nisteag.token.requirements.memorized module

Requirements for Memorized Secret Tokens.

See section 6.3.1.1. Single Token Authentication, table 6, page 51, of the NIST document.

class nisteag.token.requirements.memorized.BaseMemorizedChecker(throttler=None)

Bases: object

MINIMUM_ENTROPY = 0

check(token, dictionary=None, username=None)

Checks a token to make sure it meets the requirements.

Parameters:

• token (str) – The token for the calculation. May be a password, a pass-phrase and the like.
• dictionary (sequence) – An optional dictionary as a sequence, against which the token will be tested, if provided. If you opt by using it, provide a dictionary of at least 50,000 items. Default: None.
• username (str) – An optional username to be used for anagram checking. Default: None.

class nisteag.token.requirements.memorized.Level1Checker(throttler=None)

Bases: nisteag.token.requirements.memorized.BaseMemorizedChecker

MINIMUM_ENTROPY = 14

class nisteag.token.requirements.memorized.Level2Checker(throttler=None)

Bases: nisteag.token.requirements.memorized.BaseMemorizedChecker

MINIMUM_ENTROPY = 18