Talk:Password length parameter
From Wikipedia, the free encyclopedia
The contents of this article appear to come from a 1949 US govt. standard and are not very informative and in fact incorrect in the light of modern cryptographic methodology and computer security best practices. I feel this article should either be deleted or it should be pointed out that the content is merely of historical importance. Arvindn 00:00, 23 July 2005 (UTC)
I agree the articles should be merged. But, I don't agree they are "...not very informative and in fact incorrect in the light of modern cryptographic methodology and computer security best practices..."
The equation (basically) calculates the probability of a password being guessed by a brute-force attack (likely meant for comparison with an acceptable probability). Brute-force will ALWAYS be one method of attacking a password, regardless of advances in cryptography, so this equation gives a ball-park guess at a probability with a minimum of calculation...so I think the equation should stay.
Warren Stevens M.A.Sc. P.Eng.