Researchers propose stories for password retention


Today's Best Tech Deals

Picked by PCWorld's Editors

Top Deals On Great Products

Picked by Techconnect's Editors

Once upon a time some Carnegie Mellon University researchers came up with a scheme to use stories and pictures to help users live happily ever after by creating and remembering dozens of passwords and avoiding use of the exact same passwords for multiple sites.

The trick, though, is that users need to repeat and practice those one-sentence stories a lot at the start so that the tales and related images stick in their heads. The photos serve as mnemonic devices to trigger memories of the stories and words that can be used to secure multiple online accounts.

jeremiah blocki cmu

Jeremiah Blocki

”If you can memorize nine stories, our system can generate distinct passwords for 126 accounts,” says Jeremiah Blocki, a Ph.D. student in Carnegie Mellon’s Computer Science Department, in a statement regarding these “naturally rehearsing passwords.”

Blocki has been busy on the password front of late, also taking part in creation of a password protection scheme dubbed GOTCHA that makes use of inkblots.

He presented a paper on the research, which is funded by the National Science Foundation and the Air Force Office of Scientific Research, at a cryptology conference in India last week. He and fellow researchers Manuel Blum, professor of computer science, and Anupam Datta, associate professor of computer science and electrical and computer engineering, are building a mobile app to put their system into place.

According to CMU, the system involves users selecting photos of people and a scene and then the computer picking out photos of an object and an action. Equipped with the photos, the user then constructs a story “Say Miley Cyrus wrecks TIME magazine’s Person of the Year contest.” The system then involves grabbing letters from those words and combining them into passwords that users can recall with prompting via the images.

One challenge the researchers have run into is websites that require certain characters, like numbers, or capital letters in their passwords.

This story, "Researchers propose stories for password retention" was originally published by Network World.

Note: When you purchase something after clicking links in our articles, we may earn a small commission. Read our affiliate link policy for more details.
Shop Tech Products at Amazon