kopper wrote:bester69 wrote:any full ASCII word with just a lenth >=8 characters is unbreakable unless there are several supercomputers working in that brute attack decoding. There is no regular home computer in world able to break a full ASCII word of just 8 characters
They might seem unbreakable when you don't consider various facts, like people choosing their passwords themselves rarely use the whole key space when doing so. Even when big key space is supported, people still usually pick something simpler if complexity is not enforced by other means. Unless you're not trying to target an individual account with strong password, various cracking methods can be quite effective. Best way to ensure you're not among the easy targets is to refer to the hundreds of best practices documented online. Like the ones already mentioned in this thread.
You're not defining new paradigm here by stating that 8-10 character password is adequate for all purposes, with every hash algorithm, with or without salting. Frankly, I think you're naive to think that 8-10 characters is future proof with conventional computing hardware, let alone quantum computers which I believe you have even less insight than cryptography.
You are pulling facts from you rear to support a broken idea of re-inventing something (password salting) which is already properly done elsewhere.
Ive studied a litle bit, and any strong word with a >= 8 characters cant be decoded with nowadays home's CPUs, debiman is freaking by chosing a 40 characters word,
perhaps in five years we will need to increasee that to a >= than 9 characters.
As for quantum computers, forget about that technology, You wont see it in this life (only NASA). It wont be available for home users before One or two hundred years long. I see more chances to contact aliens before that.
As for the topic, I see my purpose, a good, easy to remember and trusted strategy using bas64 + Obscurity.
Ejmp.: dog >> base64(dog) = ua/SnqhgwS >> Obscurity(ua/SnqhgwS=) = u€a/SnqhgwS€=
In my opinion cant be decoded without the Obscurity-algorithm, and you can't decode the algorithm without know it. Its a perfect and easy way to use simple words like "dog, yellow, monday, etc" as passwords, without any possibility to be broken.