Back هجوم القوة العمياء Arabic Brute-Force hücumu Azerbaijani ব্রুট-ফোর্স আক্রমণ Bengali/Bangla Atac per la força bruta Catalan Útok hrubou silou Czech Brute force-angreb Danish Brute-force attack Greek Ataque de fuerza bruta Spanish حمله جستجوی فراگیر Persian Väsytyshyökkäys Finnish

Brute-force attack

This article is about the cryptanalytic method. For similarly named methods in other disciplines, see Brute force.
The Electronic Frontier Foundation's US$250,000 DES cracking machine contained over 1,800 custom chips and could brute-force a DES key in a matter of days. The photograph shows a DES Cracker circuit board fitted with 64 Deep Crack chips using both sides.

In cryptography, a brute-force attack consists of an attacker submitting many passwords or passphrases with the hope of eventually guessing correctly. The attacker systematically checks all possible passwords and passphrases until the correct one is found. Alternatively, the attacker can attempt to guess the key which is typically created from the password using a key derivation function. This is known as an exhaustive key search. This approach doesn't depend on intellectual tactics; rather, it relies on making several attempts.[1]

A brute-force attack is a cryptanalytic attack that can, in theory, be used to attempt to decrypt any encrypted data (except for data encrypted in an information-theoretically secure manner).[2] Such an attack might be used when it is not possible to take advantage of other weaknesses in an encryption system (if any exist) that would make the task easier.

When password-guessing, this method is very fast when used to check all short passwords, but for longer passwords other methods such as the dictionary attack are used because a brute-force search takes too long. Longer passwords, passphrases and keys have more possible values, making them exponentially more difficult to crack than shorter ones due to diversity of characters.[3]

Brute-force attacks can be made less effective by obfuscating the data to be encoded making it more difficult for an attacker to recognize when the code has been cracked or by making the attacker do more work to test each guess. One of the measures of the strength of an encryption system is how long it would theoretically take an attacker to mount a successful brute-force attack against it.[4]

Brute-force attacks are an application of brute-force search, the general problem-solving technique of enumerating all candidates and checking each one. The word 'hammering' is sometimes used to describe a brute-force attack,[5] with 'anti-hammering' for countermeasures.[6]

  1. ^ Gauri, Marne; Ingole, R.Y. "A Review on Maintaining Web Applications and Brute Force Attack" (PDF). International Research Journal of Multidisciplinary Studies Special Issue on Advancement in Field of Computer Science and Information Technology.
  2. ^ Paar, Pelzl & Preneel 2010, p. 7.
  3. ^ Urbina, Ian (2014). "The Secret Life of Passwords. The New Times". The New York Times.
  4. ^ Schrittwieser, Sebastian; Katzenbeisser, Stefan (2011), "Code Obfuscation against Static and Dynamic Reverse Engineering", Information Hiding, Lecture Notes in Computer Science, vol. 6958, Berlin, Heidelberg: Springer Berlin Heidelberg, pp. 270–284, doi:10.1007/978-3-642-24178-9_19, ISBN 978-3-642-24177-2, retrieved September 5, 2021
  5. ^ "Secure your site from Brute force attacks using Sebsoft's Anti Hammering Authentication Plugin #MoodlePlugins #MoodleSecurity". elearnmagazine.com. e Learn Magazine. January 16, 2016. Retrieved October 27, 2022.
  6. ^ "Configure Serv-U to protect against brute force attacks". solarwinds.com. Solar Winds. Retrieved October 27, 2022.

Rich TVX News Network Site

Rich TVX News Network Info

© MMXXIII Rich X Search. We shall prevail. All rights reserved. Rich X Search