Presentation is loading. Please wait.

Presentation is loading. Please wait.

GOTCHA Password Hackers! Jeremiah Blocki Manuel Blum Anupam Datta AISec2013 Presented by Arunesh Sinha.

Published byLetitia Casey Modified over 9 years ago

Similar presentations

Presentation on theme: "GOTCHA Password Hackers! Jeremiah Blocki Manuel Blum Anupam Datta AISec2013 Presented by Arunesh Sinha."— Presentation transcript:

1 GOTCHA Password Hackers! Jeremiah Blocki Manuel Blum Anupam Datta AISec2013 Presented by Arunesh Sinha

2 Questions Jeremiah Blocki was not able to make it because BLS International did not return his passport. Arunesh Sinha agreed to present in his place. Please address any questions to jblocki@cs.cmu.edu jblocki@cs.cmu.edu

3 GOTCHAs in the Blogosphere Answer: No! GOTCHAs address a fundamentally different problem than CAPTCHAs.

4 Outline Offline Dictionary Attacks Goal: Require Human Interaction GOTCHAs User Study Challenge

5 Offline Dictionary Attack 5 Username jblocki + jblocki, 123456 SHA1(12345689d978034a3f6)=85e23cfe 0021f584e3db87aa72630a9a2345c062 Hash 85e23cfe0021 f584e3db87aa 72630a9a234 5c062 Salt 89d978034a3f6

6 A Common Problem Password breaches at major companies have affected millions of users.

7

8 Better Hash Functions Source: Percival, C. Stronger Key Derivation via Sequential Memory-Hard Functions.

9 Costly Hash Functions Tradeoff

10 Outline Offline Dictionary Attacks Goal: Require Human Interaction – Failed Approach: CAPTCHAs – Human Only Solvable Puzzles (HOSPs) [CHS 2006] – Limitations GOTCHAs User Study Challenge

11 Basic Idea: Require Human Interaction 11 + Goal:

12 Basic Idea: Require Human Interaction 12 + Goal:

13 A Failed Attempt CAPTCHA jblocki, 123456 123456 Answer: KWTER KWTER Username jblocki SHA1(123456KWTER89d978034a3f6)=1f88e cdcb0c25e8ae1ed1c9ce6f2e2e6dcfb0e21 Hash 1f88ecdcb0c2 5e8ae1ed1c9 ce6f2e2e6dcf b0e21 Salt 89d978034a3f6

14 A Failed Attempt CAPTCHA Username jblocki SHA1(passwordGWNAB89d978034a3f6)=4e108b3 c12b4a1c6b8670685bb9a63e40b8d7a1d Hash 1f88ecdcb0c2 5e8ae1ed1c9 ce6f2e2e6dcf b0e21 Salt 89d978034a3f6 password Answer: GWNAB

15 Human Only Solvable Puzzles [CHS 2006] Mitigating dictionary attacks on password-protected local storageMitigating dictionary attacks on password-protected local storage jblocki, 123456 123456 KWTER Username jblocki SHA1(123456KWTER89d978034a3f6)=1f88e cdcb0c25e8ae1ed1c9ce6f2e2e6dcfb0e21 Hash 1f88ecdcb0c2 5e8ae1ed1c9 ce6f2e2e6dcf b0e21 Salt 89d978034a3f6 …

16 Limited Protection … Username jblocki Hash 1f88ecdcb0c2 5e8ae1ed1c9 ce6f2e2e6dcf b0e21 Salt 89d978034a3f6 password GWNAB SHA1(passwordGWNAB89d9780 34a3f6)=4e108b3c12b4a1c6b86 70685bb9a63e40b8d7a1d GWNAB [CHS 2006] Mitigating dictionary attacks on password-protected local storageMitigating dictionary attacks on password-protected local storage Open Question: Can we build a puzzle system that doesn’t have this limitation?

17 Outline Offline Dictionary Attacks Goal: Require Human Interaction GOTCHAs – Example Construction – GOTCHAs vs HOSPs – Security User Study Challenge

18 Inkblots Easy to generate on computer Human Imagination – Evil Clown?

19 GOTCHA: Account Creation jblocki, 123456 123456 evil clown, …,steroid cow Username jblocki SHA1(123456987654321089d978034a3f6)= 0340eebc16d09e5a747a9ac879019af61e46 0770 Hash 0340eebc16d 09e5a747a9a c879019af61e 460770 Salt 89d978034 a3f6 Inkblots … … Labels Steroid cow … Evil clown

20 GOTCHA: Authentication jblocki, 123456 123456 Inkblots … … Steroid cow, …, Evil clown evil clown, …,steroid cow Username jblocki SHA1(123456987654321089d978034a3f6)= 0340eebc16d09e5a747a9ac879019af61e46 0770 Hash 0340eebc16d 09e5a747a9a c879019af61e 460770 Salt 89d978034 a3f6 Labels Steroid cow … Evil clown

21 GOTCHA: Authentication jblocki, 1234567 1234567 Inkblots … Steroid cow, …, Evil clown Steroid cow, …,evil clown Username jblocki SHA1(1234567012345678989d978034a3f6)= babb03d14600ef101b4a46f86b0c4ae3f25aa1a 7 Hash 0340eebc16d 09e5a747a9a c879019af61e 460770 Salt 89d978034 a3f6 Labels Steroid cow … Evil clown …

22 GOTCHAs vs HOSPs Human Involved in Generation of Puzzle – HOSP puzzles are generated without human interaction Puzzle need not be meaningful to user if he enters the wrong password – HOSP puzzles must always be human-solvable

23 Security: Real vs Fake Puzzles Real Puzzles Fake Puzzles 123456 Inkblots Labels 123456 Inkblots Labels Inkblots (permuted order) Inkblots 111111

24 Security: Real vs Fake Solutions Real Solution Fake Solution 123456 Inkblots Labels Inkblots (permuted order) Solution 123456 Inkblots Labels Inkblots (permuted order) Fake Solution Distribution R

25 Definition

26 Offline Attacks are Expensive! Cost of Human Labor Cost of Computation

27 What Does GOTCHA stand for? Generating panOptic Turing Tests to Tell Computers and Humans Appart

28 Outline Offline Dictionary Attacks Goal: Require Human Interaction GOTCHAs User Study – Protocol – Results – Discussion Challenge

29 Study Protocol Participants recruited on Amazon Mechanical Turk Labeling Phase – Participants asked to label 10 Inkblot images – Paid $1 Matching Phase – Participants asked to match their labels after 10 days. – Paid $1 (even if answers were wrong)

30 Labeling Phase 10 Inkblots Compensation: $1 Seventy Participants

31 Matching Phase 10 Days Later Compensation: $1 (even for wrong answers) 58 Participants

32 Results 69% of users matched at least half of their images correctly

33 Discussion Personal Experience vs. Study – Incentives – Better Instructions? Time Barrier Improved Constructions – Better Inkblots – Reject Confusing Inkblots – Multiple GOTCHAs?

34 Outline Offline Dictionary Attacks Human Only Solvable Puzzles GOTCHAs User Study Challenge

35 GOTCHA Challenge Source: http://www.cs.cmu.edu/~jblocki/GOTCHA-Challenge.htmlhttp://www.cs.cmu.edu/~jblocki/GOTCHA-Challenge.html

36 GOTCHA Challenge Source: http://www.cs.cmu.edu/~jblocki/GOTCHA-Challenge.htmlhttp://www.cs.cmu.edu/~jblocki/GOTCHA-Challenge.html

37 GOTCHA Challenge PasswordWinnerInstitutionDate Solved Example123456Harry Q. Bovik Carnegie Mellon University 7/17/2013 Challenge 1?N/A Challenge 2?N/A Challenge 3?N/A Challenge 4?N/A Challenge 5?N/A Source: http://www.cs.cmu.edu/~jblocki/GOTCHA-Challenge.htmlhttp://www.cs.cmu.edu/~jblocki/GOTCHA-Challenge.html

38 Thanks for Listening! Please direct questions to Jeremiah Blocki jblocki@cs.cmu.edu jblocki@cs.cmu.edu

Download ppt "GOTCHA Password Hackers! Jeremiah Blocki Manuel Blum Anupam Datta AISec2013 Presented by Arunesh Sinha."

Similar presentations

Securing Passwords against Dictionary Attacks

Securing Passwords against Dictionary Attacks
MFA for Business Banking – Security Code Multifactor Authentication: Quick Tip Sheets Note to Financial Institutions: We are providing these QT sheets.

MFA for Business Banking – Security Code Multifactor Authentication: Quick Tip Sheets Note to Financial Institutions: We are providing these QT sheets.
1 CompChall: Addressing Password Guessing Attacks IAS, ITCC-2005, April 2005 CompChall: Addressing Password Guessing Attacks By Vipul Goyal OSP Global.

1 CompChall: Addressing Password Guessing Attacks IAS, ITCC-2005, April 2005 CompChall: Addressing Password Guessing Attacks By Vipul Goyal OSP Global.
Overview Network security involves protecting a host (or a group of hosts) connected to a network Many of the same problems as with stand-alone computer.

Overview Network security involves protecting a host (or a group of hosts) connected to a network Many of the same problems as with stand-alone computer.
Naturally Rehearsing Passwords Jeremiah Blocki ASIACRYPT 2013 Manuel Blum Anupam Datta.

Naturally Rehearsing Passwords Jeremiah Blocki ASIACRYPT 2013 Manuel Blum Anupam Datta.
Regret Minimizing Audits: A Learning-theoretic Basis for Privacy Protection Jeremiah Blocki, Nicolas Christin, Anupam Datta, Arunesh Sinha Carnegie Mellon.

Regret Minimizing Audits: A Learning-theoretic Basis for Privacy Protection Jeremiah Blocki, Nicolas Christin, Anupam Datta, Arunesh Sinha Carnegie Mellon.
Spaced Repetition and Mnemonics Enable Recall of Multiple Strong Passwords Jeremiah Blocki Saranga Komanduri Lorrie Cranor Anupam Datta NDSS 2015.

Spaced Repetition and Mnemonics Enable Recall of Multiple Strong Passwords Jeremiah Blocki Saranga Komanduri Lorrie Cranor Anupam Datta NDSS 2015.
CAPTCHA Completely Automated Public Turing test to tell Computers and Humans Apart A Computer Program that can generate and grade test that: Most Humans.

CAPTCHA Completely Automated Public Turing test to tell Computers and Humans Apart A Computer Program that can generate and grade test that: Most Humans.
CMSC 414 Computer and Network Security Lecture 12 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 12 Jonathan Katz.
Authentication attacks, causes and solutions Analyzing man in the middle and dictionary attacks against SSL/TLS and password based authentication systems.

Authentication attacks, causes and solutions Analyzing man in the middle and dictionary attacks against SSL/TLS and password based authentication systems.
Naturally Rehearsing Passwords Jeremiah Blocki NSF TRUST October 2013 Manuel Blum Anupam Datta.

Naturally Rehearsing Passwords Jeremiah Blocki NSF TRUST October 2013 Manuel Blum Anupam Datta.
SIA: Secure Information Aggregation in Sensor Networks Bartosz Przydatek, Dawn Song, Adrian Perrig Carnegie Mellon University Carl Hartung CSCI 7143: Secure.

SIA: Secure Information Aggregation in Sensor Networks Bartosz Przydatek, Dawn Song, Adrian Perrig Carnegie Mellon University Carl Hartung CSCI 7143: Secure.
 Key exchange o Kerberos o Digital certificates  Certificate authority structure o PGP, hierarchical model  Recovery from exposed keys o Revocation.

 Key exchange o Kerberos o Digital certificates  Certificate authority structure o PGP, hierarchical model  Recovery from exposed keys o Revocation.
CAPTCHA Presented By Sayani Chandra (Roll - 09127106017)

CAPTCHA Presented By Sayani Chandra (Roll )
CMSC 414 Computer and Network Security Lecture 21 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 21 Jonathan Katz.
1 Intro To Encryption Exercise 12. 2 Problem What may be the problem with a central KDC?

1 Intro To Encryption Exercise Problem What may be the problem with a central KDC?
1 Authentication CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute March 11, 2004.

1 Authentication CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute March 11, 2004.
CMSC 414 Computer and Network Security Lecture 14 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 14 Jonathan Katz.
1 Pertemuan 04 Pengamanan Akses Sistem Matakuliah: H0242 / Keamanan Jaringan Tahun: 2006 Versi: 1.

1 Pertemuan 04 Pengamanan Akses Sistem Matakuliah: H0242 / Keamanan Jaringan Tahun: 2006 Versi: 1.
Apr 4, 2003Mårten Trolin1 Previous lecture TLS details –Phases Handshake Securing messages –What the messages contain –Authentication.

Apr 4, 2003Mårten Trolin1 Previous lecture TLS details –Phases Handshake Securing messages –What the messages contain –Authentication.

Similar presentations

Ads by Google