Publishable Humanly Usable Secure Password Creation Schemas
Date: November 2015
Publication: Third AAAI Conference on Human Computation and Crowdsourcing (HCOMP-15)
Source 1: http://www.aaai.org/ocs/index.php/HCOMP/HCOMP15/paper/view/11587/11430
Source 2: http://www.cc.gatech.edu/~vempala/papers/phuspcs.pdf
Abstract or Summary:
What can a human compute in his/her head that a powerful adversary cannot infer? To answer this question, we define a model of human computation and a measure of security. Then, motivated by the special case of password creation, we propose a collection of well-defined password-generation methods. We show that our password generation methods are humanly computable and, to a well-defined extent, machine uncrackable. For the proof of security, we posit that password generation methods are public, but that the humanís privately chosen seed is not, and that the adversary will have observed only a few input-output pairs. Besides the application to password generation, our proposed Human Usability Model (HUM) will have other applications.
Do you have additional information to contribute regarding this research paper? If so, please email firstname.lastname@example.org with the details.