Texonom
Texonom
/
Engineering
Engineering
/Service Engineering/Computer Security/Access Control/Authentication/Login/
Password
Loading views...
Search

Password

Creator
Creator
Seonglae ChoSeonglae Cho
Created
Created
2022 Aug 3 15:16
Editor
Editor
Seonglae ChoSeonglae Cho
Edited
Edited
2025 Dec 15 11:27
Refs
Refs
PassKey
  • Bcrypt
    used (complexity 10 rounds) with
    Salting
  • TLS
    1.2 or higher only, SSL v2/v3 not supported
  • Multi-factor authentication options: SMS, TOTP (Authenticator app) supported
  • Minimum 10 characters + score 3 or higher (based on offline slow hash attack criteria "safely unguessable" level, estimated attempts < 10^10)
Password Usages
Password Hashing
Password Manager
Password Recovery
Password Rule
 
 
 
 

History

Passwordless: a different kind of hell?
It's no secret that authenticating into services is an unresolved topic. With time, we have managed to make them more secure, but that was at the expense of user experience. The new generation of mail codes and authenticator apps has moved us from the ease of one-click browser autocomplete to complex ordeals involving multiple steps and sometimes multiple devices.
Passwordless: a different kind of hell?
https://jcarlosroldan.com/post/315/passwordless-a-different-kind-of-hell
Passwordless: a different kind of hell?

Choosing a truly strong password

Password strength explained
I try to explain how attackers would guess your password, should they get their hands on your encrypted data. There are some thoughts on the strength of real-world passwords and suggestions for your new password.
Password strength explained
https://palant.info/2023/01/30/password-strength-explained/
Password strength explained
 
 

Recommendations

Texonom
Texonom
/
Engineering
Engineering
/Service Engineering/Computer Security/Access Control/Authentication/Login/
Password
Copyright Seonglae Cho