User authentication password security evaluation method and device based on random forest model

A random forest model and user authentication technology, which is applied in the security evaluation of user authentication passwords and the field of user password security authentication, can solve the problems of effect dependence and low stability of password strength, so as to reduce size dependence, improve fitting ability and Generalization ability, effect of improving stability and accuracy

Active Publication Date: 2019-10-15
PEKING UNIV
View PDF6 Cites 4 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, the effect of the algorithm depends on the setting of hyperparameters, and the stability of evaluating password strength is low

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • User authentication password security evaluation method and device based on random forest model
  • User authentication password security evaluation method and device based on random forest model

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0036] Below by example the present invention will be further described.

[0037] Assume that the model adopted is a 6-order Markov model, that is, it is assumed that each character in the password is only related to the first 6 characters and has nothing to do with other characters.

[0038] First, several examples are used to illustrate the process of feature extraction. For any password, first complete the password, add 6 start characters before the password, and add an end character after the password. Taking the password "123456" as an example, it will be:

[0039] "st st st st st st 123456ed", a total of 13 characters. Where st is the start character and ed is the end character. After completion, traverse each character and end character of the original password in the password, that is, traverse from character 1 to character ed, and the character string with a length of 6 before each character is the prefix of the character. Then extract the prefix feature of the st...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a user authentication password security evaluation method and device based on a random forest model. The user authentication password security evaluation device comprises a prefix feature extraction module, a training set reading and processing module, a model training module and a password generation module. The user authentication password security evaluation method includes the steps: improving the Markov model, taking each character of the password in the password training set as a category, extracting a prefix feature of the character as a feature vector, and training by adopting a random forest to obtain a probability model of a multi-classification problem; and for any character string, obtaining probability distribution of suffix characters of the prefix through the probability model, and generating a candidate password, thereby realizing security evaluation on the user password. According to the user authentication password security evaluation method and device, the problem that an original Markov model is prone to over-fitting due to the model fitting principle can be solved, and the attack effect is better, and the algorithm effect is more stable,and the password security can be evaluated more accurately.

Description

technical field [0001] The invention belongs to the technical field of information security, and relates to user password security authentication technology, in particular to a random forest model-based user authentication password security evaluation method and device that does not use user personal information, and evaluates the security of user identity by obtaining user authentication passwords sex. Background technique [0002] Password has been one of the most important identity authentication methods in the past few decades. Due to its low cost, ease of use, etc., it will remain an irreplaceable identity authentication method in the foreseeable future. When users set passwords, they often ignore the security of passwords for the convenience of remembering. Therefore, in order to prevent users from setting passwords that are easy to be attacked by attackers, most websites use password strength evaluators to evaluate the strength of user passwords. At present, it is be...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/31G06F21/45G06K9/62
CPCG06F21/31G06F21/45G06F18/214G06F18/24323
Inventor 王平张子健汪定
Owner PEKING UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap