Algorithm for User-friendly Password Policy

Abstract

Password based security has become prevalent as the de facto measure against intrusion. Computer systems rarely focus on usability, and little research has been done to change the current, near universal method of implementation. This paper explores the weaknesses found in password based systems and how they can be mitigated. This will conclude with a new set of algorithms for validating passwords and creating baselines for setting minimum required strengths for password defense. This new metric allows for a wider diversity of possible passwords while maintaining security by assigning value to certain characteristics and requiring a minimum amount of security be achieved before accepting the password instead of relying on static requirements in minimum length and presence of character types. The new approach embraces password diversity and allows for trade-offs of different password elements in order to allow users to use a wider array of strategies at the moment of generating their passwords. Key Terms  Computer Security, Passwords, Privacy, Usability.