Password cracking speed: 6-digit minimum security Disclosure

LockDown.com recently announced a "time list" for obtaining passwords using brute force letter cracking ". The list contains the password length, number of combinations of passwords, and attack mode.

From the list, we can see that if you use a dual-core PC to crack the password

The simplest digital password-six digits (for example, a bank password) can be handled in an instant. Eight digits are 348 minutes, and ten digits are 163 days.

Common uppercase and lowercase letters-six 33 minutes, eight 62 days

Numbers + uppercase/lowercase letters-six digits for an hour and a half, eight digits for 253 days

Number + uppercase/lowercase letters + punctuation-six digits 22 hours, eight digits 23 years

It can be seen that for ordinary people, considering the ease of memory and length, octal digits + uppercase/lowercase letters and passwords are the safest and most convenient choice. In addition, do not use a six-digit password.

Attack Mode explanation:

A: 10,000 Passwords/sec-speed for cracking Office Passwords on Pentium 100

Level B: 100,000 Passwords/sec-speed for cracking Windows Password Cache (. PWL Files) on Pentium 100

Level C: 1,000,000 Passwords/sec-speed of cracking ZIP or ARJ compressed documents on Pentium 100

Level D: 10,000,000 Passwords/sec-dual-core processor PC

Level E: 100,000,000 Passwords/sec-workstation-level cracking, or coordinated cracking by multiple PCs

Level F: 1,000,000,000 Passwords/sec-large computer network/supercomputer

Password composition mode:

10 digits, 26 letters, 52 letters (uppercase and lowercase), 62 characters (numbers + uppercase and lowercase), 96 characters (including punctuation marks and digits)