Other Directory Sites: SeekWonder | Directory Owners Forum
The following archive was created by hippie-mail 7.98617-22 on Sat Apr 10 1999 - 01:15:21
mgraffam@idsi.net
Mon, 12 Oct 1998 14:29:33 -0400 (EDT)
On Mon, 12 Oct 1998, Anonymous wrote:
> It's not easy to get 128 bits of entropy out of a choice system. If you
> simply present the user a set of, say, 16 faces and let him choose the
> one he's memorized, you only get four bits. So you'd have to repeat this
> process 32 times, which is a large number of faces to memorize.
Yeah, I've thought of this problem.. I'm not so sure that memorizing
32 faces will be a big deal. We all recognize hundreds of faces, and
most people recognize a person even if they only met them once before.
What I'm concerned with is something a little different .. choosing 32
faces would be cumbersome just from a UI point of view, I'd think.
So we'd have to do things like use a larger database of pictures.. which
gets harder to navigate through.
> Also keep in mind that you can't let the user choose which face he'll
> memorize, it has to be assigned randomly from among all faces. Otherwise
> his choice might be guessed.
Yeah .. people would probably choose predictable faces. I can imagine
attacks based on men usually choosing women's faces, or people choosing
pictures of people in their own race, and age group, etc.
But random assigned faces would be where its at anyhow.. one of the
nice things about pictures and faces is that people remember them better
than a random string of characters.
Michael J. Graffam (mgraffam@idsi.net)
http://www.mhv.net/~mgraffam -- Philosophy, Religion, Computers, Crypto, etc
"They that can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety." -- Ben Franklin, ~1784
The following archive was created by hippie-mail 7.98617-22 on Sat Apr 10 1999 - 01:15:21