Human-Usable Password Schemas: Beyond Information-Theoretic Security
Elan Rosenfeld, Santosh Vempala, Manuel Blum

TL;DR
This paper evaluates the practical security of password schemas against real-world adversaries, revealing that many schemas are vulnerable and emphasizing the need for complex constraints to enhance security.
Contribution
It provides a complexity-theoretic analysis of password schemas, contrasting with previous information-theoretic approaches, and offers insights into designing more secure schemas.
Findings
Several schemas are vulnerable to computationally bounded adversaries.
Introducing multiple constraints per challenge-response pair enhances schema security.
Practical security analysis differs significantly from infinite adversary models.
Abstract
Password users frequently employ passwords that are too simple, or they just reuse passwords for multiple websites. A common complaint is that utilizing secure passwords is too difficult. One possible solution to this problem is to use a password schema. Password schemas are deterministic functions which map challenges (typically the website name) to responses (passwords). Previous work has been done on developing and analyzing publishable schemas, but these analyses have been information-theoretic, not complexity-theoretic; they consider an adversary with infinite computing power. We perform an analysis with respect to adversaries having currently achievable computing capabilities, assessing the realistic practical security of such schemas. We prove for several specific schemas that a computer is no worse off than an infinite adversary and that it can successfully extract all…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsUser Authentication and Security Systems · Cognitive Computing and Networks · Advanced Malware Detection Techniques
\thesistitle
Human-Usable Password Schemas:
Beyond Information-Theoretic Security \supervisorProf. Manuel Blum \cosupervisorProf. Santosh Vempala \examiner SCS Honors Undergraduate Research Thesis \addresses \subjectComputer Science Department \universityCarnegie Mellon University \departmentComputer Science Department \groupSchool of Computer Science \facultySchool of Computer Science
\univname
SCS Honors Undergraduate Research Thesis
\HRule\ttitle\HRule
Author:
\authorname
Advisor:
\supname
co-Advisor:
\cosupname
April 29, 2016
Abstract
\addchaptertocentry
Abstract
Password users frequently employ passwords that are too simple, or they just reuse passwords for multiple websites. A common complaint is that utilizing secure passwords is too difficult. One possible solution to this problem is to use a password schema. Password schemas are deterministic functions which map challenges (typically the website name) to responses (passwords). Previous work has been done on developing and analyzing publishable schemas, but these analyses have been information-theoretic, not complexity-theoretic; they consider an adversary with infinite computing power.
We perform an analysis with respect to adversaries having currently achievable computing capabilities, assessing the realistic practical security of such schemas. We prove for several specific schemas that a computer is no worse off than an infinite adversary and that it can successfully extract all information from leaked challenges and their respective responses, known as challenge-response pairs. We also show that any schema that hopes to be secure against adversaries with bounded computation should obscure information in a very specific way, by introducing many possible constraints with each challenge-response pair. These surprising results put the analyses of password schemas on a more solid and practical footing.
keywords:
challenges
keywords:
responses
keywords:
schema quality
keywords:
challenge-response pair
keywords:
random challenge-response pair
keywords:
one-pass schema
keywords:
two-pass schema
keywords:
expansion factor
keywords:
direct
keywords:
indirect
keywords:
direct
keywords:
Indirect
Acknowledgements.
\addchaptertocentry\acknowledgementname I am thankful to Professor Santosh Vempala for his invaluable help and suggestions, including creating and helping to break several schemas.
Thanks to Dr. Jeremiah Blocki for his assistance with the constraint solver, as well as all his very constructive feedback on this paper. Thank you to Samira Samadi and Lisa Masserova for helpful discussion.
Thank you to my Abba for supporting and encouraging me through this process.
Finally, my deepest gratitude is to my advisor, Professor Manuel Blum. He gave me blunt criticism when I deserved it; he nonetheless later agreed to advise me, even when I hadn’t proven myself. He encouraged me when I doubted myself and opened my eyes to the joys of research. I am deeply indebted to him for all this and much more.
