CISSP Exam Cram, 5th Edition by Michael Gregg
Author:Michael Gregg [Michael Gregg]
Language: eng
Format: epub
Publisher: Pearson IT Certification
Published: 2021-07-18T16:00:00+00:00
Something You Know (Type 1): Passwords and PINs
We begin our discussion of authentication systems by discussing passwords. Of the three types of authentication, passwords are the most widely used. The problem with this method is that passwords are typically weak. Consider the following:
People use passwords that are easy to remember.
Difficult passwords might be written down and left where others can find them.
Most of us are guilty of reusing passwords.
Reputability is a real issue with passwords because it is hard to prove who made a specific transaction or gained access.
Passwords can be cracked, sniffed, observed, replayed, or broken. Common password cracking can use dictionary, hybrid, or exhaustive search (brute force) attacks.
Dictionary attacks use common dictionary words, and hybrid password cracking uses a combination of words as random characters, such as 1password or p@ssw0rd. Brute force attempts all possible variations, which is typically time consuming. Rainbow table attacks use precomputed hash tables to reduce password cracking time and recover the plaintext password.
Many people are predictable and, as such, might use passwords that are easily guessed. Many times passwords are based on birthdays, anniversaries, a childâs name, or even a favorite pet. With the massive growth of the Internet and âBig Dataâ it is easy to use social engineering to find this information.
Download
This site does not store any files on its server. We only index and link to content provided by other sites. Please contact the content providers to delete copyright contents if any and email us, we'll remove relevant links or contents immediately.
CISA - Certified Information Systems Auditor Study Guide by Hemang Doshi(1382)
Implementing Microsoft Azure Architect Technologies: AZ-303 Exam Prep and Beyond by Brett Hargreaves and Sjoukje Zaal(1274)
Microsoft Python Certification Exam 98-281 & PCEP âPreparation Guide: Introduction To Programming Using Python, PCEP â Certified Entry Level Python Programmer by Raman Archith & Raman Dhyanashri & Raman R & Publications Raman(835)
CompTIA Security+: SY0-601 Certification Guide Second Edition by Ian Neil(667)
CompTIA CySA+ Cybersecurity Analyst Certification All-in-One Exam Guide (Exam CS0-002) by Brent Chapman(650)
CCNP Data Center Application Centric Infrastructure 300-620 DCACI Official Cert Guide by Ammar Ahmadi(625)
CompTIA PenTest+ Certification For Dummies by Glen E. Clarke(594)
Exam Ref AZ-500 Microsoft Azure Security Technologies by Yuri Diogenes & Orin Thomas(531)
AZ-303 : Microsoft Azure Architect Technologies : Volume : 01 by Specialist IP(510)
CompTIA Security+ Practice Tests by David Seidl(505)
Casp+ Comptia Advanced Security Practitioner Certification All-in-one Exam Guide, Exam Cas-003 (9781260441345) by Lane Nicholas; Conklin Arthur; White Gregory B.; Williams Dwayne(472)
CompTIA PenTest+ Certification All-in-One Exam Guide (Exam PT0-001) by Raymond Nutting(461)
Official Google Cloud Certified Associate Cloud Engineer Study Guide by Dan Sullivan(451)
AWS Certified Solutions Architect Study Guide Associate (SAA-C01) Exam Second Edition by Ben Piper & David Clinton(418)
AWS Certified SysOps Administrator Practice Tests 2021: AWS Exam-Difficulty Practice Questions with Answers & detailed Explanations by Davis Neal(400)
Cisco Certified DevNet Associate DEVASC 200-901 Official Cert Guide by Chris Jackson & Adrian Iliesiu & Ashutosh Malegaonkar & Jason Gooley(387)
Redis Certified Developer: Exam Practice Tests by Scutaru Cristian(379)
AWS Certified SysOps Administrator Study Guide by Sara Perrott & Brett McLaughlin(372)
Exam Ref MS-500 Microsoft 365 Security Administration by Ed Fisher & Nate Chamberlain(369)
