English
Related papers

Related papers: Reverse Online Guessing Attacks on PAKE Protocols

200 papers

Passwords should be easy to remember, yet expiration policies mandate their frequent change. Caught in the crossfire between these conflicting requirements, users often adopt creative methods to perform slight variations over time. While…

Cryptography and Security · Computer Science 2020-09-18 Davide Berardi , Franco Callegati , Andrea Melis , Marco Prandini

BGP is the default inter-domain routing protocol in today's Internet, but has serious security vulnerabilities\cite{murphy2005bgp}. One of them is (sub)prefix hijacking. IETF standardizes RPKI to validate the AS origin but RPKI has a lot of…

Networking and Internet Architecture · Computer Science 2019-03-19 Wenjie Xu , Deliang Chang , Xing Li

State-of-the-art password guessing tools, such as HashCat and John the Ripper, enable users to check billions of passwords per second against password hashes. In addition to performing straightforward dictionary attacks, these tools can…

Cryptography and Security · Computer Science 2019-02-18 Briland Hitaj , Paolo Gasti , Giuseppe Ateniese , Fernando Perez-Cruz

Social engineering (SE) is a form of deception that aims to trick people into giving access to data, information, networks and even money. For decades SE has been a key method for attackers to gain access to an organization, virtually…

Cryptography and Security · Computer Science 2022-08-19 Yisroel Mirsky

In our previous work, it was demonstrated that the attacker could not pin-down the correct keys to start the Y00 protocol with a probability of one under the assistance of unlimitedly long known-plaintext attacks and optimal quantum…

Quantum Physics · Physics 2020-01-31 Takehisa Iwakoshi

The rapid development of IoT networks has led to a research trend in designing effective security features for them. Due to the power-constrained nature of IoT devices, the security features should remain as lightweight as possible.…

Cryptography and Security · Computer Science 2022-11-01 Seyedsina Nabavirazavi , S. Sitharama Iyengar

Model inversion attacks pose an open challenge to privacy-sensitive applications that use machine learning (ML) models. For example, face authentication systems use modern ML models to compute embedding vectors from face images of the…

Cryptography and Security · Computer Science 2025-11-11 Mallika Prabhakar , Louise Xu , Prateek Saxena

New quantum private database (with N elements) query protocols are presented and analyzed. Protocols preserve O(logN) communication complexity of known protocols for the same task, but achieve several significant improvements in security,…

Cryptography and Security · Computer Science 2020-06-14 Fang Yu , Daowen Qiu , Xiaoming Wang , Qin Li , Lvzhou Li , Jozef Gruska

We present a quantum probabilistic encryption algorithm for a private-key encryption scheme based on conjugate coding of the qubit string. A probabilistic encryption algorithm is generally adopted in public-key encryption protocols. Here we…

Quantum Physics · Physics 2013-02-28 Li Yang , Chong Xiang , Bao Li

Coding Opportunistically (COPE) is a simple but very effective data coding mechanism in the wireless network. However, COPE leaves risks for attackers easily getting the private information saved in the packets, when they move through the…

Cryptography and Security · Computer Science 2018-06-15 Ngoc Hong Tran , Cao-Vien Phung , Binh Quoc Nguyen , Leila Bahri

Recently, a quantum key exchange protocol has been described, which served as basis for securing an actual bank transaction by means of quantum cryptography [quant-ph/0404115]. Here we show, that the authentication scheme applied is…

Quantum Physics · Physics 2007-05-23 Thomas Beth , Joern Mueller-Quade , Rainer Steinwandt

Phishing attacks are one of the most common social engineering attacks targeting users emails to fraudulently steal confidential and sensitive information. They can be used as a part of more massive attacks launched to gain a foothold in…

Cryptography and Security · Computer Science 2022-01-27 Fatima Salahdine , Zakaria El Mrabet , Naima Kaabouch

The choice of password composition policy to enforce on a password-protected system represents a critical security decision, and has been shown to significantly affect the vulnerability of user-chosen passwords to guessing attacks. In…

Cryptography and Security · Computer Science 2024-03-18 Saul Johnson , João F. Ferreira , Alexandra Mendes , Julien Cordry

The advent of end-to-end encrypted (E2EE) messaging and backup services has brought new challenges for usable authentication. Compared to regular web services, the nature of E2EE implies that the provider cannot recover data for users who…

Cryptography and Security · Computer Science 2024-06-27 Jenny Blessing , Daniel Hugenroth , Ross J. Anderson , Alastair R. Beresford

Phishing remains a pervasive cyber threat, as attackers craft deceptive emails to lure victims into revealing sensitive information. While Artificial Intelligence (AI), in particular, deep learning, has become a key component in defending…

Cryptography and Security · Computer Science 2025-05-07 Fengchao Chen , Tingmin Wu , Van Nguyen , Shuo Wang , Alsharif Abuadbba , Carsten Rudolph

We perform the first analysis of methodologies for launching DNS cache poisoning: manipulation at the IP layer, hijack of the inter-domain routing and probing open ports via side channels. We evaluate these methodologies against DNS…

Cryptography and Security · Computer Science 2022-05-13 Tianxiang Dai , Philipp Jeitner , Haya Shulman , Michael Waidner

With the rapid development of internet technologies, social networks, and other related areas, user authentication becomes more and more important to protect the data of users. Password authentication is one of the widely used methods to…

Cryptography and Security · Computer Science 2023-01-31 Lifeng Han

Wi-Fi signals can be exploited by adversaries as a sensing side channel to eavesdrop on physical information. By monitoring propagation effects of radio waves within the victim's environment, attackers can remotely infer sensitive…

Cryptography and Security · Computer Science 2026-05-07 Johannes Kortz , Paul Staat , Christof Paar , Christian Zenger

Website fingerprinting attacks, which use statistical analysis on network traffic to compromise user privacy, have been shown to be effective even if the traffic is sent over anonymity-preserving networks such as Tor. The classical attack…

Cryptography and Security · Computer Science 2019-02-22 Anatoly Shusterman , Lachlan Kang , Yarden Haskal , Yosef Meltser , Prateek Mittal , Yossi Oren , Yuval Yarom

In recent years, several protocols for password-based authenticated key exchange have been proposed. These protocols aim to be secure even though the sample space of passwords may be small enough to be enumerated by an off-line adversary.…

Cryptography and Security · Computer Science 2012-07-24 Z. Zhao , Z. Dongand Yongge Wang