Title: Security in a digital world Passwords, Biometrics and OTPs (and why secrets are core to safety)
1Security in a digital world??Passwords,
Biometrics and OTPs (and why secrets are core
to safety)
2Bashing passwords as vulnerable means of online
security is quite common these days.
Sure??authentication means like biometrics, OTP,
mobile, etc., do sound fancy and are touted as
cornerstones in future security practices.
3authentication practices
Interestingly, these three ancient methods of
verification still do represent the fundamental
principles of modern authentication practices
- What you know??Passwords/PIN
- What you have??Seal/OTP/Credit Card/Tokens
- Who you are??Biometrics/Body tattoos
4How passwords work
A hash is a one-way pseudo-random function, which
means that it can produce a random text from a
password.
5How hackers hack passwords
- To hack passwords, hackers create pre-created
hash tables for all possible password
combinations. - For the ankit8388 password, a hash table of
small letters and numbers of length 9 would be
able to find a match.
6How passwords can be made more secure
- As we discussed earlier hackers have been able to
pool resources and pre-create hash tables hence
making guessing of simple passwords really easy.
Then what could be the way to make their life
hard? Increase the combinations, of course. And
the usual way of doing it has been to increase
possible inputs - Alphabet (Small letters and caps)??52
- Numbers??10
- Special characters??33
7About Signzy
Signzy helps financial institutions transform
current semi-manual processes into real-time
digital systems, using Artificial Intelligence
and Blockchain. This ensures that the new
processes are user-friendly, yet secure and
compliant.
Bangalore office BPL building, 11th KM, Arakere
Bannerghatta Rd, Bengaluru, Karnataka 560076
Mumbai office Rise 1902, 19th Floor, Peninsula
Business Park, Tower B, Lower Parel, Mumbai
400013
reachout_at_signzy.com
https//signzy.com/
8Follow Us On
https//www.facebook.com/TeamSignzy/
https//www.linkedin.com/company/teamsignzy
https//twitter.com/TeamSignzy
9(No Transcript)