Perfect Passwords: Selection, Protection and Authentication
暫譯: 完美密碼：選擇、保護與驗證

Description

 Create Password Policies That Baffle the Bad Guys, Not Your Users

Perfect Passwords examines passwords from the perspective of administrators trying to secure their networks, users trying to not forget their passwords, and hackers trying to crack these passwords to gain unauthorized access to everything from corporate networks to private bank accounts to pornographic Web sites. Author Mark Burnett has accumulated and analyzed more than 4 million user passwords. Through his research, he has discovered what works, what doesn’t work, and how many people probably have dogs named Spot.

 

“As a penetration tester, password attacks were a zero-sum game; my victory caused their loss. Burnett's Perfect Passwords offers uncomplicated solutions for creating memorable passwords that preserve password strength.”

    --Erik Pace Birkholz, Founder & President, Special Ops Security

 

“Please DO NOT read this book; I still wanna get your passwords!”

         --Kevin Mitnick, Author, Lecturer, and Security Consultant, Mitnick Security Consulting LLC

 

“Dude, this is pretty cool stuff.”

--Jesper M. Johansson, Ph.D., ISSAP, Senior Security Strategist, Security Technology Unit, Microsoft Corporation

 

“When I first wrote l0phtCrack I thought to myself,‘why don't people understand passwords and more importantly, where the underlying mechanisms succeed and fail?’ I wish this book would have existed many years earlier.”

          --.mudge, creator of l0phtCrack, founder of @stake and Intrusic, and adviser to the U.S. Government

 

“Mark Burnett shows a remarkable level of creativity and ingenuity... This book is chock full of information that will have users looking forward to password change day!”

           --Thomas W. Shinder, M.D., Microsoft MVP - ISA Firewalls

 

“It's about time passwords got tackled in a way that makes sense... The administrator of our network changed the company's password policy the next day after reading this book.”

          --Caleb Sima, CTO & Founder SPI Dynamics

 

"Mark Burnett has written a number of security articles for my magazine, and they have always been top-notch. This book continues in that tradition. It's an outstanding compilation of password theory and practices that's guaranteed to make your own passwords, and your network, safer. Highly recommended."

          --Keith Ward, Editor, Redmond Magazine

 

"The most in-depth look at passwords ever done. Every administrator should read and understand this book!"

          --Roger A. Grimes, CISSP, Microsoft MVP - Windows Security

 

"Great book, qg98Z\!(#*. is no longer my password! That e-mail trick saved me."

          --Paul Craig, Security Consultant, Security-Assessment.com

 

“The ideas are so creative yet so easy to implement.”

          --Scott Forsyth, Director of IT, ORCS Web

 

“Burnett uses meticulous science to help analyze a real world lingering problem.”

         --James C. Foster, Fellow. Deputy Director, CSC Global Security Solutions

 

“Now I don't dread the monthly password change...great book, don't pass on this!”

     --K, NATO Aircrew