University of Oulu

Hekkala, J.; Nikula, S.; Latvala, O. and Halunen, K. (2021). Involving Humans in the Cryptographic Loop: Introduction and Threat Analysis of EEVEHAC. In Proceedings of the 18th International Conference on Security and Cryptography - SECRYPT, ISBN 978-989-758-524-1; ISSN 2184-7711, pages 659-664. DOI: 10.5220/0010517806590664

Involving humans in the cryptographic loop: introduction and threat analysis of EEVEHAC

Saved in:
Author: Hekkala, Julius1; Nikula, Sara1; Latvala, Outi-Marja1;
Organizations: 1VTT Technical Research Centre of Finland, Kaitoväylä 1, Oulu, Finland
2University of Oulu, Faculty of Information Technology and Electrical Engineering, Oulu, Finland
3National Defence University, Department of Military Technology, Helsinki, Finland
Format: article
Version: published version
Access: open
Online Access: PDF Full Text (PDF, 2.2 MB)
Persistent link:
Language: English
Published: SciTePress, 2021
Publish Date: 2021-10-21


Our digital lives rely on modern cryptography that is based on complicated mathematics average human users cannot follow. Previous attempts at adding the human user into the cryptographic loop include things like Human Authenticated Key Exchange and visualizable cryptography. This paper presents our proof-of-concept implementation of these ideas as a system called EEVEHAC. It utilizes human capabilities to achieve an endto- end encrypted channel between a user and a server that is authenticated with human senses and can be used through untrusted environments. The security of this complete system is analyzed. We find that the combination of the two different systems into EEVEHAC on a theoretical level retains the security of the individual systems. We also identify the weaknesses of this implementation and discuss options for overcoming them.

see all

ISSN: 2184-7711
ISSN-L: 2184-7711
ISBN: 978-989-758-524-1
ISBN Print: 978-989-758-524-1
Pages: 659 - 664
DOI: 10.5220/0010517806590664
Host publication: Proceedings of the 18th International Conference on Security and Cryptography
Conference: International Conference on Security and Cryptography
Type of Publication: A4 Article in conference proceedings
Field of Science: 113 Computer and information sciences
Copyright information: © 2021 by SCITEPRESS – Science and Technology Publications, Lda. All rights reserved. Published under a Creative Commons CC-BY-NC-ND license.