What is password blacklist? - Definition from WhatIs.com

Definition

password blacklist

Part of the Authentication glossary:

A password blacklist is a list of words disallowed as user passwords due to their commonplace use.

Blacklists may also incorporate rules to prevent the use of common passwords with frequently-used modifications such as capital letters, standard substitutions or numbers following the words. These rules can help protect against password cracking software that works with dictionaries of commonly-used passwords – which also often include the ability to apply frequently-used modifications.

Such blacklists can prevent the use of a string of characters that might pass password entropy checks. For example, PassW0rd1 is rated as an acceptably strong password in many password strength meters because it employs several password hardening measures, but in fact, it’s quite weak: It’s just the word password (the weakest and most common password of all) with common modifications.  

This was last updated in January 2014
Contributor(s): Matthew Haughn
Posted by: Margaret Rouse

Related Terms

Definitions

  • rainbow table

    - A rainbow table is a listing of all possible plaintext permutations of encrypted passwords specific to a given hash algorithm. Rainbow tables are often used by password cracking software for networ... (WhatIs.com)

  • single-factor token

    - A single-factor token is a small hardware device that produces one confirming credential for user authentication; the devices may be used in conjunction with other types of credentials for multifac... (WhatIs.com)

  • multifactor token

    - Multifactor tokens are security tokens that use more than one category of credential to confirm user authentication. The standard categories of authentication credentials are knowledge factors thi... (WhatIs.com)

Glossaries

  • Authentication

    - Terms related to authentication, including security definitions about passwords and words and phrases about proving identity.

  • Internet applications

    - This WhatIs.com glossary contains terms related to Internet applications, including definitions about Software as a Service (SaaS) delivery models and words and phrases about web sites, e-commerce ...

Ask a Question. Find an Answer.Powered by ITKnowledgeExchange.com

Ask An IT Question

Get answers from your peers on your most technical challenges

Ask Question

Tech TalkComment

Share
Comments

    Results

    Contribute to the conversation

    All fields are required. Comments will appear at the bottom of the article.