Stop Changing Your Passwords
Password Are Dieing
With organizations such as NIST, the FTC, and Microsoft questioning the efficacy of frequently changing passwords, we are often called upon by clients to illustrate the ability to guess a password given modern computing power.
The grid below illustrates the time it would take given relatively ideal conditions to traverse half the space of a given password complexity.
You can change the “Guesses per Second” to see what it does to the timeline.