密码强度 (Chinese Wikipedia)

Analysis of information sources in references of the Wikipedia article "密码强度" in Chinese language version.

refsWebsite

Global rank Chinese rank

15web.archive.org

1^st place

2wsj.com

79^th place

143^rd place

2cnet.com

272^nd place

459^th place

2archive.today

14^th place

18^th place

2nist.gov

355^th place

411^th place

1us-cert.gov

low place

1espacenet.com

800^th place

1,214^th place

1gatech.edu

4,448^th place

3,595^th place

1zhiding.cn

low place

1zdnet.com

786^th place

827^th place

1phenoelit.org

low place

1ltn.com.tw

302^nd place

6^th place

1unwire.hk

low place

1,347^th place

1npr.org

92^nd place

352^nd place

1reusablesec.blogspot.com

low place

1nextmedia.com

897^th place

35^th place

1xkcd.com

low place

archive.today

Robert McMillan. 什麼樣的密碼最安全？誤導全世界十余年後，密碼教父懺悔了. 华尔街日报. 2017-09-06 [2019-12-01]. （原始内容存档于2012-07-13）（中文（繁體））. 漫畫家蘭德爾﹒門羅(Randall Munroe)有一則廣為流傳的作品，裡面提到，黑客想破解“correct horse battery staple”（正確的馬電池訂書釘）這個密碼，得花550年；而破解典型的伯爾法則式密碼Tr0ub4dor&3，只需3天。電腦安全專家也證實了這種說法。
Microsoft security guru: Jot down your passwords. CNET. 2005-05-23 [2019-10-31]. （原始内容存档于2012-07-13）（英语）.

cnet.com

Robert McMillan. 什麼樣的密碼最安全？誤導全世界十余年後，密碼教父懺悔了. 华尔街日报. 2017-09-06 [2019-12-01]. （原始内容存档于2012-07-13）（中文（繁體））. 漫畫家蘭德爾﹒門羅(Randall Munroe)有一則廣為流傳的作品，裡面提到，黑客想破解“correct horse battery staple”（正確的馬電池訂書釘）這個密碼，得花550年；而破解典型的伯爾法則式密碼Tr0ub4dor&3，只需3天。電腦安全專家也證實了這種說法。
Microsoft security guru: Jot down your passwords. CNET. 2005-05-23 [2019-10-31]. （原始内容存档于2012-07-13）（英语）.

espacenet.com

worldwide.espacenet.com

Andrey V. Belenko, "Use of graphics processors as parallel math co-processors for password recovery", issued 2011-04-19, assigned to Elcomsoft Co. Ltd.. [2011-04-19].

gatech.edu

gtri.gatech.edu

Teraflop Troubles: The Power of Graphics Processing Units May Threaten the World's Password Security System. [2010-11-07]. （原始内容存档于2010-12-30）.

ltn.com.tw

3c.ltn.com.tw

劉惠琴. 密碼長度與強度怎樣設最不易被駭客破解？一張圖秒懂. 自由時報. 2022-03-21. （原始内容存档于2022-04-08）.

nextmedia.com

hk.apple.nextmedia.com

大小楷　數字　符號組合純屬擾民　密碼教父認「火星文」無助保安. 蘋果日報 (香港). 2017-08-09 [2017-08-09]. （原始内容存档于2017-08-09）（中文（香港））. 領導新指引撰寫工作的NIST顧問格拉西（Paul Grassi）表示，舊要求對加強網絡保安作用不大，「其實對可用性反有負面影響」。

nist.gov

csrc.nist.gov

Wayback Machine (PDF). web.archive.org. 2004-07-12 [2019-10-31]. （原始内容 (PDF)存档于2004-07-12）.

pages.nist.gov

SP 800-63-3 – Digital Identity Guidelines. NIST. 2017-06 [2017-08-09]. （原始内容存档于2016-09-13）（英语）. Removal of pre-registered knowledge tokens (authenticators), with the recognition that they are special cases of (often very weak) passwords.

npr.org

Samantha Raphelson. Forget Tough Passwords: New Guidelines Make It Simple. 全國公共廣播電台. 2017-08-14 [2017-08-18]. （原始内容存档于2017-08-17）（英语）. "The traditional guidance is actually producing passwords that are easy for bad guys and hard for legitimate users," says Paul Grassi, [...] previous tips for passwords affected users negatively and did not do much to boost security. When users change their passwords every 90 days, they often aren't dramatically changing the password

phenoelit.org

預設密碼表（Default Password List）. www.phenoelit.org. [2019-10-31]. （原始内容存档于2019-10-26）（英语）.

reusablesec.blogspot.com

Matt Weir; Susdhir Aggarwal; Michael Collins; Henry Stern. Testing Metrics for Password Creation Policies by Attacking Large Sets of Revealed Passwords. 2010-10-07 [2017-08-09]. （原始内容存档于2017-08-09）. Our findings were that the NIST model of password entropy does not match up with real world password usage or password cracking attacks.

unwire.hk

美國提倡密碼新主義　用易記長句子取代含符號、大階字的密碼. Unwire.hk 流動科技生活. 2017-08-17 [2017-08-18]. （原始内容存档于2017-08-17）（中文（香港））. 「如果你在頭裡面想起一個畫面，而沒有人可以想像到的，這就是最好的密碼」。在全新指引中，用戶可將一個畫面轉化成一句句子或詞語，密碼只要夠長，就能避過駭客撞破密碼。而密碼所用的句子，可原原本本設定為密碼，不用加上大階字母、數字或標點符號。專家認為相比起隨意製成的密碼，一句長句子更加有效保障不被駭客撞破。

us-cert.gov

Cyber Security Tip ST04-002. [2016-02-17]. （原始内容存档于2009-07-07）.

web.archive.org

Cyber Security Tip ST04-002. [2016-02-17]. （原始内容存档于2009-07-07）.
Wayback Machine (PDF). web.archive.org. 2004-07-12 [2019-10-31]. （原始内容 (PDF)存档于2004-07-12）.
Teraflop Troubles: The Power of Graphics Processing Units May Threaten the World's Password Security System. [2010-11-07]. （原始内容存档于2010-12-30）.
SplashData：2011年最差的25个密码. security.zhiding.cn. [2019-10-31]. （原始内容存档于2019-10-31）（中文（中国大陆））.
ZDNet Report: Net users picking safer passwords. [2007-08-14]. （原始内容存档于2007-08-24）.
預設密碼表（Default Password List）. www.phenoelit.org. [2019-10-31]. （原始内容存档于2019-10-26）（英语）.
劉惠琴. 密碼長度與強度怎樣設最不易被駭客破解？一張圖秒懂. 自由時報. 2022-03-21. （原始内容存档于2022-04-08）.
美國提倡密碼新主義　用易記長句子取代含符號、大階字的密碼. Unwire.hk 流動科技生活. 2017-08-17 [2017-08-18]. （原始内容存档于2017-08-17）（中文（香港））. 「如果你在頭裡面想起一個畫面，而沒有人可以想像到的，這就是最好的密碼」。在全新指引中，用戶可將一個畫面轉化成一句句子或詞語，密碼只要夠長，就能避過駭客撞破密碼。而密碼所用的句子，可原原本本設定為密碼，不用加上大階字母、數字或標點符號。專家認為相比起隨意製成的密碼，一句長句子更加有效保障不被駭客撞破。
SP 800-63-3 – Digital Identity Guidelines. NIST. 2017-06 [2017-08-09]. （原始内容存档于2016-09-13）（英语）. Removal of pre-registered knowledge tokens (authenticators), with the recognition that they are special cases of (often very weak) passwords.
Samantha Raphelson. Forget Tough Passwords: New Guidelines Make It Simple. 全國公共廣播電台. 2017-08-14 [2017-08-18]. （原始内容存档于2017-08-17）（英语）. "The traditional guidance is actually producing passwords that are easy for bad guys and hard for legitimate users," says Paul Grassi, [...] previous tips for passwords affected users negatively and did not do much to boost security. When users change their passwords every 90 days, they often aren't dramatically changing the password
Matt Weir; Susdhir Aggarwal; Michael Collins; Henry Stern. Testing Metrics for Password Creation Policies by Attacking Large Sets of Revealed Passwords. 2010-10-07 [2017-08-09]. （原始内容存档于2017-08-09）. Our findings were that the NIST model of password entropy does not match up with real world password usage or password cracking attacks.
Robert McMillan. The Man Who Wrote Those Password Rules Has a New Tip: N3v$r M1^d!. 華爾街日報. 2017-08-07 [2017-08-09]. （原始内容存档于2017-08-09）（英语）. “Much of what I did I now regret,” said Mr. Burr, 72 years old, who is now retired. [...] Mr. Burr, who once programmed Army mainframe computers during the Vietnam War, had wanted to base his advice on real-world password data. But back in 2003, there just wasn’t much to find, and he said he was under pressure to publish guidance quickly. [...] With no empirical data on computer-password security to be found, Mr. Burr leaned heavily on a white paper written in the mid-1980s—long before consumers bought DVDs and cat food online.
大小楷　數字　符號組合純屬擾民　密碼教父認「火星文」無助保安. 蘋果日報 (香港). 2017-08-09 [2017-08-09]. （原始内容存档于2017-08-09）（中文（香港））. 領導新指引撰寫工作的NIST顧問格拉西（Paul Grassi）表示，舊要求對加強網絡保安作用不大，「其實對可用性反有負面影響」。
Password Strength. xkcd. [2017-08-09]. （原始内容存档于2012-01-11）（英语）. Through 20 years of effort, we've successfully trained everyone to use passwords that are hard for humans to remember, but easy for computers to guess.
Robert McMillan. The Man Who Wrote Those Password Rules Has a New Tip: N3v$r M1^d!. 华尔街日报. 2017-08-07 [2017-08-09]. （原始内容存档于2017-08-09）（英语）. In a widely circulated piece, cartoonist Randall Munroe calculated it would take 550 years to crack the password “correct horse battery staple,” all written as one word. The password Tr0ub4dor&3— a typical example of password using Mr. Burr’s old rules—could be cracked in three days, according to Mr. Munroe’s calculations, which have been verified by computer-security specialists.

wsj.com

Robert McMillan. The Man Who Wrote Those Password Rules Has a New Tip: N3v$r M1^d!. 華爾街日報. 2017-08-07 [2017-08-09]. （原始内容存档于2017-08-09）（英语）. “Much of what I did I now regret,” said Mr. Burr, 72 years old, who is now retired. [...] Mr. Burr, who once programmed Army mainframe computers during the Vietnam War, had wanted to base his advice on real-world password data. But back in 2003, there just wasn’t much to find, and he said he was under pressure to publish guidance quickly. [...] With no empirical data on computer-password security to be found, Mr. Burr leaned heavily on a white paper written in the mid-1980s—long before consumers bought DVDs and cat food online.
Robert McMillan. The Man Who Wrote Those Password Rules Has a New Tip: N3v$r M1^d!. 华尔街日报. 2017-08-07 [2017-08-09]. （原始内容存档于2017-08-09）（英语）. In a widely circulated piece, cartoonist Randall Munroe calculated it would take 550 years to crack the password “correct horse battery staple,” all written as one word. The password Tr0ub4dor&3— a typical example of password using Mr. Burr’s old rules—could be cracked in three days, according to Mr. Munroe’s calculations, which have been verified by computer-security specialists.

xkcd.com

Password Strength. xkcd. [2017-08-09]. （原始内容存档于2012-01-11）（英语）. Through 20 years of effort, we've successfully trained everyone to use passwords that are hard for humans to remember, but easy for computers to guess.

zdnet.com

news.zdnet.com

ZDNet Report: Net users picking safer passwords. [2007-08-14]. （原始内容存档于2007-08-24）.

zhiding.cn

security.zhiding.cn

SplashData：2011年最差的25个密码. security.zhiding.cn. [2019-10-31]. （原始内容存档于2019-10-31）（中文（中国大陆））.