May 14

Neuroscience Meets Cryptography

Our article on our “cortical cyptography” project is out in the Communications of the ACM:

The focus is on how implicit knowledge of a password provides resistance to coercion attacks were you might be asked/forced to give up your password. While true, we frequently see people raising concerns that our method is too slow/cumbersome in its current implementation for regular use — also true! Probably the useful practical application would be things like replacing the current system of personal questions secure websites ask you for when you need to reset your password. If we were really to build an app for that, I think we’d still need to improve the learning rate (shorten time) and the knowledge detection methods.

Fortunately, doing those things requires learning more about how the brain system that does this kind of learning works — which is what we do here every day.

We may have discovered a way to use this method to do secure transmission of arbitrary messages as well. However, to get a reasonably secure amount of entropy, it might be far too cumbersome for actual practical use. I like the idea conceptually, though, so maybe we’ll run a low-entropy proof of concept anyway just because I think it’s cool.

Leave a Reply