Password protection in IT systems
The aim of the article is to systematise the methods of securing static passwords stored in IT systems. Pros and cons of those methods are presented and conclusions as a recommendation for IT system designers are proposed. At the beginning, the concept of cryptographic hash function is presented, fo...
Main Authors: | , |
---|---|
Format: | Article |
Language: | English |
Published: |
Wojskowa Akademia Techniczna, Redakcja Wydawnictw WAT, ul. gen. S. Kaliskiego 2, 00-908 Warszawa
2018-04-01
|
Series: | Biuletyn Wojskowej Akademii Technicznej |
Subjects: | |
Online Access: | http://biuletynwat.pl/gicid/01.3001.0011.8036 |
id |
doaj-a17a2f443821422383852f275b58dcfd |
---|---|
record_format |
Article |
spelling |
doaj-a17a2f443821422383852f275b58dcfd2020-11-25T00:37:55ZengWojskowa Akademia Techniczna, Redakcja Wydawnictw WAT, ul. gen. S. Kaliskiego 2, 00-908 Warszawa Biuletyn Wojskowej Akademii Technicznej 1234-58652018-04-01671739210.5604/01.3001.0011.803601.3001.0011.8036Password protection in IT systemsPrzemysław Rodwald0Bartosz Biernacik1Akademia Marynarki Wojennej, Wydział Nawigacji i Uzbrojenia Okrętowego, Instytut Uzbrojenia Okrętowego i Informatyki, ul. Śmidowicza 69, 81-103 GdyniaAkademia Sztuki Wojennej, Wydział Wojskowy, Instytut Działań Informacyjnych, al. gen. A. Chruściela 103, 00-910 WarszawaThe aim of the article is to systematise the methods of securing static passwords stored in IT systems. Pros and cons of those methods are presented and conclusions as a recommendation for IT system designers are proposed. At the beginning, the concept of cryptographic hash function is presented, following discussion of methods of storing passwords showing their evolution and susceptibility to modern attacks. Results of research on masked passwords of Polish banks IT systems are presented, as well as the most interesting examples of adaptive password functions are given. Then, the systematisation of password protection methods was carried out. Finally, the directions for further research are indicated. Keywords: computer security, password, authentication, hash function http://biuletynwat.pl/gicid/01.3001.0011.8036computer securitypasswordauthenticationhash function |
collection |
DOAJ |
language |
English |
format |
Article |
sources |
DOAJ |
author |
Przemysław Rodwald Bartosz Biernacik |
spellingShingle |
Przemysław Rodwald Bartosz Biernacik Password protection in IT systems Biuletyn Wojskowej Akademii Technicznej computer security password authentication hash function |
author_facet |
Przemysław Rodwald Bartosz Biernacik |
author_sort |
Przemysław Rodwald |
title |
Password protection in IT systems |
title_short |
Password protection in IT systems |
title_full |
Password protection in IT systems |
title_fullStr |
Password protection in IT systems |
title_full_unstemmed |
Password protection in IT systems |
title_sort |
password protection in it systems |
publisher |
Wojskowa Akademia Techniczna, Redakcja Wydawnictw WAT, ul. gen. S. Kaliskiego 2, 00-908 Warszawa |
series |
Biuletyn Wojskowej Akademii Technicznej |
issn |
1234-5865 |
publishDate |
2018-04-01 |
description |
The aim of the article is to systematise the methods of securing static passwords stored in IT systems. Pros and cons of those methods are presented and conclusions as a recommendation for IT system designers are proposed. At the beginning, the concept of cryptographic hash function is presented, following discussion of methods of storing passwords showing their evolution and susceptibility to modern attacks. Results of research on masked passwords of Polish banks IT systems are presented, as well as the most interesting examples of adaptive password functions are given. Then, the systematisation of password protection methods was carried out. Finally, the directions for further research are indicated.
Keywords: computer security, password, authentication, hash function
|
topic |
computer security password authentication hash function |
url |
http://biuletynwat.pl/gicid/01.3001.0011.8036 |
work_keys_str_mv |
AT przemysławrodwald passwordprotectioninitsystems AT bartoszbiernacik passwordprotectioninitsystems |
_version_ |
1725298926681063424 |