Explore a groundbreaking 23-minute conference talk on PASTA (PASsword-based Threshold Authentication), a novel approach to password-based threshold token-based authentication. Delve into the first formalization of this concept, which distributes the role of an identity provider among multiple servers. Learn how PASTA allows a subset of servers to collectively verify passwords and generate tokens while preventing token forgery and offline dictionary attacks. Examine the general framework of PASTA, its implementation using threshold token generation schemes, and its experimental results, including network latency. Gain insights into OAuth, JSON Web Tokens, and the goals and contributions of this innovative authentication method presented by the Association for Computing Machinery (ACM).
PASTA - Password-Based Threshold Authentication
Association for Computing Machinery (ACM) via YouTube
Overview
Syllabus
Introduction
OAuth
JSON Web Token
Offline Dictionary Attack
Goal
Contribution
Protocol
Primitives
Pasta construction
PASTA implementation
Experimental results
Network latency
Summary
Questions
Taught by
Association for Computing Machinery (ACM)