@TheGibson What I'd really like to see is, say, lifetime or century-crack length over time.
That is, for a given year, what is the shortest password that can withstand likely crack attempts for 100 years.
Or perhaps ranked against budget: cracking for $0.01/key, $0.10, $1, $10, $100, $1,000, $1,000,0000, $billion, etc.
The cracking-rate progress and budget aspects of this are seriously underappreciated. Hell, I don't know these.
@dredmorbius @thegibson I think Bitcoin has proven the economy for this is a hell of a lot cheaper than people think. (Which is why I think the estimates in the chart above are woefully naive as they assume a single attacker and a one pw at a time attack.)
The amount of distributed compute power people are throwing around at cryptocoins for no budget but for imaginary profit is extraordinary. No human password survives ~100-days much less 100 years against cryptocurrency "mining".
@dredmorbius @FiXato @thegibson Right, yeah, in order to do rate limits you have to do rate counts and *counting is hard* in a distributed system. It's expensive to count correctly (transaction locks), so there's lots of distributed hacks around counting such as bloom filters and HyperLogLog, and a proper rate limit is barely worth even those counting hacks.
@dredmorbius @FiXato @thegibson Even if those counting hacks were worth using for rate limits, they are prone to false negatives/false positives, which is fine for "there are roughly 99+ things in your inbox" but definitely not for "you've tried to log in 3 times in the last 3 minutes on 3 different IP addresses, your account is now locked for three hours".
Anyway, my terrifying canary in this coal mine is somewhat documented on Mastodon under the CW "Steam Password Change Day".
The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!