BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Talks.cam//talks.cam.ac.uk//
X-WR-CALNAME:Talks.cam
BEGIN:VEVENT
SUMMARY:Statistical Attacks on Personal Knowledge Questions - Joseph Bonne
 au\, Cambridge University
DTSTART:20100122T160000Z
DTEND:20100122T162500Z
UID:TALK22876@talks.cam.ac.uk
CONTACT:Jonathan Anderson
DESCRIPTION:When passwords fail and hardware or biometrics are infeasible\
 , many systems still rely on personal knowledge questions for human authen
 tication. In the past year\, high-profile accounts of Twitter executives a
 nd US politician Sarah Palin were compromised by guessing personal knowled
 ge questions. This talk will discuss the range of attacks on personal know
 ledge-based protocols. The speaker will then introduce new research on sta
 tistical guessing attacks\, including information-theoretic models of gues
 sing and their security implications when applied to real-world probabilit
 y distributions of the names of people\, pets\, and places. Finally\, poss
 ible countermeasures based on active shaping of user's answer choices will
  be analysed.
LOCATION:Computer Laboratory\, William Gates Building\, Room FW11
END:VEVENT
END:VCALENDAR