Mike Merritt and I are honored that we have received a Test of Time award from the IEEE Security & Privacy ("Oakland") conference for our paper "Encrypted Key Exchange: Password-Based ProtocolsSecure Against Dictionary Attacks" (https://www.cs.columbia.edu/~smb/papers/neke.pdf …), the first paper on PAKEs.
-
Show this thread
-
In the paper, we mused on why one needed to protect passwords, when we have much better forms of token authentication and 2FA.
1 reply 1 retweet 6 likesShow this thread -
Also: after we'd been working on the problem for months (and had wondered if it was impossible), my mind wandered while I was listening to a boring talk, and I came up with the first solution. Moral: even boring talks are worth going to.
3 replies 2 retweets 20 likesShow this thread -
Steven M. Bellovin Retweeted Steven M. Bellovin
Metanote: yes, I do tell my classes this story…https://twitter.com/SteveBellovin/status/1131002954209779713 …
Steven M. Bellovin added,
Steven M. BellovinVerified account @SteveBellovinAlso: after we'd been working on the problem for months (and had wondered if it was impossible), my mind wandered while I was listening to a boring talk, and I came up with the first solution. Moral: even boring talks are worth going to.Show this thread1 reply 0 retweets 8 likesShow this thread
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.