An Overview of the Usage of Default Passwords

Citation data:

Digital Forensics and Cyber Crime, ISSN: 1867-8211, Vol: 216, Page: 195-203

Publication Year:
2018
Usage 202
Downloads 106
Abstract Views 96
Captures 5
Readers 5
Social Media 2
Tweets 2
Repository URL:
https://digitalcommons.newhaven.edu/electricalcomputerengineering-facpubs/69
DOI:
10.1007/978-3-319-73697-6_15
Author(s):
Knierem, Brandon; Zhang, Xiaolu; Levine, Philip; Breitinger, Frank; Baggili, Ibrahim
Publisher(s):
Springer Nature
Tags:
Computer Science; Default passwords; applications; usage; security; Computer Engineering; Computer Sciences; Electrical and Computer Engineering; Forensic Science and Technology; Information Security
Most Recent Tweet View All Tweets
book chapter description
The recent Mirai botnet attack demonstrated the danger of using default passwords and showed it is still a major problem. In this study we investigated several common applications and their password policies. Specifically, we analyzed if these applications: (1) have default passwords or (2) allow the user to set a weak password (i.e., they do not properly enforce a password policy). Our study shows that default passwords are still a significant problem: 61% of applications inspected initially used a default or blank password. When changing the password, 58% allowed a blank password, 35% allowed a weak password of 1 character.