Cargando…
Password Security as a Game of Entropies
We consider a formal model of password security, in which two actors engage in a competition of optimal password choice against potential attacks. The proposed model is a multi-objective two-person game. Player 1 seeks an optimal password choice policy, optimizing matters of memorability of the pass...
| Autores principales: | , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
MDPI
2018
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC7512831/ https://www.ncbi.nlm.nih.gov/pubmed/33265403 http://dx.doi.org/10.3390/e20050312 |
| _version_ | 1783586248340799488 |
|---|---|
| author | Rass, Stefan König, Sandra |
| author_facet | Rass, Stefan König, Sandra |
| author_sort | Rass, Stefan |
| collection | PubMed |
| description | We consider a formal model of password security, in which two actors engage in a competition of optimal password choice against potential attacks. The proposed model is a multi-objective two-person game. Player 1 seeks an optimal password choice policy, optimizing matters of memorability of the password (measured by Shannon entropy), opposed to the difficulty for player 2 of guessing it (measured by min-entropy), and the cognitive efforts of player 1 tied to changing the password (measured by relative entropy, i.e., Kullback–Leibler divergence). The model and contribution are thus twofold: (i) it applies multi-objective game theory to the password security problem; and (ii) it introduces different concepts of entropy to measure the quality of a password choice process under different angles (and not a given password itself, since this cannot be quality-assessed in terms of entropy). We illustrate our approach with an example from everyday life, namely we analyze the password choices of employees. |
| format | Online Article Text |
| id | pubmed-7512831 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2018 |
| publisher | MDPI |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-75128312020-11-09 Password Security as a Game of Entropies Rass, Stefan König, Sandra Entropy (Basel) Article We consider a formal model of password security, in which two actors engage in a competition of optimal password choice against potential attacks. The proposed model is a multi-objective two-person game. Player 1 seeks an optimal password choice policy, optimizing matters of memorability of the password (measured by Shannon entropy), opposed to the difficulty for player 2 of guessing it (measured by min-entropy), and the cognitive efforts of player 1 tied to changing the password (measured by relative entropy, i.e., Kullback–Leibler divergence). The model and contribution are thus twofold: (i) it applies multi-objective game theory to the password security problem; and (ii) it introduces different concepts of entropy to measure the quality of a password choice process under different angles (and not a given password itself, since this cannot be quality-assessed in terms of entropy). We illustrate our approach with an example from everyday life, namely we analyze the password choices of employees. MDPI 2018-04-25 /pmc/articles/PMC7512831/ /pubmed/33265403 http://dx.doi.org/10.3390/e20050312 Text en © 2018 by the authors. Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (http://creativecommons.org/licenses/by/4.0/). |
| spellingShingle | Article Rass, Stefan König, Sandra Password Security as a Game of Entropies |
| title | Password Security as a Game of Entropies |
| title_full | Password Security as a Game of Entropies |
| title_fullStr | Password Security as a Game of Entropies |
| title_full_unstemmed | Password Security as a Game of Entropies |
| title_short | Password Security as a Game of Entropies |
| title_sort | password security as a game of entropies |
| topic | Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC7512831/ https://www.ncbi.nlm.nih.gov/pubmed/33265403 http://dx.doi.org/10.3390/e20050312 |
| work_keys_str_mv | AT rassstefan passwordsecurityasagameofentropies AT konigsandra passwordsecurityasagameofentropies |