Abstract
TarGuess-I is a leading targeted password guessing model using users’ personally identifiable information (PII) proposed at ACM CCS 2016 by Wang et al. Owing to its superior guessing performance, TarGuess-I has attracted widespread attention in password security. Yet, TarGuess-I fails to capture popular passwords and special strings in passwords correctly. Thus we propose TarGuess-I+4: an improved password guessing model, which is capable of identifying popular passwords by generating top-300 most popular passwords from similar websites and grasping special strings by extracting continuous characters from user-generated PII. We conduct a series of experiments on 6 real-world leaked datasets and the results show that our improved model outperforms TarGuess-I by 9.07% on average with 1000 guesses, which proves the effectiveness of our improvements.
Author supplied keywords
Cite
CITATION STYLE
Xie, Z., Zhang, M., Yin, A., & Li, Z. (2020). A New Targeted Password Guessing Model. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 12248 LNCS, pp. 350–368). Springer. https://doi.org/10.1007/978-3-030-55304-3_18
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
