TY - GEN
T1 - Password typos resilience in honey encryption
AU - Choi, Hoyul
AU - Nam, Hyunjae
AU - Hur, Junbeom
N1 - Publisher Copyright:
© 2017 IEEE.
PY - 2017/4/13
Y1 - 2017/4/13
N2 - Honey encryption (HE) is a novel password-based encryption scheme which is secure against brute-force attack even if users' passwords have min-entropy. However, because decryption under a wrong key produces fake but valid-looking messages to everyone, typos in password may confuse even legitimate users in HE. This has been one of the most challenging problems in HE. In this paper, we propose two types of protocols that enable legitimate users to detect the typos in a password. We compare and analyze the performance and security of each scheme. The analysis results show that the proposed schemes can effectively solve the typos problem in HE while providing message recovery security.
AB - Honey encryption (HE) is a novel password-based encryption scheme which is secure against brute-force attack even if users' passwords have min-entropy. However, because decryption under a wrong key produces fake but valid-looking messages to everyone, typos in password may confuse even legitimate users in HE. This has been one of the most challenging problems in HE. In this paper, we propose two types of protocols that enable legitimate users to detect the typos in a password. We compare and analyze the performance and security of each scheme. The analysis results show that the proposed schemes can effectively solve the typos problem in HE while providing message recovery security.
KW - brute-force resilience
KW - honey encryption
KW - password typo
KW - password-based encryption
UR - http://www.scopus.com/inward/record.url?scp=85018247225&partnerID=8YFLogxK
U2 - 10.1109/ICOIN.2017.7899565
DO - 10.1109/ICOIN.2017.7899565
M3 - Conference contribution
AN - SCOPUS:85018247225
T3 - International Conference on Information Networking
SP - 593
EP - 598
BT - 31st International Conference on Information Networking, ICOIN 2017
PB - IEEE Computer Society
T2 - 31st International Conference on Information Networking, ICOIN 2017
Y2 - 11 January 2017 through 13 January 2017
ER -