Password Pattern and Vulnerability Analysis for Web and Mobile Applications

Li, S., Romdhani, I., Buchanan, W. (2016). Password Pattern and Vulnerability Analysis for Web and Mobile Applications. ZTE Communications, 14, (3), 32-36.



Text⁃based passwords are heavily used to defense for many web and mobile applications. In this paper, we investigated the patterns and vulnerabilities for both web and mobile applications based on conditions of the Shannon entropy, Guessing entropy and Minimum entropy. We show how to substantially improve upon the strength of passwords based on the analysis of text⁃password entropies. By analyzing the passwords datasets of Rockyou and, we believe strong password can be designed based ongood usability, deployability, rememberbility, and security entropies.
[Read More]


William Buchanan
Director of CDCS
+44 131 455 2759
Imed Romdhani
Associate Professor
+44 131 455 2726
Shancang Li
+44 131 455 2822

Areas of Expertise

Electronic information now plays a vital role in almost every aspect of our daily lives. So the need for a secure and trustworthy online infrastructure is more important than ever. without it, not only the growth of the internet but our personal interactions and the economy itself could be at risk.

Associated Projects

    Keywords: security