国际学术周
Global Academic Week

讲座/报告GAWS20205 密码何时失效?用户认证研究的挑战与机遇 When Will Passwords Die? Research challenges and opportunities in user authentication

发表单位:    发表日期: 2020-07-10   访问量:   


国际学术周讲座ID:GAWS20205


主办单位/学院:计算机学院


座/报告名称:密码何时失效?用户认证研究的挑战与机遇 When Will Passwords Die? Research challenges and opportunities in user authentication


讲座报告时间安排表:7/22,下午4点


直播间席位数上限:200人


授课平台:腾讯会议


座/报告内容简介:

密码自古以来就与我们同在,在数字计算机上的使用已经持续了半个多世纪。过去许多专家多次预测密码会消失,然而今天我们还是生活在一个充满了密码的世界里。在这场演讲中,演主讲者将分享他对网络安全研究领域的挑战和机遇。他将与听众讨论为什么密码没有失效,以及为什么其他身份验证因素和多因素身份验证还没有让密码过时。超越文本密码,涵盖更多基于知识的用户身份验证方法,如图形密码、高级威胁、恶意观察者以及如密码策略和验证码的其他相关安全机制。同时他将介绍他过去和现在在这方面的一些研究工作,并呼吁对用户认证中一些较少研究的子领域进行更多的研究。

Passwords have been with us since ancient times, and their use on digital computers have lasted for over half a century. In the past many experts repeatedly predicted that passwords would soon die. However, all such predictions have been proven wrong and today we are still living in a world full of passwords. In this talk the speaker will share his thoughts on challenges and opportunities in this important area of cyber security research. He will discuss with the audience on why passwords haven't died and why other authentication factors and multi-factor authentication haven't managed to make passwords obsolete yet. He will go beyond textual passwords to cover more knowledge-based user authentication methods such as graphical passwords, advanced threats especially side channel attacks and malicious observers such as shoulder surfers and keyloggers, and other related security mechanisms such as password policies and CAPTCHA. He will introduce some of his past and ongoing research work in this area, and call for more research on some less investigated sub-areas in user authentication.


主讲教师及简介:

李树钧, 英国肯特大学,教授.Shujun Li is a Fellow of the BCS, a Senior Member of the IEEE (Computer Society, Signal Processing Society, Communications Society, Circuits and Systems Society, Cybernetics, Man and Systems Society), a Professional Member of the ACM (SIGSAC, SIGMM, SIGCHI, SIGCOMM, SIGCAS) and a Global Member of the Internet Society (ISOC). From 2009-2011 he was a member of MPEG (ISO/IEC JCT 1/SC 29/WG 11), and in 2012 was awarded an ISO/IEC Certificate of Appreciation for being the lead editor of ISO/IEC 23001-4:2011 "Information technology – MPEG systems technologies – Part 4: Codec configuration representation", the 2nd edition of the MPEG RVC standard.


讲座联系人:张樊景, 计算机学院。