Cryptanalysis of a Cognitive Authentication Scheme

CryptoDB

Cryptanalysis of a Cognitive Authentication Scheme

Authors:	Philippe Golle David Wagner
Download:	URL: http://eprint.iacr.org/2006/258 Search ePrint Search Google
Abstract:	We present attacks against two cognitive authentication schemes [W06] recently proposed at the 2006 IEEE Symposium on Security and Privacy. These authentication schemes are designed to be secure against eavesdropping attacks while relying only on human cognitive skills. They achieve authentication via challenge response protocols based on a shared secret set of pictures. Our attacks use a SAT solver to recover a user's key in a few seconds, after observing only a small number of successful logins. These attacks demonstrate that the authentication schemes of [W06] are not secure against an eavesdropping adversary.

BibTeX

@misc{eprint-2006-21750,
  title={Cryptanalysis of a Cognitive Authentication Scheme},
  booktitle={IACR Eprint archive},
  keywords={cryptographic protocols / cryptanalysis, authentication protocol},
  url={http://eprint.iacr.org/2006/258},
  note={N/A pgolle@cs.stanford.edu 13360 received 31 Jul 2006},
  author={Philippe Golle and David Wagner},
  year=2006
}

International Association for Cryptologic Research

International Association
for Cryptologic Research

CryptoDB

Cryptanalysis of a Cognitive Authentication Scheme

BibTeX

International Association for Cryptologic Research

International Associationfor Cryptologic Research

CryptoDB

Cryptanalysis of a Cognitive Authentication Scheme

BibTeX

International Association
for Cryptologic Research