Joseph Bonneau – Authenticating Humans to Computers:CITP Luncheon Series
What I expect for the next 10 years
Listen to this event
This talk will survey Dr. Bonneau’s latest research, including his recent PhD work, on human-computer authentication. Though one could have given a “why passwords are bad” talk at any point in the past 30 years, a few interesting trends have prompted research: the availability of massive data sets to analyze human-chosen passwords, the increasing deployment of mobile phones capable of acting as a second authentication factor, and projects by two major browser vendors (Mozilla and Google Chrome) to deploy client-side certificates. Still, Dr. Bonneau will argue that passwords will remain with us for the next decade and try to predict some of the ways to cope with this reality.
Joseph Bonneau recently complete his PhD at the University of Cambridge under Ross Anderson. His research focused on authentication on the web, specifically collecting and analyzing large data sets of passwords and other human-chosen secrets and looking at the economic and technical factors which kept passwords dominant. He now works at Google NY and is focused on server authentication. He has previously worked at Cryptography Research Inc. and earned BS and MS degrees from Stanford University. He has researched privacy in social networks and side channel cryptanalysis.