Abstract
Our digital lives rely on modern cryptography that is based on complicated mathematics average human users cannot follow. Previous attempts at adding the human user into the cryptographic loop include things like Human Authenticated Key Exchange and visualizable cryptography. This paper presents our proof-of-concept implementation of these ideas as a system called EEVEHAC. It utilizes human capabilities to achieve an end-to-end encrypted channel between a user and a server that is authenticated with human senses and can be used through untrusted environments. The security of this complete system is analyzed. We find that the combination of the two different systems into EEVEHAC on a theoretical level retains the security of the individual systems. We also identify the weaknesses of this implementation and discuss options for overcoming them.
Original language | English |
---|---|
Title of host publication | Proceedings of the 18th International Conference on Security and Cryptography, SECRYPT 2021 |
Editors | Sabrina De Capitani di Vimercati, Pierangela Samarati |
Publisher | SciTePress |
Pages | 659-664 |
Number of pages | 6 |
ISBN (Electronic) | 978-989-758-524-1 |
DOIs | |
Publication status | Published - 2021 |
MoE publication type | A4 Article in a conference publication |
Event | 18th International Conference on Security and Cryptography, SECRYPT 2021 - Virtual, Online Duration: 6 Jul 2021 → 8 Jul 2021 |
Conference
Conference | 18th International Conference on Security and Cryptography, SECRYPT 2021 |
---|---|
City | Virtual, Online |
Period | 6/07/21 → 8/07/21 |
Keywords
- Human Understandable Cryptography
- Narrative Authentication
- Secure Channel
- Visualizable Cryptography