Groups Similar Look up By Text Browse About



Similar articles
Article Id Title Prob Score Similar Compare
208831 VENTUREBEAT 2021-5-28:
Password breach service Have I Been Pwned goes open source
1.000 Find similar Compare side-by-side
208868 ZDNET 2021-5-27:
Have I been Pwned goes open source
0.928 0.656 Find similar Compare side-by-side
208778 VENTUREBEAT 2021-5-27:
What is an open source program office?
0.005 0.397 Find similar Compare side-by-side
208414 ZDNET 2021-5-26:
Databricks rolls out data sharing, automated pipelines, data catalog
0.002 0.341 Find similar Compare side-by-side
209114 TECHREPUBLIC 2021-5-28:
Why cloud governance needs to be an open source affair
0.321 Find similar Compare side-by-side
208811 VENTUREBEAT 2021-5-27:
Databricks unifies data science and engineering with a federated data mesh
0.318 Find similar Compare side-by-side
208530 VENTUREBEAT 2021-5-25:
Microsoft’s new research lab studies developer productivity and well-being
0.304 Find similar Compare side-by-side
208918 ZDNET 2021-5-27:
Databricks ups AI ante with new AutoML engine and feature store
0.299 Find similar Compare side-by-side
208585 ZDNET 2021-5-25:
Build 2021: Microsoft reveals enhancements to Power BI, Cosmos DB
0.291 Find similar Compare side-by-side
208515 ZDNET 2021-5-26:
New Relic brings instant Kubernetes observability into New Relic One
0.289 Find similar Compare side-by-side
208469 VENTUREBEAT 2021-5-25:
Data collaboration platform Atlan nabs $16.5M
0.286 Find similar Compare side-by-side
209084 VENTUREBEAT 2021-5-28:
Imperva launches tool to automate enterprise data privacy compliance
0.286 Find similar Compare side-by-side
209097 VENTUREBEAT 2021-5-30:
The power of synthetic images to train AI models
0.286 Find similar Compare side-by-side
208495 VENTUREBEAT 2021-5-25:
5 really exciting tech roles open for applicants right now
0.275 Find similar Compare side-by-side
208970 VENTUREBEAT 2021-5-31:
Password authentication is a mess. Here’s a system to replace it
0.275 Find similar Compare side-by-side
208539 VENTUREBEAT 2021-5-25:
Facebook and Microsoft launch PyTorch Enterprise Support Program
0.275 Find similar Compare side-by-side
208470 THEVERGE 2021-5-25:
Government decides pipeline companies should actually have cybersecurity regulations
0.269 Find similar Compare side-by-side
208912 ZDNET 2021-5-27:
Big changes to 1Password in the browser as it adds biometric unlocking
0.268 Find similar Compare side-by-side
208890 ZDNET 2021-5-27:
Various Japanese government entities had data stolen in cyber attack: Report
0.264 Find similar Compare side-by-side
208447 ZDNET 2021-5-26:
Google Cloud intros trio of new services aimed at helping enterprises unify data
0.261 Find similar Compare side-by-side
208762 VENTUREBEAT 2021-5-26:
ThoughtSpot adds support for Databricks ‘lakehouse’ to analytics platform
0.260 Find similar Compare side-by-side
208732 VENTUREBEAT 2021-5-28:
Graphs as a foundational technology stack: Analytics, AI, and hardware
0.258 Find similar Compare side-by-side
208551 ZDNET 2021-5-26:
Want to create a successful data strategy? Here's where you need to start
0.256 Find similar Compare side-by-side
208776 VENTUREBEAT 2021-5-27:
Orbit launches with $15M to fix ‘community data chaos’
0.254 Find similar Compare side-by-side
208623 TECHREPUBLIC 2021-5-25:
Microsoft: This clever open-source technique helps to protect your privacy
0.253 Find similar Compare side-by-side

1

ID: 208831

URL: https://venturebeat.com/2021/05/28/password-breach-service-have-i-been-pwned-goes-open-source/

Date: 2021-05-28

Password breach service Have I Been Pwned goes open source

Elevate your enterprise data technology and strategy at Transform 2021. Password breach database Have I Been Pwned (HIBP) has now made its entire codebase open source, as creator Troy Hunt promised back in August. HIBP is also gaining access to a fresh and continuous cache of breached passwords via the FBI, which has offered to funnel exploited passwords it encounters in its digital crime-fighting efforts directly into the HIBP engine. HIBP was first launched in 2013 by Hunt, a renowned security expert, and serves as an easy way for anyone to discover whether credentials for their online accounts have emerged in an online data dump. The service now receives some 1 billion requests a month, and numerous third parties leverage the data inside their own apps and websites, including Mozillas Firefox browser and 1Password, which last year launched a new data breach report service for its enterprise clients based on HIBP data. Poor password hygiene is a major driver of security breaches, with 81% of all breaches reportedly caused by compromised passwords. Last year, password management platform Dashlane actually launched a new tool that gives businesses data on the health of their employees passwords. All manner of initiatives have emerged to replace passwords with alternative security mechanisms, such as biometric authentication and two-step verification. But passwords still rule the roost, which is why the HIBP database has proved such a utility for millions of people. Hunt, who is also a Microsoft Regional Director, elected to open-source HIBP last year following a failed acquisition. He made the decision to push HIBP fully into community ownership because it had grown substantially, thanks to free contributions from people around the world, and become an indispensable source of data breach data for consumers and companies alike. But, as Hunt pointed out at the time, the entire project still hinged on him alone. If I disappear, HIBP quickly withers and dies, he said. This is where the open-sourcing comes into play. I knew it wouldnt be easy, but I also knew it was the right thing to do for the longevity of the project , Hunt wrote in a blog post today. Given the complexities involved in transforming a one-person project into an open source entity, Hunt has turned to the .NET Foundation, a not-for-profit organization Microsoft established in 2014 to oversee its .NET Frameworks transition to open source. Theres a heap of effort involved in picking something up thats run as a one-person pet project for years and moving it into the public domain, Hunt wrote. I had no idea how to manage an open source project, establish the licencing model, coordinate where the community invests effort, take contributions, redesign the release process, and all sorts of other things Im sure I havent even thought of yet. HIBP now has its own profile on GitHub, with repositories for an Azure Function and Cloudflare Worker, and it has been released under a permissive BSD 3-Clause License. The first significant piece of work for HIBP as an open source project will be to develop the functionality needed to ingest credentials the FBI identifies as breached. Theyll be fed into the system as theyre made available by the bureau, and obviously thats both a cadence and a volume which will fluctuate depending on the nature of the investigations theyre involved in, Hunt wrote. The important thing is to ensure theres an ingestion route by which the data can flow into HIBP and be made available to consumers as fast as possible in order to maximize the value it presents. To do that, were going to need to write some code.