パスワードãƒãƒªã‚·ãƒ¼ã¨Robert Morrisã¨Ken Tompson
ã¨ã„ã†è¨˜äº‹ã‚’見ãŸã€‚
ã“ã®è«–æ–‡ãŒçŠ¯ã—ãŸéŽã¡ã¯äºŒã¤ãŒã‚ã‚Šã€ä¸€ã¤ç›®ã¯è¤‡æ•°ã®æ–‡å—種(å°æ–‡å—ã€å¤§æ–‡å—ã€æ•°å—ã€è¨˜å·ï¼‰ã‚’å«ã‚ã‚‹ã“ã¨ãŒãƒ‘スワードã®å®‰å…¨æ€§ã‚’高ã‚ã‚‹ã¨ã„ã†ãƒ‘スワードã®è¤‡é›‘化ã®æŽ¨å¥¨ã§ã€ç¾å®Ÿã«ã¯ã€Œp@sswordã€ã‚„「Password1ã€ã¨ã„ã£ãŸæŽ¨æ¸¬ã—ã‚„ã™ã„パターンã¯ã‚»ã‚ュリティå‘上ã«ã¯ã¤ãªãŒã‚‰ãªã‹ã£ãŸã€‚
二ã¤ç›®ã¯ã€ãƒ‘スワードをãƒãƒƒã‚·ãƒ¥åŒ–ã—ã¦ä¿å˜ã™ã‚‹æ–¹æ³•ã‚’æ案ã—ãŸã“ã¨ã§ã€çµæžœçš„ã«ã“ã‚ŒãŒãŒç ”究者ã«ã‚ˆã‚‹ãƒ‘スワードã®å®Ÿæ…‹èª¿æŸ»ã‚’è‘—ã—ã困難ã«ã—ã¦ã—ã¾ã„ã€çµæžœã¨ã—ã¦ã€ãƒ‘スワードã«é–¢ã™ã‚‹çŸ¥è¦‹ã®è“„ç©ãŒåœæ»žã—ã¾ã£ãŸã€‚
ã¨ã„ã†ã“ã¨ãªã®ã§ã€ã»ã‚“ã¨ã‹ãªã¨æ€ã£ã¦å…ƒè¨˜äº‹ãªã©ã‚’辿ã£ã¦ã¿ã‚‹ã€‚
å…ƒã®Stuart Schechterã®è¨˜äº‹ã¯こちら
1ã¤ç›®ã®ãƒ‘スワードã®æ–‡å—種ã®è¤‡é›‘化ã«ã¤ã„ã¦ã¯ä»¥ä¸‹ã®ã‚ˆã†ã«è¨˜è¼‰ã—ã¦ã„る。
First, was Morris and Thompson’s confidence that their solution, a password policy, would fix the underlying problem of weak passwords. They incorrectly assumed that if they prevented the specific categories of weakness that they had noted, that the result would be something strong. After implementing a requirement that password have multiple characters sets or more total characters, they wrote:
These improvements make it exceedingly difficult to find any individual password. The user is warned of the risks and if he cooperates, he is very safe indeed.
ã¾ãšã€Stuartã®è¨˜äº‹ã§ã¯total charactersã¨æ–‡å—種ã ã‘ã§ãªãæ–‡å—æ•°ã«ã¤ã„ã¦ã‚‚触れã¦ã„る。ã•ã‚‰ã«å…ƒè«–文を辿るã¨these improvementsã¯ä»¥ä¸‹ã‚’指ã—ã¦ã„る。
The password entry program was modified so as to urge the user to use more obscure passwords. If the user enters an alphabetic password (all upper-case or all lower-case) shorter than six characters, or a password from a larger character set shorter than five characters, then the program asks him to enter a longer password. This further reduces the efficacy of key search.
çŸã„パスワードãŒå…¥åŠ›ã•ã‚ŒãŸã‚‰æ–‡å—æ•°ã‚’é•·ãã™ã‚‹ã‚ˆã†ã«ä¾é ¼ã™ã‚‹ã‚ˆã†ãªãƒ—ãƒã‚°ãƒ©ãƒ を書ã‘ã¨ã„ã†è©±ã§ã‚る。ç¾è¡Œã®NIST SP 800-63ãŒæŽ¨å¥¨ã—ã¦ã„るパスワードã¯8æ–‡å—以上ã«ã—ã‚ã¨ã„ã†ã®ã¨åŒã˜æ–¹å‘性ã‹ã¨æ€ã‚れる。
ãŸã ã—ã€è«–文全体ã¨ã—ã¦æ–‡å—æ•°ãŒå¤šã„ã‹æ–‡å—種を多ãã™ã‚‹ã®ãŒè‰¯ã„よã†ã«æ›¸ã‹ã‚Œã¦ã„ã‚‹ã®ã‚‚確ã‹ã§ã‚る。ã—ã‹ã—ã€åŸºæœ¬çš„ã«æ–‡å—種やパスワードã®é•·ã•ã«ã‚ˆã£ã¦ç·å½“ãŸã‚Šæ”»æ’ƒã«æ™‚é–“ãŒã‹ã‹ã‚‹ã¨ã„ã†è©±ã‚’ã—ã¦ãŠã‚Šã€ãれ自体ã¯äº‹å®Ÿã§ã‚る。ãŸã ã€æ–‡å—種を強制ã™ã‚‹ã“ã¨ã§åˆ©ä¾¿æ€§ãŒæ‚ªããªã‚‹ã“ã¨ã‚„覚ãˆã‚‰ã‚Œãªã„ã¨ã„ã†ãƒ‡ãƒ¡ãƒªãƒƒãƒˆã«å¯¾ã—ã¦ãれを上回る効果ãŒã‚ã‚‹ã®ã‹ã¨ã„ã†å•é¡ŒãŒã‚ã‚Šã€NIST SP 800-63ã§ã¯å¦å®šã•ã‚Œã¦ã„る。
2ã¤ç›®ã®ãƒ‘スワードã®ãƒãƒƒã‚·ãƒ¥åŒ–ã«ã¤ã„ã¦ã ãŒã€ã¾ãšStuartã®è¨˜äº‹ã§ã‚‚Robertã¨KenãŒãƒãƒƒã‚·ãƒ¥æ–¹å¼ã‚’発明ã—ãŸã‚ã‘ã§ã¯ãªã„ã¨æŒ‡æ‘˜ã—ã¦ãŠã‚Šã€UNIXã«å°Žå…¥ã—ãŸã‚Šã€ãれを推奨ã—ãŸã“ã¨ã‚’å•é¡Œã¨ã—ã¦ã„るよã†ã§ã‚る。
While Morris and Thompson did not invent password hashing, they implemented it into Unix, strongly recommended it, and their paper would be the one most cited to support the necessity of password hashing.
ãŸã ã—ã€è«–æ–‡ã®ä¸ã§æ案ã—ã¦ã„ã‚‹ã®ã¯ã€ã‚½ãƒ«ãƒˆã‚’付ã‘ã¦ç·å½“ãŸã‚Šæ”»æ’ƒã«å¯¾ã™ã‚‹è€æ€§ã‚’ã¤ã‘ã‚‹ã¹ãã¨ã„ã†è©±ã§ã‚ã‚Šã€ã“ã®è«–文自体ãŒãƒ‘スワードã®ãƒãƒƒã‚·ãƒ¥åŒ–自体ã¨é–¢ä¿‚性ãŒå¼·ã„ã‹ã¯ç–‘å•ãŒã‚る。
ãƒãƒƒã‚·ãƒ¥åŒ–ã—ãªã„ã®ãªã‚‰ã°ã©ã†ä¿å˜ã™ã‚‹ã®ã‹ã¨ã„ã†ç‚¹ã«ã¤ã„ã¦ã¯ã€Stuartã¯å…¬é–‹éµæ–¹å¼ã§æš—å·åŒ–ã™ã‚‹æ–¹æ³•ã‚’æ案ã—ã¦ã„るよã†ã 。
With RSA, passwords could be hashed with a function that was one-way without the private key, and the private key stored on a system detached from any network and safely behind locks, guards, and whatever other physical security measures one might dream of. When scientists needed to test if password policies were working, they could take the file with the numeric hashes into the locked room with the key, analyze them, and leave with a new set of rules to try. Alas, to my knowledge, nobody has ever used this approach, because after Morris and Thompson’s paper storing passwords in any form that can be reversed became taboo.
1案ã¨ã—ã¦ã¯ã‚ã‚Šã‹ã‚‚ã—ã‚Œãªã„ãŒã€ä¸€æ–¹å‘性をæŒãŸãšé–‹ç™ºè€…ãŒãƒ¦ãƒ¼ã‚¶ã®ãƒ‘スワードを見ãˆã¦ã—ã¾ã†ã®ã¯å•é¡Œã ã‚ã†ã€‚パスワードã®åˆ©ç”¨çŠ¶æ³ã‚’ç ”ç©¶ã§ãるメリットã¨ã€ãƒ‘ã‚¹ãƒ¯ãƒ¼ãƒ‰ã‚’é–‹ç™ºè€…ã‚„ç ”ç©¶è€…ã«è¦‹ã‚‰ã‚Œã¦ã—ã¾ã†ã‹ã‚‚ã—ã‚Œãªã„デメリットを比較ã™ã‚‹ã¨ã€ä¸€èˆ¬ã®äººã¯ãƒ‡ãƒ¡ãƒªãƒƒãƒˆã®æ–¹ã‚’大ãã評価ã—ãã†ã§ã‚る。
