The recent Mirai botnet attack demonstrated the danger of using default passwords and showed it is still a major problem. In this study we investigated several common applications and their password policies. Specifically, we analyzed if these applications: (1) have default passwords or (2) allow the user to set a weak password (i.e., they do not properly enforce a password policy). Our study shows that default passwords are still a significant problem: 61% of applications inspected initially used a default or blank password. When changing the password, 58% allowed a blank password, 35% allowed a weak password of 1 character.
CITATION STYLE
Knieriem, B., Zhang, X., Levine, P., Breitinger, F., & Baggili, I. (2018). An overview of the usage of default passwords. In Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST (Vol. 216, pp. 195–203). Springer Verlag. https://doi.org/10.1007/978-3-319-73697-6_15
Mendeley helps you to discover research relevant for your work.