ANALYSIS OF PASSWORD RESISTANCE TO AI-GENERATED ATTACKS
DOI:
https://doi.org/10.35546/kntu2078-4481.2025.1.2.31Keywords:
password resistance, password cracking, AI-generated attacks, neural networks, PassGAN, authentication, information security, digital immunity, cyberattacksAbstract
Passwords remain one of the key authentication methods; however, their security largely depends on storage methods and the ability to counter modern attacks. Traditional password-cracking techniques, such as brute force and dictionary attacks, are gradually losing effectiveness against more advanced technologies that leverage artificial intelligence.This study analyzes the impact of AI-generated attacks on password resilience and evaluates their effectiveness compared to classical methods.Modern approaches to password generation in real authentication systems and password-cracking mechanisms are examined. Special attention is given to the PassGAN model, which utilizes generative adversarial networks to create passwords with a high probability of matching real user combinations. The effectiveness of such attacks and their ability to bypass standard password complexity verification mechanisms are assessed. An experimental study is conducted, comparing the success rates of AI-generated attacks with traditional methods, such as brute force and dictionary attacks.The experimental results indicate a significant increase in password-cracking efficiency for medium-complexity passwords when using AI-generated attacks. Meanwhile, complex passwords demonstrate significantly higher resistance to such attacks. Based on the obtained data, recommendations are formulated to enhance password security, including the use of longer combinations and the implementation of digital immunity systems capable of detecting and preventing AI-driven threats.The study highlights the importance of an adaptive approach to authentication security and the need for comprehensive solutions that combine strong passwords, multi-factor authentication, and artificial intelligence technologies to protect digital systems. Further development of AI-based attack methods requires continuous improvement of detection and mitigation techniques.
References
Sharma P., Tanwar S., Kukreja V. Implementation of Brute Force Attack [Електронний ресурс] // Taylor & Francis. 2024. Режим доступу: https://www.taylorfrancis.com/chapters/edit/10.1201/9781003535423-10/implementation-brute- force-attack-priyanshu-sharma-sarvesh-tanwar-vinay-kukreja
Sharma A., Babbar H., Vats A. Empowering Security: Machine Learning Solutions for Detecting Brute Force Attacks [Електронний ресурс] // IEEE Xplore. 2024. Режим доступу: https://ieeexplore.ieee.org/abstract/document/10838096
Hamza A. A., Al-Janabi R. J. S. Detecting Brute Force Attacks Using Machine Learning [Електронний ресурс] // BIO Web of Conferences. 2024. Режим доступу: https://www.bio-conferences.org/articles/bioconf/pdf/2024/16/bioconf_ iscku2024_00045.pdf
Hussian N. A., Al-Shareefi F. A Comparative Study Between Two Cybersecurity Attacks: Brute Force and Dictionary Attack [Електронний ресурс] // Journal of Knowledge Management & Computing. 2018. № 11. Режим доступу: http://dx.doi.org/10.31642/JoKMC/2018/110216
Bošnjak L., Sreš J., Brumen B. Brute-force and dictionary attack on hashed real-world passwords [Електронний ресурс] // IEEE Xplore. 2018. Режим доступу: https://ieeexplore.ieee.org/abstract/document/8400211
Narayanan A., Shmatikov V. Fast dictionary attacks on passwords using time-space tradeoff [Електронний ресурс] // ACM Conference on Computer and Communications Security. 2005. Режим доступу: https://doi.org/10.1145/1102120.1102168
Pinkas B., Sander T. Securing passwords against dictionary attacks [Електронний ресурс] // ACM Conference on Computer and Communications Security. 2002. Режим доступу: https://dl.acm.org/doi/10.1145/586110.586133
Hitaj B., Gasti P., Ateniese G., Perez-Cruz F. PassGAN: A Deep Learning Approach for Password Guessing [Електронний ресурс] // arXiv.org. 2017. Режим доступу: https://doi.org/10.48550/arXiv.1709.00440
Werhahn M., Xie Y., Chu M., Thuerey N. A Multi-Pass GAN for Fluid Flow Super-Resolution [Електронний ресурс] // ACM Transactions on Graphics. 2019. Режим доступу: https://doi.org/10.1145/3340251
