CN105095737B - 检测弱密码的方法和装置 - Google Patents
检测弱密码的方法和装置 Download PDFInfo
- Publication number
- CN105095737B CN105095737B CN201410153728.8A CN201410153728A CN105095737B CN 105095737 B CN105095737 B CN 105095737B CN 201410153728 A CN201410153728 A CN 201410153728A CN 105095737 B CN105095737 B CN 105095737B
- Authority
- CN
- China
- Prior art keywords
- password
- measured
- identity information
- detection
- user
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/45—Structures or tools for the administration of authentication
- G06F21/46—Structures or tools for the administration of authentication by designing passwords or checking the strength of passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/06—Network architectures or network communication protocols for network security for supporting key management in a packet data network
- H04L63/061—Network architectures or network communication protocols for network security for supporting key management in a packet data network for key exchange, e.g. in peer-to-peer networks
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- General Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Signal Processing (AREA)
- Computer Networks & Wireless Communication (AREA)
- Computing Systems (AREA)
- Theoretical Computer Science (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Telephone Function (AREA)
- Storage Device Security (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
Description
Claims (8)
Priority Applications (10)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410153728.8A CN105095737B (zh) | 2014-04-16 | 2014-04-16 | 检测弱密码的方法和装置 |
TW103132984A TWI640890B (zh) | 2014-04-16 | 2014-09-24 | Method and device for detecting weak password |
PL15780274T PL3132371T3 (pl) | 2014-04-16 | 2015-04-15 | Sposób i urządzenie do wykrywania słabego hasła |
PCT/US2015/026017 WO2015160983A1 (en) | 2014-04-16 | 2015-04-15 | Method and apparatus of detecting weak password |
EP15780274.5A EP3132371B1 (en) | 2014-04-16 | 2015-04-15 | Method and apparatus of detecting weak password |
US14/687,811 US9722997B2 (en) | 2014-04-16 | 2015-04-15 | Method and apparatus of detecting weak password |
ES15780274T ES2804763T3 (es) | 2014-04-16 | 2015-04-15 | Método y aparato de detección de contraseña débil |
JP2016557132A JP6502957B2 (ja) | 2014-04-16 | 2015-04-15 | 弱いパスワードを検出する方法及び装置 |
KR1020167027814A KR102088553B1 (ko) | 2014-04-16 | 2015-04-15 | 취약 패스워드 검출 방법 및 장치 |
HK16101345.2A HK1213342A1 (zh) | 2014-04-16 | 2016-02-04 | 檢測弱密碼的方法和裝置 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410153728.8A CN105095737B (zh) | 2014-04-16 | 2014-04-16 | 检测弱密码的方法和装置 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN105095737A CN105095737A (zh) | 2015-11-25 |
CN105095737B true CN105095737B (zh) | 2019-03-01 |
Family
ID=54322979
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201410153728.8A Active CN105095737B (zh) | 2014-04-16 | 2014-04-16 | 检测弱密码的方法和装置 |
Country Status (10)
Country | Link |
---|---|
US (1) | US9722997B2 (zh) |
EP (1) | EP3132371B1 (zh) |
JP (1) | JP6502957B2 (zh) |
KR (1) | KR102088553B1 (zh) |
CN (1) | CN105095737B (zh) |
ES (1) | ES2804763T3 (zh) |
HK (1) | HK1213342A1 (zh) |
PL (1) | PL3132371T3 (zh) |
TW (1) | TWI640890B (zh) |
WO (1) | WO2015160983A1 (zh) |
Families Citing this family (41)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN105656891B (zh) * | 2015-12-31 | 2018-09-28 | 亿阳安全技术有限公司 | 一种弱口令核查方法及装置 |
AU2017222421B2 (en) | 2016-02-23 | 2022-09-01 | nChain Holdings Limited | Personal device security using elliptic curve cryptography for secret sharing |
EP4167165A1 (en) | 2016-02-23 | 2023-04-19 | nChain Licensing AG | Blockchain-based exchange with tokenisation |
EA201891829A1 (ru) | 2016-02-23 | 2019-02-28 | Нчейн Холдингс Лимитед | Способ и система для эффективного перевода криптовалюты, связанной с заработной платой, в блокчейне для создания способа и системы автоматизированной выплаты заработной платы на основе смарт-контрактов |
JP7114469B2 (ja) | 2016-02-23 | 2022-08-08 | エヌチェーン ホールディングス リミテッド | セキュアな投票及び配布に利用されるブロックチェーンが実装された計数システム及び方法 |
EP3420517B1 (en) | 2016-02-23 | 2022-07-06 | nChain Holdings Limited | A method and system for the secure transfer of entities on a blockchain |
WO2017145048A1 (en) | 2016-02-23 | 2017-08-31 | nChain Holdings Limited | Cryptographic method and system for secure extraction of data from a blockchain |
CA3013185A1 (en) | 2016-02-23 | 2017-08-31 | nChain Holdings Limited | A method and system for securing computer software using a distributed hash table and a blockchain |
JP7249148B2 (ja) | 2016-02-23 | 2023-03-30 | エヌチェーン ライセンシング アーゲー | ブロックチェーンベースユニバーサルトークン化システム |
WO2017145016A1 (en) | 2016-02-23 | 2017-08-31 | nChain Holdings Limited | Determining a common secret for the secure exchange of information and hierarchical, deterministic cryptographic keys |
US11410145B2 (en) | 2016-02-23 | 2022-08-09 | nChain Holdings Limited | Blockchain-implemented method for control and distribution of digital content |
EP3862956B1 (en) * | 2016-02-23 | 2024-01-03 | nChain Licensing AG | Secure multiparty loss resistant storage and transfer of cryptographic keys for blockchain based systems in conjunction with a wallet management system |
GB2562621A (en) | 2016-02-23 | 2018-11-21 | Nchain Holdings Ltd | System and method for controlling asset-related actions via a blockchain |
EP3420507A1 (en) | 2016-02-23 | 2019-01-02 | Nchain Holdings Limited | Tokenisation method and system for implementing exchanges on a blockchain |
MX2018010057A (es) | 2016-02-23 | 2019-01-21 | Nchain Holdings Ltd | Metodo de registro y de manejo automatico para contratos inteligentes de cumplimiento obligado por cadenas de bloques. |
CN105760748B (zh) * | 2016-02-26 | 2018-11-23 | 北京齐尔布莱特科技有限公司 | 一种弱密码检测方法、装置和服务器 |
CN107437022B (zh) * | 2016-05-27 | 2019-08-20 | 北京神州泰岳软件股份有限公司 | 一种弱口令核查方法和装置 |
CN108737094B (zh) * | 2017-04-21 | 2021-12-14 | 腾讯科技(深圳)有限公司 | 一种域密码安全性检测的方法及相关设备 |
CN107872323B (zh) * | 2017-11-06 | 2020-05-22 | 中国科学院信息工程研究所 | 一种基于用户信息检测的口令安全性评估方法及系统 |
CN108256317B (zh) * | 2017-12-05 | 2023-04-18 | 西安交大捷普网络科技有限公司 | 一种弱密码检测方法 |
GB2569398B (en) * | 2017-12-18 | 2022-03-02 | V Auth Ltd | Authentication method and device |
CN108965264A (zh) * | 2018-06-26 | 2018-12-07 | 郑州云海信息技术有限公司 | 一种快速检测企业内网设备ssh弱口令的方法与系统 |
CN109587110A (zh) * | 2018-10-09 | 2019-04-05 | 阿里巴巴集团控股有限公司 | 一种弱口令检测方法、装置、计算机设备及业务服务器 |
CN109361518A (zh) * | 2018-10-16 | 2019-02-19 | 杭州安恒信息技术股份有限公司 | 一种弱口令检测方法、装置和计算机可读存储介质 |
US11055398B2 (en) * | 2018-11-02 | 2021-07-06 | Rsa Security Llc | Monitoring strength of passwords |
CN109684850A (zh) * | 2018-11-09 | 2019-04-26 | 平安科技(深圳)有限公司 | 测试密码的方法、装置、计算机设备和存储介质 |
CN111490965B (zh) * | 2019-01-28 | 2022-03-15 | 顺丰科技有限公司 | 一种Windows环境弱口令的检测系统、方法 |
CN110753027A (zh) * | 2019-06-05 | 2020-02-04 | 青岛海信网络科技股份有限公司 | 一种UPnP协议的设备弱口令验证的方法及装置 |
CN110519289B (zh) * | 2019-09-02 | 2022-03-11 | 杭州安恒信息技术股份有限公司 | 基于工控系统的弱口令探测方法和装置 |
CN111339527B (zh) * | 2020-02-20 | 2022-10-21 | 北京天融信网络安全技术有限公司 | 一种弱口令检测方法及系统 |
CN111488581A (zh) * | 2020-03-26 | 2020-08-04 | 杭州迪普科技股份有限公司 | 弱口令漏洞检测方法、装置、电子设备及计算机可读介质 |
CN111641584A (zh) * | 2020-04-13 | 2020-09-08 | 国网浙江省电力有限公司杭州供电公司 | 摄像头弱口令监测方法及装置 |
CN112307462A (zh) * | 2020-07-20 | 2021-02-02 | 神州融安科技(北京)有限公司 | 提示弱密码的方法、装置、电子设备及计算机可读存储介质 |
CN112583789B (zh) * | 2020-11-04 | 2023-03-14 | 杭州数梦工场科技有限公司 | 被非法登录的登录接口确定方法、装置及设备 |
CN112702334B (zh) * | 2020-12-21 | 2022-11-29 | 中国人民解放军陆军炮兵防空兵学院 | 静态特征与动态页面特征结合的web弱口令检测方法 |
CN112613028A (zh) * | 2020-12-29 | 2021-04-06 | 北京天融信网络安全技术有限公司 | 弱密码检测方法、装置、电子设备及可读存储介质 |
CN112989360B (zh) * | 2021-03-26 | 2022-07-15 | 湖南匡安网络技术有限公司 | 一种基于并行二叉树的弱口令漏洞自动检测方法及系统 |
CN113132380A (zh) * | 2021-04-18 | 2021-07-16 | 重庆化工职业学院 | 一种密码算法的安全性评估系统、方法、设备及介质 |
US11936785B1 (en) | 2021-12-27 | 2024-03-19 | Wiz, Inc. | System and method for encrypted disk inspection utilizing disk cloning techniques |
US20230376586A1 (en) * | 2022-05-23 | 2023-11-23 | Wiz, Inc. | Techniques for improved virtual instance inspection utilizing disk cloning |
CN117034251B (zh) * | 2023-09-28 | 2024-01-05 | 杭州海康威视数字技术股份有限公司 | 弱口令自适应筛查方法、装置及设备 |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102819701A (zh) * | 2012-06-29 | 2012-12-12 | 北京奇虎科技有限公司 | 一种填表组件密码安全性提示的方法和装置 |
CN103177204A (zh) * | 2013-03-29 | 2013-06-26 | 北京奇虎科技有限公司 | 密码信息提示方法及装置 |
CN103227992A (zh) * | 2013-04-01 | 2013-07-31 | 南京理工大学常熟研究院有限公司 | 基于Android终端的漏洞扫描系统 |
CN103973651A (zh) * | 2013-02-01 | 2014-08-06 | 腾讯科技(深圳)有限公司 | 基于加盐密码库的账户密码标识设置、查询方法及装置 |
Family Cites Families (16)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7685431B1 (en) | 2000-03-20 | 2010-03-23 | Netscape Communications Corporation | System and method for determining relative strength and crackability of a user's security password in real time |
US7367053B2 (en) * | 2002-10-11 | 2008-04-29 | Yamatake Corporation | Password strength checking method and apparatus and program and recording medium thereof, password creation assisting method and program thereof, and password creating method and program thereof |
US7581245B2 (en) * | 2004-03-05 | 2009-08-25 | Sap Ag | Technique for evaluating computer system passwords |
US8407784B2 (en) | 2008-03-19 | 2013-03-26 | Websense, Inc. | Method and system for protection against information stealing software |
US8886950B2 (en) | 2008-12-17 | 2014-11-11 | At&T Intellectual Property I, L.P. | Apparatus, methods, and computer program products for facilitating secure password creation and management |
TWI502524B (zh) * | 2010-03-05 | 2015-10-01 | Alibaba Group Holding Ltd | Payment data processing method, system, payment terminal and payment server |
CN103370688B (zh) * | 2010-07-29 | 2016-11-09 | 尼尔默尔·朱萨尼 | 一种由简单用户密码生成多因素个性化服务器强密钥的系统及其方法 |
US8539599B2 (en) * | 2010-12-28 | 2013-09-17 | Sap Ag | Password protection using personal information |
US8769607B1 (en) | 2011-01-26 | 2014-07-01 | Intuit Inc. | Systems and methods for evaluating a password policy |
US9471772B2 (en) * | 2011-06-01 | 2016-10-18 | Paypal, Inc. | Password check by decomposing password |
US8850536B2 (en) * | 2011-08-05 | 2014-09-30 | Safefaces LLC | Methods and systems for identity verification in a social network using ratings |
US20130055379A1 (en) | 2011-08-23 | 2013-02-28 | Research In Motion Limited | System, device and method for authentication |
US8712921B2 (en) | 2011-10-03 | 2014-04-29 | International Business Machines Corporation | Receiving security risk feedback from linked contacts due to a user's system actions and behaviors |
US8973116B2 (en) * | 2012-04-10 | 2015-03-03 | Dropbox, Inc. | Pattern entropy password strength estimator |
US20130318578A1 (en) * | 2012-05-24 | 2013-11-28 | Ca, Inc. | Password management and smart honey pot system |
US9218481B2 (en) * | 2012-08-31 | 2015-12-22 | International Business Machines Corporation | Managing password strength |
-
2014
- 2014-04-16 CN CN201410153728.8A patent/CN105095737B/zh active Active
- 2014-09-24 TW TW103132984A patent/TWI640890B/zh active
-
2015
- 2015-04-15 WO PCT/US2015/026017 patent/WO2015160983A1/en active Application Filing
- 2015-04-15 ES ES15780274T patent/ES2804763T3/es active Active
- 2015-04-15 US US14/687,811 patent/US9722997B2/en active Active
- 2015-04-15 EP EP15780274.5A patent/EP3132371B1/en active Active
- 2015-04-15 KR KR1020167027814A patent/KR102088553B1/ko active IP Right Grant
- 2015-04-15 JP JP2016557132A patent/JP6502957B2/ja active Active
- 2015-04-15 PL PL15780274T patent/PL3132371T3/pl unknown
-
2016
- 2016-02-04 HK HK16101345.2A patent/HK1213342A1/zh unknown
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102819701A (zh) * | 2012-06-29 | 2012-12-12 | 北京奇虎科技有限公司 | 一种填表组件密码安全性提示的方法和装置 |
CN103973651A (zh) * | 2013-02-01 | 2014-08-06 | 腾讯科技(深圳)有限公司 | 基于加盐密码库的账户密码标识设置、查询方法及装置 |
CN103177204A (zh) * | 2013-03-29 | 2013-06-26 | 北京奇虎科技有限公司 | 密码信息提示方法及装置 |
CN103227992A (zh) * | 2013-04-01 | 2013-07-31 | 南京理工大学常熟研究院有限公司 | 基于Android终端的漏洞扫描系统 |
Non-Patent Citations (1)
Title |
---|
利用Samba对Windows主机进行弱密码检测的实现原理分析;石磊 等;《科技咨询导报》;20061231(第20期);第115,117页 |
Also Published As
Publication number | Publication date |
---|---|
US9722997B2 (en) | 2017-08-01 |
HK1213342A1 (zh) | 2016-06-30 |
KR102088553B1 (ko) | 2020-03-13 |
EP3132371A1 (en) | 2017-02-22 |
TWI640890B (zh) | 2018-11-11 |
TW201541277A (zh) | 2015-11-01 |
CN105095737A (zh) | 2015-11-25 |
EP3132371B1 (en) | 2020-06-03 |
JP2017517048A (ja) | 2017-06-22 |
JP6502957B2 (ja) | 2019-04-17 |
US20150304302A1 (en) | 2015-10-22 |
PL3132371T3 (pl) | 2020-11-16 |
ES2804763T3 (es) | 2021-02-09 |
EP3132371A4 (en) | 2017-11-22 |
WO2015160983A1 (en) | 2015-10-22 |
KR20160144995A (ko) | 2016-12-19 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN105095737B (zh) | 检测弱密码的方法和装置 | |
US10848310B2 (en) | Method and device for identifying user identity | |
CN104144419B (zh) | 一种身份验证的方法、装置及系统 | |
US8875255B1 (en) | Preventing user enumeration by an authentication server | |
CN104767719B (zh) | 确定登录网站的终端是否是移动终端的方法及服务器 | |
CN105471581B (zh) | 一种身份验证方法及装置 | |
US10129245B2 (en) | Timing array as credentials | |
US11310224B2 (en) | Enhanced security authentication system | |
US20140026189A1 (en) | Method, client, server and system of login verification | |
US10135810B2 (en) | Selective authentication system | |
CN104113552A (zh) | 一种平台授权方法、平台服务端及应用客户端和系统 | |
US9756028B2 (en) | Methods, systems and computer program products for secure access to information | |
CN105100029B (zh) | 对用户进行身份验证的方法和装置 | |
CN104158802A (zh) | 一种平台授权方法、平台服务端及应用客户端和系统 | |
CN103023638A (zh) | 一种基于移动终端的身份验证方法及装置 | |
CN102073822A (zh) | 防止用户信息泄漏的方法及系统 | |
CN107733883A (zh) | 一种检测批量注册账号的方法及装置 | |
JP2020161185A (ja) | パスワードの照合のための記号入力のタイミングの使用 | |
CN104618356B (zh) | 身份验证方法及装置 | |
CN105337946B (zh) | 网页防伪验证的方法和装置 | |
CN114978934A (zh) | 信息脱敏方法和装置、电子设备及计算机可读存储介质 | |
US9781129B1 (en) | Authenticating an entity | |
Vibar | Authentication key-exchange using SMS for web-based platforms | |
US9485242B2 (en) | Endpoint security screening | |
Mahalim et al. | Building “Passwle” System Based on Siamese Neural Network |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
REG | Reference to a national code |
Ref country code: HK Ref legal event code: DE Ref document number: 1213342 Country of ref document: HK |
|
GR01 | Patent grant | ||
GR01 | Patent grant | ||
TR01 | Transfer of patent right | ||
TR01 | Transfer of patent right |
Effective date of registration: 20191205 Address after: P.O. Box 31119, grand exhibition hall, hibiscus street, 802 West Bay Road, Grand Cayman, Cayman Islands Patentee after: Innovative advanced technology Co., Ltd Address before: A four-storey 847 mailbox in Grand Cayman Capital Building, British Cayman Islands Patentee before: Alibaba Group Holding Co., Ltd. |