorer. Mozilla has confirmed this as bug number 360493, and said they are already working on a fix for version 2.0.0.1 or 2.0.0.2, but there is no any positive feedback from Microsoft. Sticky Password developers have carefully investigated this vulnerability and claims that latest version protects stored password and login information from RCRS attacks.
Read More >
01/09/2007, 10:17
 

Enterprise Product Line Announced by Tilana Systems
 The availability of its Tilana RealCDP™ Enterprise Suite™ for corporate networks has been announced by Tilana Systems Corporation. Including encrypted true real time online CDP ("Continuous Data Protection" from automated schedule-free immediate backup transfers), folder and file synchronization, automatic archive, unlimited versioning, and web/mobile data center access, The system enables Windows based server and mobile PC networks with the robust set of Tilana features.
Read More >
06/12/2008, 07:55
 

How Encryption Works
 One means of securing an intranet is to use encryption-altering data so that only someone with access to specific decryption codes can understand the information.
Read More >
12/05/2006, 17:59
 

Zserver Storage 2.0 for Linux - Zserver Storage Prevents Loss or Theft of Corporate Information via Transparent Encryption of Data on Hard Drives
 The new solution prevents loss or theft of corporate information via transparent encryption of data on hard drives, disc arrays (RAID in any configuration), and in storage area network (SAN) archives.
Read More >
07/11/2007, 11:53

Sponsored


Copyright © 2007 Security Software Zone. All Rights Reserved. Forum Submit Software Site Map
Our websites: Titan Backup Software Invisible Secrets Encryption Software System LifeGuard Cleaner
AlphaZip Compression Tool SafeBit Disk Encryption Security Software Zone PC District