Introducing a Machine Learning Password Metric Based on EFKM Clustering Algorithm

Authors

  • Omar Saad Almousa Jordan University of Science and Technology
  • Hazem Migdady Oman College for Management and Technology

DOI:

https://doi.org/10.17762/ijcnis.v12i3.4795

Abstract

we introduce a password strength metric using Enhanced Fuzzy K-Means clustering algorithm (EFKM henceforth). The EFKM is trained on the OWASP list of 10002 weak passwords. After that, the optimized centroids are maximized to develop a password strength metric. The resulting meter was validated by contrasting with three entropy-based metrics using two datasets: the training dataset (OWASP) and a dataset that we collected from github website that contains 5189451 leaked passwords. Our metric is able to recognize all the passwords from the OWASP as weak passwords only. Regarding the leaked passwords, the metric recognizes almost the entire set as weak passwords. We found that the results of the EFKM-based metric and the entropy-based meters are consistent. Hence the EFKM metric demonstrates its validity as an efficient password strength checker.

Author Biographies

Omar Saad Almousa, Jordan University of Science and Technology

Assistant professor at the Computer Science department

Hazem Migdady, Oman College for Management and Technology

Assistant professor at the computer scoence department

Downloads

Published

2020-12-21 — Updated on 2022-04-16

Versions

How to Cite

Almousa, O. S., & Migdady, H. (2022). Introducing a Machine Learning Password Metric Based on EFKM Clustering Algorithm. International Journal of Communication Networks and Information Security (IJCNIS), 12(3). https://doi.org/10.17762/ijcnis.v12i3.4795 (Original work published December 21, 2020)

Issue

Vol. 12 No. 3 (2020)

Section

Research Articles