An Overview of the Usage of Default Passwords

zurück zur Übersicht

Referenz

Knieriem, B., Zhang, X., Levine, P., Breitinger, F., & Baggili, I. (2018). An Overview of the Usage of Default Passwords. Paper presented at the International Conference on Digital Forensics and Cyber Crime (ICDF2C).

Publikationsart

Beitrag in Konferenztagungsband

Abstract

The recent Mirai botnet attack demonstrated the danger of using default passwords and showed it is still a major problem. In this study we investigated several common applications and their password policies. Specifically, we analyzed if these applications: (1) have default passwords or (2) allow the user to set a weak password (i.e., they do not properly enforce a password policy). Our study shows that default passwords are still a significant problem: 61% of applications inspected initially used a default or blank password. When changing the password, 58% allowed a blank password, 35% allowed a weak password of 1 character.

Mitarbeiter

Einrichtungen

  • Institut für Wirtschaftsinformatik
  • Hilti Lehrstuhl für Daten- und Anwendungssicherheit

DOI

http://dx.doi.org/10.1007/978-3-319-73697-6_15