BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Talks.cam//talks.cam.ac.uk//
X-WR-CALNAME:Talks.cam
BEGIN:VEVENT
SUMMARY:The science of guessing - Joseph Bonneau (Cambridge University)
DTSTART:20120405T083000Z
DTEND:20120405T093000Z
UID:TALK37072@talks.cam.ac.uk
CONTACT:Microsoft Research Cambridge Talks Admins
DESCRIPTION:Despite decades of efforts to improve authentication\, the wor
 ld still relies heavily on secrets chosen (and memorized) by humans: passw
 ords\, PINs\, personal knowledge questions and the occasional graphical pa
 ssword scheme. While everybody think these are possible for attackers to g
 uess\, our understanding of just how difficult is vague. Are passwords or 
 PINs harder and by how much? How can we accurately the difficulty of guess
 ing passwords chosen by older users to those chosen by younger users\, or 
 those chosen by English speakers to those chosen by Spanish speakers? This
  talk will address these questions\, presenting the speaker's dissertation
  research and upcoming IEEE Security & Privacy Symposium publication. To d
 o so\, the talk will introduce the right statistical metrics for measuring
  guessing resistance\, discuss how to collect large password datasets in a
  privacy-friendly and secure manner\, and discuss some findings from analy
 zing 70 M passwords from Yahoo! users\, perhaps the largest corpus ever st
 udied.
LOCATION:Small lecture theatre\, Microsoft Research Ltd\, 7 J J Thomson Av
 enue (Off Madingley Road)\, Cambridge
END:VEVENT
END:VCALENDAR