File(s) under permanent embargo
Generating repudiable, memorizable and privacy preserving security questions using the Propp Theory of Narrative
conference contribution
posted on 2014-01-01, 00:00 authored by Lei PanLei Pan, Shaun BangayShaun BangaySecurity questions are often based on personal information that is limited in variety, available in the public record and very difficult to change if compromised. A personalized folktale shared only by the communicating parties provides memorizable basis for individualized security questions that can be readily replaced in the event of a security breach. We utilize the Propp theory of narrative to provide a basis of abstraction for story generation systems. We develop a proof-of-concept system based on placeholder replacement to demonstrate the generation of repudiate and memorizable questions and answers suitable for online security questions. A 3-component protocol is presented that demonstrates the use of this process to derive a shared secret key through privacy amplification. This combination of story generation and communication security provides the basis for improvements in current security question practice.
History
Event
Cyber-Enabled Distributed Computing and Knowledge Discovery. Conference (6th : 2014 : Shanghai, China)Pagination
66 - 72Publisher
IEEELocation
Shanghai, ChinaPlace of publication
Piscataway, N.J.Publisher DOI
Start date
2014-10-10End date
2014-10-12ISBN-13
9781479962358Language
engPublication classification
E Conference publication; E1 Full written paper - refereedCopyright notice
2014, IEEEEditor/Contributor(s)
[Unknown]Title of proceedings
CyberC 2014 : The 6th International Conference on Cyber-Enabled Distributed Computing and Knowledge DiscoveryUsage metrics
Categories
No categories selectedKeywords
Licence
Exports
RefWorks
BibTeX
Ref. manager
Endnote
DataCite
NLM
DC