Financial Cryptography and Data Security: FC 2013 Workshops, USEC and WAHC 2013, Okinawa, Japan, April 1, 2013, Revised Selected Papers
John Chuang, Hamilton Nguyen, Charles Wang, Benjamin Johnson, Andrew A. Adams, Michael Brenner, Matthew Smith
Lecture Notes in Computer Science 7862
Springer Berlin Heidelberg
This book constitutes the thoroughly refereed post-conference proceedings of the workshop on Usable Security, USEC 2013, and the third Workshop on Applied Homomorphic Cryptography, WAHC 2013, held in conjunction with the 17th International Conference on Financial Cryptology and Data Security, FC 2013, in Okinawa, Japan.
The 16 revised full papers presented were carefully selected from numerous submissions and cover all aspects of data security. The goal of the USEC workshop was to engage on all aspects of human factors and usability in the context of security. The goal of the WAHC workshop was to bring together professionals, researchers and practitioners in the area of computer security and applied cryptography with an interest in practical applications of homomorphic encryption, secure function evaluation, private information retrieval or searchable encryption to present, discuss, and share the latest findings in the field, and to exchange ideas that address real-world problems with practical solutions using homomorphic cryptography.
The Workshop on Usable Security (USEC 13)
I Think, Therefore I Am: Usability and Security of Authentication
Using Brainwaves . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1
John Chuang, Hamilton Nguyen, Charles Wang, and
Benjamin Johnson
Usability and Security of Gaze-Based Graphical Grid Passwords . . . . . . . 17
Majid Arianezhad, Douglas Stebila, and Behzad Mozaffari
The Impact of Length and Mathematical Operators on the Usability
and Security of System-Assigned One-Time PINs . . . . . . . . . . . . . . . . . . . . 34
Patrick Gage Kelley, Saranga Komanduri, Michelle L. Mazurek,
Richard Shay, Timothy Vidas, Lujo Bauer, Nicolas Christin, and
Lorrie Faith Cranor
QRishing: The Susceptibility of Smartphone Users to QR Code
Phishing Attacks. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 52
Timothy Vidas, Emmanuel Owusu, Shuai Wang, Cheng Zeng,
Lorrie Faith Cranor, and Nicolas Christin
“Comply or Die” Is Dead: Long Live Security-Aware Principal
Agents . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 70
Iacovos Kirlappos, Adam Beautement, and M. Angela Sasse
Information Security as a Credence Good . . . . . . . . . . . . . . . . . . . . . . . . . . . 83
Ping Fan Ke, Kai-Lung Hui, and Wei T. Yue
Sorry, I Don’t Get It: An Analysis of Warning Message Texts . . . . . . . . . . 94
Marian Harbach, Sascha Fahl, Polina Yakovleva, and Matthew Smith
Soulmate or Acquaintance? Visualizing Tie Strength for Trust
Inference. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 112
Tiffany Hyun-Jin Kim, Virgil Gligor, Jorge Guajardo,
Jason Hong, and Adrian Perrig
Awareness about Photos on the Web and How Privacy-Privacy-Tradeoffs
Could Help. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 131
Benjamin Henne and Matthew Smith
Bootstrapping Trust in Online Dating: Social Verification of Online
Dating Profiles . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 149
Gregory Norcie, Emiliano De Cristofaro, and Victoria Bellotti
XII Table of Contents
The Workshop on Applied Homomorphic
Cryptography (WAHC 13)
SHADE: Secure HAmming DistancE Computation from Oblivious
Transfer . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 164
Julien Bringer, Herv´ e Chabanne, and Alain Patey
Garbled Circuits via Structured Encryption . . . . . . . . . . . . . . . . . . . . . . . . . 177
Seny Kamara and Lei Wei
On the Minimal Number of Bootstrappings in Homomorphic Circuits. . . 189
Tancr` ede Lepoint and Pascal Paillier
Privacy Preserving Data Processing with Collaboration of Homomorphic
Cryptosystems. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 201
Shigeo Tsujii, Hiroshi Doi, Ryo Fujita, Masahito Gotaishi,
Yukiyasu Tsunoo, and Takahiko Syouji
Parallel Homomorphic Encryption . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 213
Seny Kamara and Mariana Raykova
Targeting FPGA DSP Slices for a Large Integer Multiplier for Integer
Based FHE . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 226
Ciara Moore, Neil Hanley, John McAllister, M´ aire O’Neill,
Elizabeth O’Sullivan, and Xiaolin Cao
Author Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 239