Portable Authentication from a Weaker Password

By Xavier Boyen.

At the International Workshop on Cryptographic Protocols and Public-Key Cryptography (WPK 2009), Bertinoro, Italy, May 2009.

Invited talk.


Is it safe to login to multiple sites with a single password and no help or token of any kind? This presentation will take a fresh look at remote authentication using weak and reusable passwords from a user-centric perspective, and discuss a modular approach that addresses all remote threats from network interlopers to malicious sites, is very practical, decentralized, untethered, certificate-free, user-controled, server-scalable, can be deployed incrementally, and avoids several difficulties that befell earlier generations of password authentication.


- presentation slides (HTML)

Unless indicated otherwise, these documents are Copyright © Xavier Boyen; all rights reserved in all countries.
Back to Xavier's homepage