Publishable Humanly Usable Secure Password Creation Schemas
Author(s): Manuel Blum, Santosh Vempala

Date: November 2015
Publication: Third AAAI Conference on Human Computation and Crowdsourcing (HCOMP-15)
Publisher: AAAI
Source 1: http://www.aaai.org/ocs/index.php/HCOMP/HCOMP15/paper/view/11587/11430
Source 2: http://www.cc.gatech.edu/~vempala/papers/phuspcs.pdf

Abstract or Summary:
What can a human compute in his/her head that a powerful adversary cannot infer? To answer this question, we define a model of human computation and a measure of security. Then, motivated by the special case of password creation, we propose a collection of well-defined password-generation methods. We show that our password generation methods are humanly computable and, to a well-defined extent, machine uncrackable. For the proof of security, we posit that password generation methods are public, but that the humanís privately chosen seed is not, and that the adversary will have observed only a few input-output pairs. Besides the application to password generation, our proposed Human Usability Model (HUM) will have other applications.



Do you have additional information to contribute regarding this research paper? If so, please email siteupdates@passwordresearch.com with the details.

<-- Back to Authentication Research Paper Index





[Home] [About Us] [News] [Research]

Copyright © 2016 PasswordResearch.com