English
Related papers

Related papers: Might I Get Pwned: A Second Generation Compromised…

200 papers

Cloud-based documents are inherently valuable, due to the volume and nature of sensitive personal and business content stored in them. Despite the importance of such documents to Internet users, there are still large gaps in the…

Cryptography and Security · Computer Science 2016-07-05 Martin Lazarov , Jeremiah Onaolapo , Gianluca Stringhini

Data security, which is concerned with the prevention of unauthorized access to computers, databases, and websites, helps protect digital privacy and ensure data integrity. It is extremely difficult, however, to make security watertight,…

Cryptography and Security · Computer Science 2018-01-03 Marten Lohstroh

Risk-based authentication (RBA) aims to protect users against attacks involving stolen passwords. RBA monitors features during login, and requests re-authentication when feature values widely differ from previously observed ones. It is…

Cryptography and Security · Computer Science 2022-11-11 Stephan Wiefling , Paul René Jørgensen , Sigurd Thunem , Luigi Lo Iacono

Application programming interfaces (APIs) have become a central part of the modern IT environment, allowing developers to enrich the functionality of applications and interact with third parties such as cloud and payment providers. This…

Cryptography and Security · Computer Science 2026-03-17 Nurullah Demir , Yash Vekaria , Georgios Smaragdakis , Zakir Durumeric

This paper describes a new password-based mutual authentication protocol for Web systems which prevents various kinds of phishing attacks. This protocol provides a protection of user's passwords against any phishers even if dictionary…

Cryptography and Security · Computer Science 2009-11-30 Yutaka Oiwa , Hajime Watanabe , Hiromitsu Takagi

Multi-server MCP agents create an information-flow control problem: faithful tool composition can turn individually benign read/write permissions into cross-boundary credential propagation -- a structural side effect of workflow topology,…

Artificial Intelligence · Computer Science 2026-05-01 Haonan Li , Tianjun Sun , Yongqing Wang , Qisheng Zhang

This paper presents a privacy-preserving protocol for identity registration and information sharing in federated authentication systems. The goal is to enable Identity Providers (IdPs) to detect duplicate or fraudulent identity enrollments…

Cryptography and Security · Computer Science 2025-12-02 Francesco Buccafurri , Carmen Licciardi

With the rapid development of internet technologies, social networks, and other related areas, user authentication becomes more and more important to protect the data of users. Password authentication is one of the widely used methods to…

Cryptography and Security · Computer Science 2023-01-31 Lifeng Han

Honeywords are decoy passwords that can be added to a credential database; if a login attempt uses a honeyword, this indicates that the site's credential database has been leaked. In this paper we explore the basic requirements for…

Cryptography and Security · Computer Science 2024-03-07 Zonghao Huang , Lujo Bauer , Michael K. Reiter

Vulnerable individuals have a limited ability to make reasonable financial decisions and choices and, thus, the level of care that is appropriate to be provided to them by financial institutions may be different from that required for other…

Computers and Society · Computer Science 2021-06-14 Tasos Spiliotopoulos , Dave Horsfall , Magdalene Ng , Kovila Coopamootoo , Aad van Moorsel , Karen Elliott

Compromising legitimate accounts is a way of disseminating malicious content to a large user base in Online Social Networks (OSNs). Since the accounts cause lots of damages to the user and consequently to other users on OSNs, early…

Cryptography and Security · Computer Science 2022-06-10 Forough Farazmanesh , Fateme Foroutan , Amir Jalaly Bidgoly

This paper introduces a new attack on recent messaging systems that protect communication metadata. The main observation is that if an adversary manages to compromise a user's friend, it can use this compromised friend to learn information…

Cryptography and Security · Computer Science 2018-10-25 Sebastian Angel , David Lazar , Ioanna Tzialla

The piggy bank idea allows one-way encryption of information that can be accessed only by authorized parties. Here we show how the piggy bank idea can be used to authenticate parties to counter man-in-the-middle (MIM) attack that can…

Cryptography and Security · Computer Science 2014-11-14 Subhash Kak

Internet of Things is growing rapidly, with many connected devices now available to consumers. With this growth, the IoT apps that manage the devices from smartphones raise significant security concerns. Typically, these apps are secured…

Cryptography and Security · Computer Science 2018-11-06 Davino Mauro Junior , Kiev Gama , Atul Prakash

Password security has been compelled to evolve in response to the growing computational capabilities of modern systems. However, this evolution has often resulted in increasingly complex security practices that alienate users, leading to…

Cryptography and Security · Computer Science 2025-10-14 Tonmoy Ghosh

Cloud computing is a trending technology in the field of Information Technology as it allows sharing of resources over a network. The reason Cloud computing gained traction so rapidly was because of its performance, availability and low…

Cryptography and Security · Computer Science 2014-04-08 Sagar Tirodkar , Yazad Baldawala , Sagar Ulane , Ashok Jori

We present a framework by which websites can coordinate to make it difficult for users to set similar passwords at these websites, in an effort to break the culture of password reuse on the web today. Though the design of such a framework…

Cryptography and Security · Computer Science 2021-03-05 Ke Coby Wang , Michael K. Reiter

The existing peer-to-peer networks have several problems such as fake content distribution, free riding, white-washing and poor search scalability, lack of a robust trust model and absence of user privacy protection mechanism. Although,…

Cryptography and Security · Computer Science 2021-09-07 Jaydip Sen

Honeywords are fictitious passwords inserted into databases in order to identify password breaches. The major difficulty is how to produce honeywords that are difficult to distinguish from real passwords. Although the generation of…

Artificial Intelligence · Computer Science 2022-08-24 Fangyi Yu , Miguel Vargas Martin

This paper presents the results of a series of penetration tests performed on the OpenStack Essex Cloud Management Software. Several different types of penetration tests were performed including network protocol and command line fuzzing,…

Cryptography and Security · Computer Science 2013-01-10 Ralph LaBarge , Thomas McGuire