Passwords and the Evolution of Imperfect Authentication
van, Oorschot Paul C
Communications of the ACM
MetadataShow full item record
Bonneau, J., Herley, C., van, O. P. C., & Stajano, F. (2014). Passwords and the Evolution of Imperfect Authentication. Communications of the ACM, 58 78-87. https://doi.org/10.1145/2699390
Theory on passwords has lagged behind practice, where large providers use back-end smarts to survive with imperfect technology. Simplistic models of user and attacker behaviors have led the research community to emphasize the wrong threats. Authentication is a classification problem amenable to machine learning, with many signals in addition to the password available to largeWeb services. Passwords will continue as a useful signal for the foreseeable future, where the goal is not impregnable security but reducing harm at acceptable cost.
External DOI: https://doi.org/10.1145/2699390
This record's URL: https://www.repository.cam.ac.uk/handle/1810/246118