BlackBerry phones are big on security; so they should be, as we know they are a favourite platform for corporate and government employees. With this in mind the firm has decided to pro-actively block a long list of useless, common and obvious passwords from being adopted by BlackBerry 10 users. The list, published by BlackBerry fan site Nerdberry includes such password classics as 123456, secret and qwerty.
I’ve inserted the PasswordService.properties list from the BB IdM server below. This list is expected to grow in the future to include further obvious password classics. Asterisks have been inserted to protect the innocent…
|
1=123456 2=12345678 3=123abc 4=a1b2c3 5=aaaaaa 6=abc123 7=abc123 8=abcdef 9=amanda 10=andrew 11=angel 12=asdfgh 13=august 14=avalon 15=bandit 16=barney 17=baseball 18=batman 19=biteme 20=brandy 21=buster 22=butthead 23=calvin 24=canada 25=changeme 26=chelsea |
27=coffee 28=computer 29=cowboy 30=diamond 31=donald 32=dorothy 33=dragon 34=eeyore 35=falcon 36=fishing 37=football 38=freedom 39=f**kme 40=f**kyou 41=gandalf 42=george 43=harley 44=hello 45=helpme 46=hockey 47=iloveyou 48=internet 49=jennifer 50=jonathan 51=jordan 52=letmein
|
53=maggie 54=marina 55=master 56=matthew 57=merlin 58=michael 59=michelle 60=mickey 61=mike 62=miller 63=molson 64=Monday 65=monday 66=monkey 67=mustang 68=natasha 69=ncc1701 70=newpass 71=newyork 72=pamela 73=password 74=patrick 75=pepper 76=piglet 77=poohbear 78=pookie
|
79=princess 80=qwerty 81=rabbit 82=rachel 83=ranger 84=rocket 85=secret 86=service 87=shadow 88=snoopy 89=soccer 90=sparky 91=spring 92=steven 93=success 94=summer 95=sunshine 96=thomas 97=tigger 98=trustno1 99=victoria 100=whatever 101=wizard 102=zapata 103=blackberry 104=blackberryid 105=bbidentity 106=playbook |
We recently learned that the new BB10 platform has achieved FIPS 140-2 certification. This is an important security certificate “required for sale of products implementing cryptography to the Federal Government”. It is the first time that RIM have managed to attain this certification before a new OS is launched and it means that it “will be able to deploy BlackBerry 10 smartphones and BlackBerry® Enterprise Service 10 as soon as it is available.” With this clever bit of strategic fore-planning it would be a shame if a new BB10 user became the weakest link in the security chain by using such a dumb password as one of the above.
BB10 is expected to launch at the end of January 2013. Incidentally BlackBerry fans will be happy to know that a new prototype handset with a physical qwerty keyboard was recently revealed.
