Monday, August 08, 2016

[rjnzvvjo] Password entropy

Instead of complicated rules about how long and what characters a password must contain, simply require it have a certain amount of entropy, as measured by an easily available text compression program.

Google's Brotli might be a good candidate, since it is primed with a sophisticated language model.  Alternatively, specify a prefix string to prime some other text compression algorithm.

All this is probably wanted in Javascript.

Inspired by, I would prefer to type a longer string of lowercase letters than add other kinds of characters.

No comments :