'Padding Oracle' Crypto Attack Affects Millions of ASP.NET Apps

Peter Gutmann pgut001 at cs.auckland.ac.nz
Sat Oct 2 21:05:11 EDT 2010

Jerry Leichter <leichter at lrw.com> writes:

>By the way, the "don't acknowledge whether it was the login ID or the
>password that was wrong" example is one of those things "everyone knows" -
>along with "change your password frequently" - that have long passed their
>"use by" date.  

You got there before I did - real-world studies of users have shown that a
common failure mode for this is that when users get their user name wrong they
then try every password they can think of under the assumption that they've
remembered the wrong password for the site.  So not only does not
distinguishing between incorrect username and incorrect password not help [0],
it actually makes things much, much worse by training users to enter every
password for every site they know.


[0] Well, it helps the attackers I guess...

The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com

More information about the cryptography mailing list