EnFilter: A Password Enforcement and Filter Tool Based on Pattern Recognition Techniques

  • Giancarlo Ruffo
  • Francesco Bergadano
Part of the Lecture Notes in Computer Science book series (LNCS, volume 3617)


EnFilter is a Proactive Password Checking System, designed to avoid password guessing attacks. It is made of a set of configurable filters, each one based on a specific pattern recognition measure that can be tuned by the system administrator depending on the adopted password policy. Filters use decision trees, lexical analysers, as well as Levenshtein distance based techniques. EnFilter is implemented for Windows 2000/2003/XP.


Decision Tree System Administrator Levenshtein Distance Lexical Analyser Dictionary Attack 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.


  1. 1.
    Bergadano, F., Crispo, B., Ruffo, G.: High Dictionary Compression for proactive password checking on ACM TISSEC, vol. 1(1) (November 1998)Google Scholar
  2. 2.
    Blundo, C., D’Arco, P., De Santis, A., Galdi, C.: Hyppocrates: a new proactive password checker. The Journal of Systems and Software (71) (2004)Google Scholar
  3. 3.
    Davies, C., Ganesan, R.: Bapasswd: a new proactive password checker. In: Proc. of 16th NIST-NCSC National Computer Security Conference (1993)Google Scholar
  4. 4.
    Levenshtein, V.I.: Binary codes capable of correcting deletions, insertions and reversals. Sov. Phys. Dokl. 6, 707–710 (1966)MathSciNetGoogle Scholar
  5. 5.
    Microsoft Knowledge Base HOWTO: Password Change Filtering & Notification in Windows NT - article n. 151082Google Scholar
  6. 6.
    Muffett, A.: Crack 4.0, 5.0 11Google Scholar
  7. 7.
    Nagle, J.B.: An obvious password detector. USENET news - comp.sources.unix 16(60) (1988)Google Scholar
  8. 8.
    Quinlan, J.R.: C4.5: Programs for Machine Learning. Morgan Kaufmann, San MateoGoogle Scholar
  9. 9.
    Spafford, E.H.: OPUS: Preventing Weak Password Choices. Computers and Security 11, 273–278 (1992)CrossRefGoogle Scholar
  10. 10.
    Yan, J.: A Note on Proactive Password Checking. In: ACM New Security Paradigms Workshop, New Mexico, USA (September 2001)Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2005

Authors and Affiliations

  • Giancarlo Ruffo
    • 1
  • Francesco Bergadano
    • 1
  1. 1.Dipartimento di InformaticaUniversità degli Studi di Torino 

Personalised recommendations