The task of developing protocols for humans to securely authenticate themselves to a remote server has been an interesting topic in cryptography as a replacement for the traditional, less secure, password based systems. The protocols proposed in literature are based on some underlying difficult mathematical problem, which are tuned so as to make them easily computable by humans. As a result these protocols are easily broken when desired to be efficiently executable. We present a Human Identification Protocol based on the ability of humans to efficiently process an image given a secret predicate. It is a challenge-response protocol in which a subset of images presented satisfies a secret predicate shared by the challenger and the user. We conjecture that it is hard to guess this secret predicate for adversaries, both humans and programs. It can be efficiently executed by humans with the knowledge of the secret which in turn is easily memorable and replaceable. We prove the security of the protocol separately for human adversaries and programs based on two separate assumptions and justify these assumptions with the help of an example implementation.
|Title of host publication
|Topics in Cryptology
|Subtitle of host publication
|CT-RSA 2007 - The Cryptographers Track at the RSA Conference 2007, Proceedings
|Number of pages
|Published - 2007
|Cryptographers Track at the RSA Conference, CT-RSA 2007 - San Francisco, United States
Duration: 2007 Feb 5 → 2007 Feb 9
|Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
|Cryptographers Track at the RSA Conference, CT-RSA 2007
|07/2/5 → 07/2/9
Bibliographical noteFunding Information:
★ This research was supported by the MIC (Ministry of Informations and Communi-cations), Korea under the ITRC (Information Technology Research Center) support program supervised by the IITA (Institute of Information Technology Assessment) incollaboration with SunMoon University. The corresponding author is Dr. Sungy-oung Lee.
This research was supported by the MIC (Ministry of Informations and Communications), Korea under the ITRC (Information Technology Research Center) support program supervised by the IITA (Institute of Information Technology Assessment) incollaboration with SunMoon University.
© Springer-Verlag Berlin Heidelberg 2007.
ASJC Scopus subject areas
- Theoretical Computer Science
- General Computer Science