Welcome to the SecHCI Project @ hooklee.com
(formerly supported by Microsoft Research Asia)
References @ the SecHCI Project    

Selected References on SecHCI/HumanAut

  1. Shujun Li and Heung-Yeung (Harry) Shum, Secure Human-Computer Identification against Peeping Attacks (SecHCI): A Survey, unpublished report, 2002, electronic preprint is available at Elsevier's Comuter Science Preprint Server, also available once you successfully login in our Online SecHCI system (of course, to do so you should register an ID firstly)
  2. Shujun Li and Heung-Yeung Shum, SecHCI: Secure Human-Computer Identification (Interface) Systems against Peeping Attacks, unpublished technical report, 30 pages, 2003, a draft is available at Elsevier's Comuter Science Preprint Server
  3. Ross J. Anderson, Why cryptosystems fail,Communications of the ACM, 37(11):32-40, 1994.
  4. Ross J. Anderson, Why cryptosystems fail, In Proc. 1st ACM Conf. Computer and Communication Security (CCS¡¯93), pages 215-227, 1993.
  5. Rachna Dhamija and Adrian Perrig, Deja Vu: A user study using images for authentication,. In Proc. the 9th USENIX Security Symposium, pages 45-58, 2000, available at http://www.usenix.org/events/sec2000/dhamija.html.
  6. searchSecurity.com, Shoulder surfing, available online at http://searchsecurity.techtarget.com/sDefinition/0,,sid14_gci802244,00.html, Feb. 14, 2002.
  7. BBC News, Chinese cameras spying on spouses, available at http://news.bbc.co.uk/hi/english/
    world/asia-pacific/newsid_1885000/1885218.stm    , 21 March, 2002.
  8. Cassi Goodman, An introduction to TEMPEST, available online at http://rr.sans.org/encryption/TEMPEST.php, April 18, 2001.
  9. Joe Loughry and David A. Umphress, Information leakage from optical emanations, ACM Trans. Information and System Security, 5(3):262-289, 2002.
  10. Markus G. Kuhn, Optical time-domain eavesdropping risks of CRT displays, In Proc. 2002 IEEE Sym. Security and Privacy (S&P'02), pages 1-16. IEEE Computer Society, 2002.
  11. Manuel Blum and Nick Hopper, CS 827: Security and cryptography. Please visit http://www-2.cs.cmu.edu/%7Ehopper/cs827-f01, Fall September, 2001.
  12. Tsutomu Matsumoto, Human-computer cryptography: An attempt, In Proc. ACM Conf. on Computer and Communication Security (CCS'96), pages 68¨C75. ACM Press, 1996.
  13. Nicholas J. Hopper and Manuel Blum, A secure human-computer authentication scheme, Technical Report of Carnegie Mellon University, CMU-CS-00-139, available online at http://reports-archive.adm.cs.cmu.edu/anon/2000/abstracts/00-139.html, May, 2000.
  14. Nicholas J. Hopper and Manuel Blum, Secure human identification protocols, In Advances in Cryptology - ASIACRYPT 2001, Lecture Notes in Computer Science, vol. 2248, pages 52-66. Springer-Verlag, Berlin, 2001.
  15. Nick Hopper, Security and complexity aspects of human interactive proofs, presented at the First Workshop on Human Interactive Proofs (HIP), abstract available at http://www.aladdin.cs.cmu.edu/hips/events/abs/hopper_abstract.pdf, 2002.
  16. James A. Haskett, Pass-algorithms: A user validation scheme based on knowledge of secret algorithm, Communications of the ACM, 27(8):777-781, 1984.
  17. Sidney L. Smith, Authentication users by word association, Computers & Security, 6(6):464-470, 1987.
  18. Carl Ellison, Chris Hall, Randy Milbert, and Bruce Schneier, Protecting secret keys with personal entropy, Future Generation Computer Systems, 16(4):311-318, 2000.
  19. G. Miller, The magic number seven plus or minus two: Some limits on your capacity for processing information. Psychological Review, 63(1):81-96, 1956.
  20. David Bensinger, Human memory and the graphical password. Available at http://www.passlogix.com/media/pdfs/bensinger.pdf, 1998.
  21. Rachel Rue, Eighty-six bits of memory magic. Presented at the First Workshop on Human Interactive Proofs (HIP), abstract available at http://www.aladdin.cs.cmu.edu/hips/events/abs/rue_abstract.pdf, 2002.
  22. Ian Jermyn, Alain Mayer, Fabian Monrose, Michael K. Reiter, and Aviel D. Rubin, The design and analysis of graphical passwords, In Proc. 8th USENIX Security Symposium, pages 1-14, 1999, available at http://www.usenix.org/publications/library/proceedings/sec99/jermyn.html.
  23. ID Arts Inc., Passfaces - the art of identification, please visit http://www.idarts.com, 2002.
  24. Amos Fiat and Adi Shamir, How to prove yourself: Practical solutions to identification and signature problems, In Advances in Cryptology - CRYPTO¡¯86, Lecture Notes in Computer Science, vol. 263, pages 186-194. Springer-Verlag, Berlin, 1987.
  25. Aviel D. Rubin, Independent one-time passwords, Computing Systems, 9(1):15-27, 1996.
  26. Kazukumi Kobara and Hideki Imai, Limiting the visible space visual secret sharing schemes and their application to human identification, In Advances in Cryptology - ASIACRYPT¡¯96, Lecture Notes in Computer Science, vol. 1163, pages 185-195. Springer-Verlag, Berlin, 1996.
  27. Martina Angela Sasse, Sacha Brostoff, and Dirk Weirich, Transforming the "weakest link" ¨C a human/computer interaction approach to usable and effective security, BT Technology J., 19(3): 122-131, 2001.
  28. Maria M. King, Rebus passwords, In Proc. the 7th Annual Computer Security Applications Conference (ACSAC'91),
    pages 239-243. IEEE Press, 1991.

    Note: for more details about SecHCI and more references, please read [1,2] or contact Shujun LI.

This site is maintained by Shujun Li, last updated on 24 July, 2004.
Go to See Visit Statistics