Presentation is loading. Please wait.

Presentation is loading. Please wait.

Naturally Rehearsing Passwords Jeremiah Blocki ASIACRYPT 2013 Manuel Blum Anupam Datta.

Published byShirley McDowell Modified over 9 years ago

Similar presentations

Presentation on theme: "Naturally Rehearsing Passwords Jeremiah Blocki ASIACRYPT 2013 Manuel Blum Anupam Datta."— Presentation transcript:

1 Naturally Rehearsing Passwords Jeremiah Blocki ASIACRYPT 2013 Manuel Blum Anupam Datta

2 Memory Experiment 1 2 PersonAlan Turing ActionKissing ObjectPiranha

3 Memory Experiment 2 PersonBill Gates Actionswallowing Objectbike

4 Password Management Scheme Competing Goals: SecurityUsability 4

5 A Challenging Problem 5 Traditional Security Advice Not too short Use mix of lower/upper case letters Change your passwords every 90 days Use numbers and letters Don’t use words/names Use special symbols Don’t Write it Down Don’t Reuse Passwords

6 Outline 6 Introduction and Experiments Example Password Management Schemes Quantifying Usability Quantifying Security Our Password Management Scheme

7 Example Password Management Schemes Scheme 1: Reuse Password Pick four random words w 1,w 2,w 3,w 4 AccountAmazonEbay Passwordw1w2w3w4w1w2w3w4 w1w2w3w4w1w2w3w4 Scheme 2: Strong Random Independent AccountAmazonEbay Passwordw1w2w3w4w1w2w3w4 x1x2x3x4x1x2x3x4

8 Questions How can we evaluate password management strategies? – Quantify Usability – Quantify Security Can we design password management schemes which balance security and usability considerations?

9 Outline 9 Introduction and Experiments Example Password Management Schemes Quantifying Usability – Human Memory – Rehearsal Requirement – Visitation Schedule Quantifying Security Our Password Management Scheme

10 Human Memory is Semantic Memorize: nbccbsabc Memorize: tkqizrlwp 3 Chunks vs. 9 Chunks! Usability Goal: Minimize Number of Chunks Source: The magical number seven, plus or minus two [Miller, 56] 10

11 Human Memory is Associative ? 11

12 Cues 12 Cue: context when a memory is stored Surrounding Environment – Sounds – Visual Surroundings – Web Site – …. As time passes we forget some of this context…

13 Human Memory is Lossy Rehearse or Forget! – How much work? Quantify Usability – Rehearsal Assumption p amazon p google ???? 13

14 Quantifying Usability Human Memory is Lossy – Rehearse or Forget! – How much work does this take? Rehearsal Assumptions Visitation Schedule – Natural Rehearsal for frequently visited accounts

15 Rehearsal Requirement Expanding Rehearsal Assumption: user maintains cue-association pair by rehearsing during each interval [s i, s i+1 ]. Day: 1 2 4 5 8 Visit Amazon: Natural Rehearsal X t : extra rehearsals to maintain all passwords for t days. Google 15

16 Rehearsal Requirement Day: 1 2 4 5 8 X t : extra rehearsals to maintain all passwords for t days. Reuse Password Independent Passwords X8X8 02

17 Visitation Schedule 17 t1t1 t2t2 t2t2

18 Visitation Schedule User =1 (daily) =1/3 (biweekly) =1/7 (weekly) =1/31 (monthly) =1/365 (annual) Active10 35 Typical510 40 Occasional21020 23 Infrequent0251058 Number of accounts visited with frequency Day: 2 4 5 8 Poisson Process with parameter AmazonGoogle

19 Usability Results 19 Reuse Strong Strong Random Independent Active0.023420 Typical0.084456.6 Occasional0.12502.7 Infrequent1.2564 E[X 365 ]: Extra Rehearsals to maintain all passwords over the first year. UsableUnusable

20 Outline 20 Introduction and Experiments Example Password Management Schemes Quantifying Usability Quantifying Security – Background – Philosophy – Security Definition: Password Guessing Game Our Password Management Scheme

21 Security (what could go wrong?) OnlineOfflinePhishing Danger Three Types of Attacks 21

22 Online Attack password 22 123456 Guess Limit: k-strikes policy

23 Offline Dictionary Attack 23 Username jblocki + jblocki, 123456 SHA1(12345689d978034a3f6)=85e23cfe 0021f584e3db87aa72630a9a2345c062 Hash 85e23cfe0021 f584e3db87aa 72630a9a234 5c062 Salt 89d978034a3f6

24 Plaintext Recovery Attack PayPaul.com 24 pwd

25 Snowball Effect Source: CERT Incident Note IN-98.03: Password Cracking Activity PayPaul.com + 25 pwd

26 Our Security Approach 26 Dangerous World Assumption – Not enough to defend against existing adversaries – Adversary can adapt after learning the user’s new password management strategy Provide guarantees even when things go wrong – Offline attacks should fail with high probability – Limit damage of a successful phishing attack

27 + Password Guessing Game PayPaul.com q $1,000,000 guesses p5p5 BCRYPT(p 4 ) p5p5 p4p4 p3p3 p2p2 p1p1

28 Password Guessing Game Adversary can compromise at most r sites (phishing). Adversary can execute offline attacks against at most h additional sites – Resource Constraints => at most q guesses Adversary wins if he can compromise any new sites. 28 pwd BCRYPT(pwd)

29 (q, , m,s,r,h)-Security r = #h = # 29 Offline Attack Accounts Phishing Attack Accounts q = # offline guesses m = # of accounts s = # online guesses

30 Example: (q, , m,3,1,1)-Security PayPaul.com + q guesses r=1 h=1 30

31 Security Results (q $1,000,000, ,m,3,r,h)-security Attacks r= 1 h=1 r=2 ReuseNo Strong Random Independent Yes Usable + Insecure Unusable + Secure

32 Outline 32 Introduction and Experiments Example Password Management Schemes Quantifying Usability Quantifying Security Our Password Management Scheme

33 Our Approach Object: bike Public Cue Private Action: kicking Object: penguin

34 Login Kic+Pen + Tor+Lio +... … Kis+pir

35 Login Kic+Pen + …. … Swa+bik

36 Sharing Cues Usability Advantages – Fewer stories to remember! – More Natural Rehearsals! Security? Day: 1 2 4 5 8 36

37 (n,l,  )-Sharing Set Family n n

38 n n

39 Security Results (q $1,000,000, ,m,3,r,h)-security Attacks r= 1 h=1 r=2 (n,4,4)-Sharing [Reuse] No (n,4,0)-Sharing [Independent] Yes (n,4,1)-Sharing [SC-1] Yes No (n,4,3)-Sharing [SC-0] YesNoYesNo

40 Sharing Cues 40 Thm: There is a (43,4,1)-Sharing Set Family of size m=90, and a (9,4,3)-Sharing Set Family of size 126 Proof? – Chinese Remainder Theorem! – Notice that 43 = 9+10+11+13 where 9, 10, 11, 13 are pair wise coprime. – A i uses cues: {i mod 9, i mod 10, i mod 11, i mod 13}

41 Chinese Remainder Theorem

42 Usability Results 42 ReuseStrong Random Independent SC-1SC-0 Active 004203.93 00 Typical 00456.610.89 00 Occasional 00502.722.07 00 Infrequent1.2564119.772.44 E[X 365 ]: Extra Rehearsals to maintain all passwords over the first year.

43 Security Results (q $1,000,000, ,m,3,r,h)-security Attacks r= 1 h=1 r =2 (n,4,4)-Sharing [Reuse] No (n,4,0)-Sharing [Independent] Yes (n,4,1)-Sharing [SC-1] Yes No (n,4,3)-Sharing [SC-0] YesNoYesNo Usable + Insecure Unusable + Secure Usable + Secure

44 Memory Experiment 1 44

45 Memory Experiment 2

46 Thanks for Listening!

47 Backup Slides

48 User Study Validity of Expanding Rehearsal Assumption Mnemonic Devices and Rehearsal Schedules Collaborate with CyLab Usable Privacy and Security group (CUPS)

49 User Study Protocol Memorization Phase (5 minutes): – Participants asked to memorize four randomly selected person-action object stories. Rehearsal Phase (90 days): – Participants periodically asked to return and rehearse their stories (following rehearsal schedule)

50 Password Managers?

51 Limited Protection

52

53

Download ppt "Naturally Rehearsing Passwords Jeremiah Blocki ASIACRYPT 2013 Manuel Blum Anupam Datta."

Similar presentations

Point3r$. Password Introduction Passwords are a key part of any security system : –Work or Personal Strong passwords make your personal and work.

Point3r$. Password Introduction Passwords are a key part of any security system : –Work or Personal Strong passwords make your personal and work.
ECE454/CS594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2011.

ECE454/CS594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2011.
1 J. Alex Halderman A Convenient Method for Securely Managing Passwords J. Alex Halderman Princeton Brent Waters Stanford Edward W. Felten Princeton.

1 J. Alex Halderman A Convenient Method for Securely Managing Passwords J. Alex Halderman Princeton Brent Waters Stanford Edward W. Felten Princeton.
Cryptology Passwords and Authentication Prof. David Singer Dept. of Mathematics Case Western Reserve University.

Cryptology Passwords and Authentication Prof. David Singer Dept. of Mathematics Case Western Reserve University.
Spaced Repetition and Mnemonics Enable Recall of Multiple Strong Passwords Jeremiah Blocki Saranga Komanduri Lorrie Cranor Anupam Datta NDSS 2015.

Spaced Repetition and Mnemonics Enable Recall of Multiple Strong Passwords Jeremiah Blocki Saranga Komanduri Lorrie Cranor Anupam Datta NDSS 2015.
GOTCHA Password Hackers! Jeremiah Blocki Manuel Blum Anupam Datta AISec2013 Presented by Arunesh Sinha.

GOTCHA Password Hackers! Jeremiah Blocki Manuel Blum Anupam Datta AISec2013 Presented by Arunesh Sinha.
Usable and Secure Password Management Jeremiah Blocki Spring 2012 Theory Lunch.

Usable and Secure Password Management Jeremiah Blocki Spring 2012 Theory Lunch.
CMSC 414 Computer and Network Security Lecture 12 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 12 Jonathan Katz.
CS426Fall 2010/Lecture 81 Computer Security CS 426 Lecture 8 User Authentication.

CS426Fall 2010/Lecture 81 Computer Security CS 426 Lecture 8 User Authentication.
Naturally Rehearsing Passwords Jeremiah Blocki NSF TRUST October 2013 Manuel Blum Anupam Datta.

Naturally Rehearsing Passwords Jeremiah Blocki NSF TRUST October 2013 Manuel Blum Anupam Datta.
Usable Privacy and Security Carnegie Mellon University Spring 2007 Cranor/Hong 1 Authentication and access control.

Usable Privacy and Security Carnegie Mellon University Spring 2007 Cranor/Hong 1 Authentication and access control.
CMSC 414 Computer and Network Security Lecture 21 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 21 Jonathan Katz.
Public Works and Government Services Canada Travaux publics et Services gouvernementaux Canada Password Management for Multiple Accounts Some Security.

Public Works and Government Services Canada Travaux publics et Services gouvernementaux Canada Password Management for Multiple Accounts Some Security.
Usable Privacy and Security Carnegie Mellon University Spring 2006 Cranor/Hong/Reiter 1 Course Overview January.

Usable Privacy and Security Carnegie Mellon University Spring 2006 Cranor/Hong/Reiter 1 Course Overview January.
Password Management Strategies for Online Accounts Gaw & Felten Optional Reading.

Password Management Strategies for Online Accounts Gaw & Felten Optional Reading.
CS470, A.SelcukAuthentication Systems1 CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.

CS470, A.SelcukAuthentication Systems1 CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.
Homework #4 Comments. Passwords: What are they good for? Today passwords are the #1 means of authenticating users on a day-to-day basis. –Email, Websites,

Homework #4 Comments. Passwords: What are they good for? Today passwords are the #1 means of authenticating users on a day-to-day basis. – , Websites,
Human Computable Passwords

Human Computable Passwords
Authentication for Humans Rachna Dhamija SIMS, UC Berkeley DIMACS Workshop on Usable Privacy and Security Software July 7, 2004.

Authentication for Humans Rachna Dhamija SIMS, UC Berkeley DIMACS Workshop on Usable Privacy and Security Software July 7, 2004.
1 Securing Passwords Against Dictionary Attacks Base on an article by Benny Pinkas & Tomas Sander 2002 Presented by Tomer Conforti.

1 Securing Passwords Against Dictionary Attacks Base on an article by Benny Pinkas & Tomas Sander 2002 Presented by Tomer Conforti.

Similar presentations

Ads by Google