Deakin University
Browse

File(s) under permanent embargo

Generating repudiable, memorizable and privacy preserving security questions using the Propp Theory of Narrative

conference contribution
posted on 2014-01-01, 00:00 authored by Lei PanLei Pan, Shaun BangayShaun Bangay
Security questions are often based on personal information that is limited in variety, available in the public record and very difficult to change if compromised. A personalized folktale shared only by the communicating parties provides memorizable basis for individualized security questions that can be readily replaced in the event of a security breach. We utilize the Propp theory of narrative to provide a basis of abstraction for story generation systems. We develop a proof-of-concept system based on placeholder replacement to demonstrate the generation of repudiate and memorizable questions and answers suitable for online security questions. A 3-component protocol is presented that demonstrates the use of this process to derive a shared secret key through privacy amplification. This combination of story generation and communication security provides the basis for improvements in current security question practice.

History

Pagination

66-72

Location

Shanghai, China

Start date

2014-10-10

End date

2014-10-12

ISBN-13

9781479962358

Language

eng

Publication classification

E Conference publication, E1 Full written paper - refereed

Copyright notice

2014, IEEE

Editor/Contributor(s)

[Unknown]

Title of proceedings

CyberC 2014 : The 6th International Conference on Cyber-Enabled Distributed Computing and Knowledge Discovery

Event

Cyber-Enabled Distributed Computing and Knowledge Discovery. Conference (6th : 2014 : Shanghai, China)

Publisher

IEEE

Place of publication

Piscataway, N.J.