The weak password problem: chaos, criticality, and encrypted p-CAPTCHAs

TL;DR

This paper introduces a novel password security method that combines chaotic dynamics, phase transition criticality, and CAPTCHA recognition to split passwords into components, significantly enhancing resistance to brute-force attacks.

Contribution

The authors propose a new password strengthening technique using chaotic systems and CAPTCHA transformations, offering a simple yet effective security enhancement.

Findings

Password splitting into memorized and CAPTCHA components improves security.

Use of dynamical systems near phase transitions makes brute-force attacks ineffective.

Method has potential applications in authentication and encryption.

Abstract

Vulnerabilities related to weak passwords are a pressing global economic and security issue. We report a novel, simple, and effective approach to address the weak password problem. Building upon chaotic dynamics, criticality at phase transitions, CAPTCHA recognition, and computational round-off errors we design an algorithm that strengthens security of passwords. The core idea of our method is to split a long and secure password into two components. The first component is memorized by the user. The second component is transformed into a CAPTCHA image and then protected using evolution of a two-dimensional dynamical system close to a phase transition, in such a way that standard brute-force attacks become ineffective. We expect our approach to have wide applications for authentication and encryption technologies.