Towards Narrative Authentication: Or, Against Boring Authentication
Date: September 2013 Publication: Proceedings of the 2013 Workshop on New Security Paradigms Workshop, NSPW '13 Page(s): 57 - 64 Publisher: ACM Source 1: http://www.nspw.org/papers/2013/nspw2013-somayaji.pdf Source 2: http://gigl.scs.carleton.ca/sites/default/files/chujia_wei/towards_narrative_authenticationi_0.pdf Source 3: http://dx.doi.org/10.1145/2535813.2535820 - Subscription or payment required Abstract or Summary:
In this paper we propose that what-you-know authentication schemes be built using narrative elements. Specifically, we propose that stories be used as the basis of memory-based user authentication, rather than use a fixed string as the secret for authentication (as is the case with text passwords and PINs). The insight here is that secure text passwords are "boring" and, hence, are hard to remember. Narrative is, in contrast, extremely memorable, forming the basis of much of human communication. We present a simple, implementable scheme for narrative authentication using text adventures. We then also examine other strategies for generating and testing knowledge of narrative. Do you have additional information to contribute regarding this research paper? If so, please email siteupdates@passwordresearch.com with the details.
<-- Back to Authentication Research Paper Index |