New Paradigms for Password Security (abstract from the keynote lecture)

By Xavier Boyen.

In 13th Australasian Conference on Information Security and Privacy (ACISP 2008), volume 5017 of Lecture Notes in Computer Science, pages 1-5. Springer, 2008.

Invited paper. Presented in Wollongong, New South Wales, July 2008.

Abstract

Departing from the password protocols and practices in use since the early nineties, we advocate a new approach to password security, that aims to maximize the actual protection offered to the user, against all potential attackers, online and offline. Indeed, even if there is no miraculous way to make a weak password strong, it remains the case that the common practices leave much to be improved. We shall see how to attain the toughest security from the meekest secrets, both in the offline and the online setting, using cryptographically sound yet eminently practical techniques.

Material

- introductory abstract (PS) (PDF) (also accessible from the publisher) ©
- presentation slides (HTML)

Reference

@InProceedings{Boyen:ACISP-2008:keynote,
  author = {Xavier Boyen},
  title = {New Paradigms for Password Security (abstract from the keynote lecture)},
  booktitle = {13th Australasian Conference on Information Security and Privacy---ACISP 2008},
  series = {Lecture Notes in Computer Science},
  volume = {5107},
  pages = {1--5},
  publisher = {Berlin: Springer-Verlag},
  year = {2008},
  note = {Available at \url{http://www.cs.stanford.edu/~xb/acisp08/}}
}
      


Unless indicated otherwise, these documents are Copyright © Xavier Boyen; all rights reserved in all countries.
Back to Xavier's homepage