capi wrote: | ||
Actually, it would be considerably less... Considering the standard ASCII representation for a character (i.e. not UNICODE), we're talking 1 character = 8 bits. Thus, 256 bit key = 64 characters. Still a bit to remember, but at least not 200 . |
NeonWizard wrote: |
And does anybody encrypt the password on servers for online accounts, such as lets say hotmail or yahoo? |
JustinT wrote: |
Assuming standard English, you'll see a common rule-of-thumb of assuming 1.3 bits of information per character; that's asking for a little over 196 characters, to correspond to the level of security we would expect of a 256-bit symmetric key, roughly, with that formula. |
securityforumsusername wrote: |
Yes I know, but apparently english language has 1.3 bits of entropy per character, so to achieve 256 bits of entropy you would need 200 characters.... |
mightB wrote: |
is not more secure to have a password that is word from another language, so that it wont be prone to [English] dictionary attack? |
mightB wrote: |
is not more secure to have a password that is word from another language, so that it wont be prone to [English] dictionary attack? |
Quote: |
I would not assume you get more security. If I know that you speak another language, and I was after your password, I would simply add a dictionary of the language you speak... =)
I may also add a dictionary if I think I can guess what languages you might know. |
output generated using printer-friendly topic mod, All times are GMT + 2 Hours