ruby-entropy 0.1.0

data/lib/ruby-entropy.rb

@@ -0,0 +1,99 @@
+class Password
+
+  attr_reader :password
+  
+  #lowercase passwords only
+  COMMON_PASSWORDS = ["admin", "administrator", "jesus", "letmein", "master", "open sesame", "opensesame", "password", "sunshine", "trustnoi", "trustnol", "welcome"]
+  KEY_PATTERNS = ["zxc", "cxz", "bnm", "mnb", "jkl", "lkj", "asd", "dsa", "qwe", "ewq", "iop", "poi"]
+
+  def initialize(password)
+    @password = password
+    @passwords = []
+  end
+
+  def entropy
+    Math.log2(count ** length)
+  end
+
+  def strength
+    (31 * bad_password_multiplier * Math.log(entropy / 13.62)).round(2)
+  end
+
+  def length
+    @password.length
+  end
+
+  def letters
+    26 if @password.match(/[a-z]|[A-Z]/)
+  end
+   
+  def multiple_cases
+    26 if @password.match(/[a-z]/) && @password.match(/[A-Z]/)
+  end
+
+  def digits
+    10 if @password.match(/\d/) 
+  end
+
+  def symbols
+    33 if @password.match(/\W/)
+  end
+
+  def count
+    letters.to_i + multiple_cases.to_i + digits.to_i + symbols.to_i
+  end
+
+  def key_pattern?
+    KEY_PATTERNS.each { |pattern| return true if @password.downcase.include?(pattern) }
+    false
+  end
+
+  def numerical_pattern?
+    pattern = @password.split('').map(&:to_i)
+    pattern.each_with_index do |num, index|
+      return true if pattern[index + 1] == num + 1 && pattern[index + 2] == num + 2 && pattern[index + 3] == num + 3
+      return true if pattern[index + 1] == num - 1 && pattern[index + 2] == num - 2 && pattern[index + 3] == num - 3
+    end
+    false
+  end
+
+  def repetitious?
+    characters = @password.split('')
+    characters.each_with_index do |character, index|
+      return true if characters[index + 1] == character && characters[index + 2] == character
+    end
+    false
+  end
+
+  def common?
+    @passwords << @password
+    if @password.match(/[@0|1$5]/)
+      @passwords << @password.gsub('@', 'a').gsub('0', 'o').gsub(/[|1!]/, 'l').gsub(/[$5]/, 's')
+      @passwords << @password.gsub('@', 'a').gsub('0', 'o').gsub(/[|1!]/, 'i').gsub(/[$5]/, 's')
+    end
+    COMMON_PASSWORDS.each do |commoner|
+      @passwords.each { |password| return true if password.downcase.include?(commoner.downcase) }
+    end
+    false
+  end
+
+  def uniqueness
+    (@password.downcase.split('').uniq.length/length.to_f) < 0.4
+  end
+
+  def repeaters
+    mode = []
+    @password.downcase.split('').uniq.each do |character|
+      mode << @password.split('').count(character)
+    end
+    mode.max.downto(2) do |num|
+      return true if (mode.count(num)/mode.length.to_f) > 0.75
+    end
+    false
+  end
+
+  def bad_password_multiplier
+    repeaters || uniqueness ? (return 0.1) : 1
+    key_pattern? || numerical_pattern? || repetitious? || common? ? @password.length < 12 ? 0.5 : 0.75 : 1
+  end
+end

metadata

@@ -0,0 +1,47 @@
+--- !ruby/object:Gem::Specification
+name: ruby-entropy
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+  prerelease: 
+platform: ruby
+authors:
+- Brooks Mason
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2013-05-21 00:00:00.000000000 Z
+dependencies: []
+description: Calculates password strength based on standard entropy definition.  Strength
+  is reduced based on repeatability and common password test functions
+email: brooksmason@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- lib/ruby-entropy.rb
+homepage: http://rubygems.org/gems/ruby-entropy
+licenses: []
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 1.8.25
+signing_key: 
+specification_version: 3
+summary: password strength algorithm
+test_files: []
+has_rdoc: