Towards Narrative Authentication: Or, Against Boring Authentication
Date: September 2013
Publication: Proceedings of the 2013 Workshop on New Security Paradigms Workshop, NSPW '13
Page(s): 57 - 64
Source 1: http://www.nspw.org/papers/2013/nspw2013-somayaji.pdf
Source 2: http://gigl.scs.carleton.ca/sites/default/files/chujia_wei/towards_narrative_authenticationi_0.pdf
Source 3: http://dx.doi.org/10.1145/2535813.2535820 - Subscription or payment required
Abstract or Summary:
In this paper we propose that what-you-know authentication schemes be built using narrative elements. Specifically, we propose that stories be used as the basis of memory-based user authentication, rather than use a fixed string as the secret for authentication (as is the case with text passwords and PINs). The insight here is that secure text passwords are "boring" and, hence, are hard to remember. Narrative is, in contrast, extremely memorable, forming the basis of much of human communication. We present a simple, implementable scheme for narrative authentication using text adventures. We then also examine other strategies for generating and testing knowledge of narrative.
Do you have additional information to contribute regarding this research paper? If so, please email firstname.lastname@example.org with the details.