Högskolan i Skövde

his.sePublications
Planned maintenance
A system upgrade is planned for 10/12-2024, at 12:00-13:00. During this time DiVA will be unavailable.
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • apa-cv
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
A Model for the Creation of Biographical Dictionaries
University of Skövde, School of Informatics. University of Skövde, Informatics Research Environment. (Informationssystem (IS), Information Systems)ORCID iD: 0000-0001-5692-4008
University of Skövde, School of Informatics.ORCID iD: 0000-0002-6867-172X
University of Skövde, School of Informatics. University of Skövde, Informatics Research Environment. (Informationssystem (IS), Information Systems)ORCID iD: 0000-0003-2084-9119
2022 (English)In: Proceedings of the 8th International Workshop on Socio-Technical Perspective in Information Systems Development (STPIS 2022): Hybrid conference in Reykjavik, Iceland, August 19-20, 2022 / [ed] Peter Bednar; Anna Sigridur Islind; Helena Vallo Hult; Alexander Nolte; Mikko Rajanen; Fatema Zaghloul; Aurelio Ravarini; Alessio Maria Braccini, CEUR-WS , 2022, p. 165-172Conference paper, Published paper (Refereed)
Abstract [en]

The use of encryption is increasing, and while that is good for cybersecurity it is a core challenge for digital forensics. Encrypted information cannot be analyzed unless it is first decrypted, which is a complex and time-consuming process. Using a brute force attack to guess the password used for encryption is deemed impractical as even a simple password, being long enough, could take weeks, months, or even years to find. A more feasible approach is to use a dictionary attack where each word in a list is tested. However, a dictionary attack is only successful if the password is in the list, making the process of creating that list a crucial part of decrypting passwords. This research builds on existing literature showing that users commonly use strategies to create passwords, and the aim is to propose a method for creating dictionaries that are grounded in theories of password construction. An initial model was developed using a selective literature review with the purpose of identifying common elements included in biographical passwords, and in what order the elements are used. To improve the model, the study utilized semi-structured interviews with forensic experts from the Swedish police and the Swedish National Forensic Center (NFC). The main contribution of this research is a readily available model for creating dictionaries that can be used by practitioners. The model can also serve as a theoretical contribution that describes how users commonly construct biographical passwords.

Place, publisher, year, edition, pages
CEUR-WS , 2022. p. 165-172
Series
CEUR Workshop Proceedings, ISSN 1613-0073 ; 3239
Keywords [en]
passwords, biographical dictionary, password cracking, digital forensics
National Category
Other Computer and Information Science
Research subject
Information Systems
Identifiers
URN: urn:nbn:se:his:diva-21949Scopus ID: 2-s2.0-85139846312OAI: oai:DiVA.org:his-21949DiVA, id: diva2:1703640
Conference
8th International Workshop on Socio-Technical Perspective in Information Systems Development (STPIS 2022) Hybrid conference in Reykjavik, Iceland, August 19-20, 2022
Note

CC BY 4.0

Available from: 2022-10-14 Created: 2022-10-14 Last updated: 2023-01-16Bibliographically approved

Open Access in DiVA

fulltext(431 kB)389 downloads
File information
File name FULLTEXT01.pdfFile size 431 kBChecksum SHA-512
b69407c2873b705ca3d7c9206e0a75ae5e403cf5c94a93fbe41fd1b7e380e29387fff14808c33e1d10988ea57849de52b1e39613ec8efe9b64c937456be76105
Type fulltextMimetype application/pdf

Other links

ScopusFree Fulltext

Authority records

Birath, MarcusKävrestad, Joakim

Search in DiVA

By author/editor
Birath, MarcusGinman, JohanKävrestad, Joakim
By organisation
School of InformaticsInformatics Research Environment
Other Computer and Information Science

Search outside of DiVA

GoogleGoogle Scholar
Total: 389 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

urn-nbn

Altmetric score

urn-nbn
Total: 815 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • apa-cv
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf