Visible to the public Biblio

Filters: Author is Christopher Novak, Dartmouth College  [Clear All Filters]
2017-07-18
Christopher Novak, Dartmouth College, Jim Blythe, University of Southern Califonia, Ross Koppel, University of Southern California, Vijay Kothari, Dartmouth College, Sean Smith, Dartmouth College.  2017.  Modeling Aggregate Security with User Agents that Employ Password Memorization Techniques. Symposium On Usable Privacy and Security (SOUPS 2017).

We discuss our ongoing work with an agent-based password simulation which models how site-enforced password requirements a ect aggregate security when people interact with multiple authentication systems. We model two password memorization techniques: passphrase generation and spaced repetition. Our simulation suggests system-generated passphrases lead to lower aggregate security across services that enforce even moderate password requirements. Furthermore, allowing users to expand their password length over time via spaced repetition increases aggregate security.

2017-04-03
Jim Blythe, University of Southern California, Sean Smith, Dartmouth College, Ross Koppel, University of Pennsylvania, Christopher Novak, Dartmouth College, Vijay Kothari, Dartmouth College.  2017.  FARM: Finding the Appropriate level of Realism for Modeling.

Presented at the Symposium and Bootcamp in the Science of Security (HotSoS 2017), poster session in Hanover, MD, April 4-5, 2017.

2016-12-09
Jim Blythe, University of Southern California, Christopher Novak, Dartmouth College, Vijay Kothari, Dartmouth College, Ross Koppel, University of Pennsylvania, Sean Smith, Dar.  2016.  Modeling Human Security Behavior: Recent Results on Understanding Compliance.

Presented at the NSA Science of Security Quarterly Meeting, November 2016.