English
Related papers

Related papers: CompChall: Addressing Password Guessing Attacks

200 papers

While storing documents on the cloud can be attractive, the question remains whether cloud providers can be trusted with storing private documents. Even if trusted, data breaches are ubiquitous. To prevent information leakage one can store…

Cryptography and Security · Computer Science 2023-07-04 Marco Dijkslag , Marc Damie , Florian Hahn , Andreas Peter

The use of passwords and the need to protect passwords are not going away. The majority of websites that require authentication continue to support password authentication. Even high-security applications such as Internet Banking portals,…

Networking and Internet Architecture · Computer Science 2020-11-13 Teik Guan Tan , Pawel Szalachowski , Jianying Zhou

We introduce GOTCHAs (Generating panOptic Turing Tests to Tell Computers and Humans Apart) as a way of preventing automated offline dictionary attacks against user selected passwords. A GOTCHA is a randomized puzzle generation protocol,…

Cryptography and Security · Computer Science 2013-10-07 Jeremiah Blocki , Manuel Blum , Anupam Datta

In 2013, Tsai et al. cryptanalyzed Yeh et al. scheme and shown that Yeh et al., scheme is vulnerable to various cryptographic attacks and proposed an improved scheme. In this poster we will show that Tsai et al., scheme is also vulnerable…

Cryptography and Security · Computer Science 2014-01-24 Vorugunti Chandra Sekhar , Mrudula Sarvabhatla

We introduce password strength information signaling as a novel, yet counter-intuitive, defense mechanism against password cracking attacks. Recent breaches have exposed billions of user passwords to the dangerous threat of offline password…

Cryptography and Security · Computer Science 2021-08-17 Wenjie Bai , Jeremiah Blocki , Ben Harsha

Text password has served as the most popular method for user authentication so far, and is not likely to be totally replaced in foreseeable future. Password authentication offers several desirable properties (e.g., low-cost, highly…

Cryptography and Security · Computer Science 2022-12-27 Lam Tran , Thuc Nguyen , Changho Seo , Hyunil Kim , Deokjai Choi

Propositional satisfiability (SAT) is at the nucleus of state-of-the-art approaches to a variety of computationally hard problems, one of which is cryptanalysis. Moreover, a number of practical applications of SAT can only be tackled…

Artificial Intelligence · Computer Science 2018-03-14 Alexander Semenov , Oleg Zaikin , Ilya Otpuschennikov , Stepan Kochemazov , Alexey Ignatiev

Phishing is a type of attack in which cyber criminals tricks the victims to steal their personal and financial data. It has become an organized criminal activity. Spoofed emails claiming to be from legitimate source are crafted in a way to…

Cryptography and Security · Computer Science 2013-05-14 Ahmad Alamgir Khan

"Honeywords" have emerged as a promising defense mechanism for detecting data breaches and foiling offline dictionary attacks (ODA) by deceiving attackers with false passwords. In this paper, we propose PassFilter, a novel deep learning…

Cryptography and Security · Computer Science 2024-07-25 Jimmy Dani , Brandon McCulloh , Nitesh Saxena

Efficient password cracking is a critical aspect of digital forensics, enabling investigators to decrypt protected content during criminal investigations. Traditional password cracking methods, including brute-force, dictionary and…

Cryptography and Security · Computer Science 2025-04-07 Mohamad Hachem , Adam Lanfranchi , Nathan Clarke , Joakim Kavrestad

In the growing world of the internet, the number of ways to obtain crucial data such as passwords and login credentials, as well as sensitive personal information has expanded. Page impersonation, often known as phishing, is one method of…

Cryptography and Security · Computer Science 2022-09-07 Aman Rangapur , Tarun Kanakam , Dhanvanthini P

State-of-the-art password guessing tools, such as HashCat and John the Ripper, enable users to check billions of passwords per second against password hashes. In addition to performing straightforward dictionary attacks, these tools can…

Cryptography and Security · Computer Science 2019-02-18 Briland Hitaj , Paolo Gasti , Giuseppe Ateniese , Fernando Perez-Cruz

An adversary who has obtained the cryptographic hash of a user's password can mount an offline attack to crack the password by comparing this hash value with the cryptographic hashes of likely password guesses. This offline attacker is…

Cryptography and Security · Computer Science 2016-05-06 Jeremiah Blocki , Anupam Datta

Traditional text-based password schemes are inherently weak. Users tend to choose passwords that are easy to remember, making them susceptible to various attacks that have matured over the years. ObPwd [5] has tried to address these issues…

Cryptography and Security · Computer Science 2018-01-23 Sufian Hameed , Lamak Qaizar , Shankar Khatri

Internet technology is so pervasive today, for example, from online social networking to online banking, it has made people's lives more comfortable. Due the growth of Internet technology, security threats to systems and networks are…

Cryptography and Security · Computer Science 2017-05-30 B. B. Gupta , Nalin Asanka Gamagedara Arachchilage , Konstantinos E. Psannis

Considering computer systems, security is the major concern with usability. Security policies need to be developed to protect information from unauthorized access. Passwords and secrete codes used between users and information systems for…

Cryptography and Security · Computer Science 2014-02-27 Sharayu A. Aghav , RajneeshKaur Bedi

Although it is common for users to select bad passwords that can be easily cracked by attackers, password-based authentication remains the most widely-used method. To encourage users to select good passwords, enterprises often enforce…

Cryptography and Security · Computer Science 2015-12-21 Cem S. Sahin , Robert Lychev , Neal Wagner

Single-factor password-based authentication is generally the norm to access on-line Web-sites. While single-factor authentication is well known to be a weak form of authentication, a further concern arises when considering the possibility…

Cryptography and Security · Computer Science 2020-01-30 Simone Raponi , Roberto Di Pietro

The Denial-of-service (DoS) attack is considered one of the largest threats to the availability of cloud-computing services. Due to the unique architecture of cloud-computing systems, the methods for detecting and preventing DoS attacks are…

Cryptography and Security · Computer Science 2017-11-29 Marwan Darwish , Abdelkader Ouda , Luiz Fernando Capretz

Textual backdoor attacks present a substantial security risk to Large Language Models (LLM). It embeds carefully chosen triggers into a victim model at the training stage, and makes the model erroneously predict inputs containing the same…

Computation and Language · Computer Science 2024-07-08 Xinglin Li , Xianwen He , Yao Li , Minhao Cheng