Error-Tolerant Password Recovery
Publication: Proceedings of the ACM Conference on Computer and Communication Security (CCS '01)
Page(s): 1 - 8
Source 1: http://www.rsasecurity.com/rsalabs/staff/bios/ajuels/publications/fuzzpass/fuzzpass.pdf
Source 2: http://doi.acm.org/10.1145/501983.501985 - Subscription or payment required
Many encryption systems require the user to memorize high entropy passwords or passphrases and reproduce them exactly. This is often a difficult task. We propose a more fault-tolerant scheme, where a high entropy key (or password) is derived from a set of low entropy passwords. The user is able to recover the correct key if she remembers a certain percentage of the passwords correctly. In contrast to other systems that have been proposed for fault-tolerant passwords, our basic design is provably secure against a computationally unbounded attacker.
Do you have additional information to contribute regarding this research paper? If so, please email firstname.lastname@example.org with the details.