PASTA: PASsword-based Threshold Authentication

Channel:

Subscribers:

344,000

Published on July 17, 2019 7:36:49 PM ● Video Link: https://www.youtube.com/watch?v=4PwBfok0-4M

Duration: 45:47

1,514 views

We introduce and formalize a new notion of password-based threshold token authentication, which protects password-based authentication against single point of failures. Specifically, we distribute the role of a single server among n servers and allow any t servers to collectively verify clients' passwords and generate tokens, while no t-1 servers can forge a valid token or mount offline dictionary attacks. We then introduce PASTA, a general framework wherein clients can sign on using a two-round (optimal) protocol that meets our strong security guarantees.

Our experiments show that the overhead of protecting secrets and credentials against breaches in PASTA, i.e. compared to a naive single-server solution, is extremely low (1-5%) in the most likely setting where client and servers communicate over the internet. The overhead is higher in case of MAC-based tokens over a LAN (though still only a few milliseconds) due to public-key operations in PASTA. We show, however, that this cost is inherent by proving a symmetric-key only solution impossible.

Based on joint work with Shashank Agrawal, Payman Mohassel, and Pratyay Mukherjee: https://eprint.iacr.org/2018/885.pdf.

See more at https://www.microsoft.com/en-us/research/video/pasta-password-based-threshold-authentication/

Other Videos By Microsoft Research

2019-07-30	Spreadsheet Intelligence for Ideas of Excel
2019-07-30	Argosy: Verifying Layered Storage Systems With Recovery Refinement
2019-07-30	Building Neural Network Models That Can Reason
2019-07-30	Fireside Chat with David Blei
2019-07-24	A Conversation with Bill Gates Hosted by Eric Horvitz
2019-07-22	Pravega, a new storage abstraction data streams
2019-07-22	Invariance and Stability to Deformations of Deep Convolutional Representations
2019-07-22	Personalized Machine Learning: Towards Human-centered Machine Intelligence
2019-07-22	SIKE in Hardware for IoT
2019-07-19	MineRL Competition 2019
2019-07-17	PASTA: PASsword-based Threshold Authentication
2019-07-17	Making the future of work work for you with Dr. Johannes Gehrke
2019-07-16	AI for Earth’s Land Cover Mapping
2019-07-03	Physics ∩ ML Workshop (Day 1): Short Talks
2019-07-03	Higher Fidelity Systems for Online Discussion
2019-07-03	The Blessings of Multiple Causes
2019-07-03	Data Efficient Reinforcement learning for Autonomous Robots with Simulated and Off-policy Data
2019-06-26	The brave new world of cloud-scale systems and networking with Dr. Lidong Zhou
2019-06-19	Designing and Building Multi-Device Interfaces
2019-06-19	On The Hardness of Reinforcement Learning With Value-Function Approximation
2019-06-19	Lattice Attacks for Variants of LWE

Tags:

microsoft research

cryptography

Channel	Latest
TheEmeraldMaster™️	6 hours ago
Darkness Games	6 hours ago
Haider khalid alnasery	7 hours ago
CBROWN PUBG	7 hours ago
Clubbi	7 hours ago
BrandyDerg	7 hours ago
ASM_txc	8 hours ago
MFGAMING	8 hours ago
Plenoctis - Filosofia del Videogioco	8 hours ago
CS Suomi	8 hours ago
DJ Minecraft	9 hours ago
The 8RCV Adventure’s	9 hours ago
V FACE	10 hours ago
CHEZAME	10 hours ago
WebNations	10 hours ago
Vorbe	10 hours ago
Tru4Smash	10 hours ago
Furious Phoenix Gamings	10 hours ago
ToonChan TV	10 hours ago
REALAX	10 hours ago
Gamer Shiva	10 hours ago
khuka	11 hours ago
SpeRo	11 hours ago
PENGEN CERITAIN	11 hours ago
Diana Kurnia Putri	11 hours ago