Output details
11 - Computer Science and Informatics
University of Surrey
Does Counting Still Count? Revisiting the Security of Counting based User Authentication Protocols against Statistical Attacks
<19>This paper represents significant progress towards a final solution for a two decade old research problem: How can we design a human authentication protocol secure against observers without using any auxiliary device? The paper’s main contribution is a general theoretical framework for a new type of statistical attack on human user authentication protocols based on counting objects. The theoretical analysis also generates two new principles for designing such human authentication protocols, and proposes several fixes that can potentially make a counting based protocol more secure. NDSS is one of the “top four” security conferences (2013 acceptance rate: 18.8%).