Home> Schools> University of Houston-Clear Lake> Computer Science (CSCI) > CSCI 5931> Windows Authentication
UHCL CSCI 5931 - Windows Authentication
School name University of Houston-Clear Lake
Course Csci 5931- Research Topics Comp Science
Pages 9

Unformatted text preview:

Windows AuthenticationDescriptionThe most common password vulnerabilities:Three Windows Authentication Algorithms:Weakness of LM Hashes:Operation Systems AffectedHow to Protect Against ItBibliographic ReferenceThank YouWindows AuthenticationWindows AuthenticationWenqun LiMach 24, 2004March 24, 2004 2DescriptionDescriptionMost forms of user authentication rely on user supplied passwords.Properly authenticated access is often not logged.A compromised password offers the attacker an opportunity to access a system from inside virtually undetected.Account with bad or empty passwords are extremely common,March 24, 2004 3The most common password vulnerabilities:The most common password vulnerabilities:User accounts with weak or nonexistent passwordsFail to protect passwordsAdministrative accounts with weak or nonexistent passwordsPassword hashing algorithms are knownMarch 24, 2004 4Three Windows Authentication Algorithms:Three Windows Authentication Algorithms:LM (least secure, most compatible)NLMNTLMv2 (most secure, least compatible)March 24, 2004 5Weakness of LM Hashes:Weakness of LM Hashes:Passwords are truncated to 14 characters.Passwords are padded with spaces to become 14 characters.Passwords are converted to all upper case characters.Passwords are split into two seven character pieces.March 24, 2004 6Operation Systems AffectedOperation Systems AffectedAll microsoft windows operating systems.An example – CVE-0222•The installation for Windows 2000 does not activate the administrator password until the system has rebooted, which allows remote attackers to connect to the ADMIN$ share without a password until the reboot occurs.March 24, 2004 7How to Protect Against ItHow to Protect Against ItAssure that passwords are consistently strongProtect strong passwordsTightly control accountsMaintain strong password policy for the enterprise. Disable LM authentication across the network.Prevent the LM hash from being storedPrevent password hashes and SAM database from be being copied.March 24, 2004 8Bibliographic ReferenceBibliographic ReferenceI. http://www.sans.org/top20/#w3II. http://www.cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2000-0222March 24, 2004 9Thank YouThank YouAny

View Full Document

UHCL CSCI 5931 - Windows Authentication

School: University of Houston-Clear Lake
Course: Csci 5931- Research Topics Comp Science
Pages: 9
Documents in this Course
Reorganization of Sensor Nodes in OCO

Reorganization of Sensor Nodes in OCO

2 pages

Walking from thoughts

Walking from thoughts

8 pages

Servlet Security

Servlet Security

37 pages

A MODEL FOR OPEN CONTENT COMMUNITIES TO SUPPORT EFFECTIVE LEARNING AND TEACHING

A MODEL FOR OPEN CONTENT COMMUNITIES TO SUPPORT EFFECTIVE LEARNING AND TEACHING

4 pages

Adaptive Brain Computer Interface

Adaptive Brain Computer Interface

4 pages

NAT and Security

NAT and Security

6 pages

PIX Firewalls

PIX Firewalls

24 pages

Security Vulnerabilities in RPC

Security Vulnerabilities in RPC

6 pages

Java Authentication and Authorization Service

Java Authentication and Authorization Service

19 pages

OMNET Network Simulator

OMNET Network Simulator

11 pages

Modeling Simulation of WSN for Target Tracking

Modeling Simulation of WSN for Target Tracking

9 pages

CSCI 5931 Course Syllabus

CSCI 5931 Course Syllabus

4 pages

NS Tutorial

NS Tutorial

34 pages

A Key -Management Scheme for Distributed Sensor Networks

A Key -Management Scheme for Distributed Sensor Networks

7 pages

Encryption Authentication and Java Cryptography

Encryption Authentication and Java Cryptography

27 pages

Reorganization in OCO

Reorganization in OCO

8 pages

Session Hijacking

Session Hijacking

7 pages

Wireless Security

Wireless Security

11 pages

The Sybil Attack in Sensor Networks

The Sybil Attack in Sensor Networks

10 pages

Pass thoughts Authenticating with Our Minds

Pass thoughts Authenticating with Our Minds

12 pages

Other Public Key Cryptosystems

Other Public Key Cryptosystems

19 pages

CSCI 5931 Assignment III

CSCI 5931 Assignment III

21 pages

Classification of EEG signals from four subjects during five mental tasks

Classification of EEG signals from four subjects during five mental tasks

8 pages

The Berlin Brain Computer Interface

The Berlin Brain Computer Interface

6 pages

Secure Socket Layer

Secure Socket Layer

51 pages

Securing Database

Securing Database

40 pages

Using a low cost electroencephalograph for task classification in HCI research

Using a low cost electroencephalograph for task classification in HCI research

10 pages

Client Server Computing in Mobile Environments

Client Server Computing in Mobile Environments

25 pages

Authentication Header Encapsulating Security Payload Protocols

Authentication Header Encapsulating Security Payload Protocols

11 pages

Emotion Recognition using Brain Activity

Emotion Recognition using Brain Activity

6 pages

Securing Large Applications

Securing Large Applications

27 pages

Electronic mail security

Electronic mail security

28 pages

Gestures without Libraries Toolkits or Training

Gestures without Libraries Toolkits or Training

10 pages

WAP Public Key Infrastructure

WAP Public Key Infrastructure

34 pages

Secure Routing in Wireless Sensor Networks

Secure Routing in Wireless Sensor Networks

15 pages

System Design Specification

System Design Specification

19 pages

Study Notes

Study Notes

23 pages

Energy Efficient communication in Wireless and Sensor Networks

Energy Efficient communication in Wireless and Sensor Networks

2 pages

Brain Computer Interfaces for HCI and Games

Brain Computer Interfaces for HCI and Games

4 pages

Basic Web Hacking and Tools

Basic Web Hacking and Tools

23 pages

buffer overflow

buffer overflow

9 pages

IP Security

IP Security

33 pages

The Gesture and Activity Recognition Toolkit

The Gesture and Activity Recognition Toolkit

10 pages

Java Securit yModel

Java Securit yModel

19 pages

A Link Layer Security Architecture for Wireless Sensor Networks

A Link Layer Security Architecture for Wireless Sensor Networks

28 pages

CSCI 5931 LECTURE NOTES

CSCI 5931 LECTURE NOTES

13 pages

Task Evoked Pupillary Response to Mental Workload in Human Computer Interaction

Task Evoked Pupillary Response to Mental Workload in Human Computer Interaction

4 pages

Secure LAN Switching

Secure LAN Switching

13 pages

More Web Hacking and Tools

More Web Hacking and Tools

30 pages

Load more
Download Windows Authentication
Our administrator received your request to download this document. We will send you the file to your email shortly.

Please select your school

Login

Join to view Windows Authentication and access 3M+ class-specific study document.

Continue Continue
or
We will never post anything without your permission.
Don't have an account?

We couldn't create a GradeBuddy account using Facebook because there is no email address associated with your Facebook account.

Link an email address with your Facebook below or create a new account.

Sign Up

Join to view Windows Authentication 2 2 and access 3M+ class-specific study document.

Continue Continue
or

By creating an account you agree to our Privacy Policy and Terms Of Use

Already a member?

We couldn't create a GradeBuddy account using Facebook because there is no email address associated with your Facebook account.

Link an email address with your Facebook below or create a new account.