HAL will be down for maintenance from Friday, June 10 at 4pm through Monday, June 13 at 9am. More information
Skip to Main content Skip to Navigation
Conference papers

Using Personal Information in Targeted Grammar-Based Probabilistic Password Attacks

Abstract : Passwords are the primary means of authentication and security for online accounts and are commonly used to encrypt files and disks. This research demonstrates how personal information about users can be added systematically to enhance password cracking. Specifically, a dictionary-based probabilistic context-free grammar approach is proposed that effectively incorporates personal information about a targeted user into component grammars and dictionaries used for password cracking. The component grammars model various types of personal information such as family names and dates, previous password information and possible information about sequential passwords. A mathematical model for merging multiple grammars that combines the characteristics of the component grammars is presented. The resulting merged target grammar, which is also merged with a standard grammar, is used along with various dictionaries to generate guesses that quickly match target passwords. The experimental results demonstrate that the approach significantly improves password cracking performance.
Document type :
Conference papers
Complete list of metadata

Cited literature [16 references]  Display  Hide  Download

Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Friday, February 23, 2018 - 3:49:59 PM
Last modification on : Friday, February 23, 2018 - 3:52:08 PM
Long-term archiving on: : Friday, May 25, 2018 - 1:53:08 AM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



Shiva Houshmand, Sudhir Aggarwal. Using Personal Information in Targeted Grammar-Based Probabilistic Password Attacks. 13th IFIP International Conference on Digital Forensics (DigitalForensics), Jan 2017, Orlando, FL, United States. pp.285-303, ⟨10.1007/978-3-319-67208-3_16⟩. ⟨hal-01716395⟩



Record views


Files downloads