The course will cover the latest strategies attackers use to guess passwords, what makes passwords easy to guess, and how to make them stronger. Specifically, the course will look at different ways to create passwords and their effect on guessing resistance. Additionally, the course will cover what the benefits good password policies can hold and what harms bad password policies can bring.
The course will also look at technologies that can enhance account security, such as multi–factor authentication, and alternatives, such as Passkeys/WebAuth. These technologies allow users to protect their accounts from guessing and observation attacks but come with trade–offs in the assumptions about account security, that most might not be aware of.