Password authentication

thumb|A password field in a sign-in form A password, sometimes called a passcode, is secret data, typically a string of characters, usually used to confirm a user's identity. Traditionally, passwords were expected to be memorized, but the large number of password-protected services that a typical individual accesses can make memorization of unique passwords for each service impractical. Using the terminology of the NIST Digital Identity Guidelines, the secret is held by a party called the claimant while the party verifying the identity of the claimant is called the verifier. When the claimant

short, numeric passcode used to access certain services such as ATMs

thumb|right|200px|Logo

password that is valid for only one login session or transaction

property of access control whereby a single login is used to gain access to any of several related systems

secret added to an input such as a password prior to being hashed with a cryptographic hash function and stored alongside the hashed output

authentication protocol for the point-to-point protocol

password-based authentication protocol used by PPP or RADIUS

passwd is a command on Unix, Plan 9, Inferno, and most Unix-like operating systems used to change a user's password. The password entered by the user is run through a key derivation function to create a hashed version of the new password, which is saved. Only the hashed version is stored; the entered password is not saved for security reasons.

software for storing and retrieving passwords/credentials

measure of the effectiveness of a password in resisting guessing and brute-force attacks

thumb|upright=1.2|Passphrase generator in Bitwarden A passphrase is a sequence of words or other text used to control access to a computer system, program or data. It is similar to a password in usage, but a passphrase is generally longer for added security. Passphrases are often used to control both access to, and the operation of, cryptographic programs and systems, especially those that derive an encryption key from a passphrase. The origin of the term is by analogy with password. The modern concept of passphrases is believed to have been invented by Sigmund N. Porter in 1982.

method to set encryption keys

In cryptography, PBKDF1 and PBKDF2 (Password-Based Key Derivation Function 1 and 2) are key derivation functions with a sliding computational cost, used to reduce vulnerability to brute-force attacks.

American information technology company

thumb|Five dice showing 4-1-2-5-6, which denotation|denotes "monogram" on an updated EFF cryptographic word list

FreeOTP is a free and open-source authenticator by Red Hat. It implements multi-factor authentication using HOTP and TOTP. Tokens can be added by scanning a QR code or by manually entering the token configuration. It is licensed under the Apache 2.0 license, and supports Android and iOS.

multibrowser website authentication mechanism prototyped by Mozilla

discontinued Microsoft networking operating system

type of cyberattack where stolen account credentials typically consisting of lists of usernames or email addresses and corresponding passwords are used to gain unauthorized access to user accounts through large-scale automated login requests

mechanism for performing two-factor authentication for a user to a network resource

set of rules designed to enhance computer security by encouraging users to employ strong passwords and use them properly

software program or hardware device that takes input from a random or pseudo-random number generator and automatically generates a password

SQRL (pronounced "squirrel") or Secure, Quick, Reliable Login (formerly Secure Login) is a draft open standard for secure website login and authentication. The software typically uses a link of the scheme or optionally a QR code, where a user identifies via a pseudonymous zero-knowledge proof rather than providing a user ID and password. This method is thought to be impervious to a brute-force password attack or data breach. It shifts the burden of security away from the party requesting the authentication and closer to the operating-system implementation of what is possible on the hardware, a

S/KEY is a one-time password system developed for authentication to Unix-like operating systems, especially from dumb terminals or untrusted public computers on which one does not want to type a long-term password. A user's real password is combined in an offline device with a short set of characters and a decrementing counter to form a single-use password. Because each password is only used once, they are useless to password sniffers.

login using a social networking account

feeling experienced by many people who are required to remember an excessive number of passwords as part of their daily routine

identity authentication method

cryptographic protocol for identification

Wikimedia list article