Default password

Abstract: Embedded network devices have become an ubiquitous fixture in the modern home, office as well as in the global communication infrastructure. Devices like routers, NAS appliances, home entertainment appliances, wifi access points, web cams, VoIP appliances, print servers and video conferencing units reside on the same networks as our personal computers and enterprise servers and together form our world-wide communication infrastructure. Widely deployed and often misconfigured, they constitute highly attractive targets for exploitation. In this study we present the results of a vulnerability assessment of embedded network devices within the world's largest ISPs and civilian networks, spanning North America, Europe and Asia. The observed data confirms the intuition that these devices are indeed vulnerable to trivial attacks and that such devices can be found throughout the world in large numbers.

Abstract: Authentication is a challenging and emerging issue for Fog-IoT security paradigms. The fog nodes toward large-scale end-users offer various interacted IoT services. The authentication process usually involves expressing users' personal information such as username, email, and password to the Authentication Server (AS). However, users are not intended to express their identities or information over the fog or cloud servers. Hence, we have proposed an Anonymous User Authentication Scheme for Fog-IoT (AUASF) to keep the anonymity existence of the IoT users and detect the intruders. To provide anonymity, the user can send encrypted credentials such as username, email, and mobile number through the Cloud Service Provider (CSP) for registration. IoT user receives the response with a default password and a secret Id from the CSP. After that, the IoT user submits the default password for first-time access to Fog Service Provider (FSP). The FSP assigns a One Time Password (OTP) to each user for further access. The developed scheme is equipped with hash functions, symmetric encryptions, and decryptions for security perceptions across fog that serves better than the existing anonymity schemes.

Abstract: The present invention discloses a sight line tracking password input method and device, wherein the method comprises the following steps: continuously acquiring images of an area by a photographing unit; transmitting the images acquired by the photographing unit to a computing unit, wherein when a person gets next to the photographing unit and the eyes of the person enter the area, the photographing unit continuously acquires the images of the eyes of the person; determining a certain position which is stared by the eyes of the person by the computing unit in an input area; using the characters which are displayed at the position as password for being input; comparing at least two input characters with a default password by the computing unit; and if the input characters accord with the default password, the person is authorized.

Abstract: A host wireless device may use an evaluation process to determine whether a secured connection is available for a given guest device during initiation of a pairing ceremony. If the guest device does not support a secured connection, no passcode is used. Selection of a default password, auto-generated password, or manually entered password are based on the display and input capabilities of the guest device. An identifier saving the correct pairing ceremony is used so that the same pairing ceremony can be automatically used when the host subsequently connects to a repeat guest.