Re: Words without a Dictionary

An alternative way of generating non dictionary passwords is to use letters from a given phrase that the user can remember.

A trivial example. Given the phrase Any sufficiently advanced technology is indistinguishable from magic (Arthur C. Clarke) you can make a password "Asatiifm," which is easy to remember, once you know the catchphrase. You can make the method a little bit more complicated, by instructing users to use the last letter from every odd word, and the number of letters for every even one. So the password could be "y12d10s17m5," again easy to remember from the above schema.

Don't expect the users to learn these kind of passwords on the spot, though. Some training is needed, but after a few lessons, they should be able to cope with the problem without forgetting the password and without being tempted to write it down.

Or you can borrow the idea in this article and implement some more complicated mechanism. More security, but more training needed. Your call.

Comment on Re: Words without a Dictionary

Replies are listed 'Best First'.
Re: Re: Words without a Dictionary by clintp (Curate) on Jul 23, 2003 at 02:04 UTC
I used to teach users this technique all the time. What I'd suggest is a familiar song lyric. This way the words will usually come out right and probably won't be forgotten. I suppose if you forgot the words, you could always look them up as well. Of course, there is the danger of misheard lyrics.	[reply]


"be consistent"
	PerlMonks