Naturally Rehearsing Passwords

We introduce quantitative usability and security models to guide the design of password management schemes --- systematic strategies to help users create and remember multiple passwords. In the same way that security proofs in cryptography are based on complexity-theoretic assumptions (e.g., hardness of factoring and discrete logarithm), we quantify usability by introducing usability assumptions. In particular, password management relies on assumptions about human memory, e.g., that a user who follows a particular rehearsal schedule will successfully maintain the corresponding memory. These assumptions are informed by research in cognitive science and validated through empirical studies. Given rehearsal requirements and a user's visitation schedule for each account, we use the total number of extra rehearsals that the user would have to do to remember all of his passwords as a measure of the usability of the password scheme. Our usability model leads us to a key observation: password reuse benefits users not only by reducing the number of passwords that the user has to memorize, but more importantly by increasing the natural rehearsal rate for each password. We also present a security model which accounts for the complexity of password management with multiple accounts and associated threats, including online, offline, and plaintext password leak attacks. Observing that current password management schemes are either insecure or unusable, we present Shared Cues--- a new scheme in which the underlying secret is strategically shared across accounts to ensure that most rehearsal requirements are satisfied naturally while simultaneously providing strong security. The construction uses the Chinese Remainder Theorem to achieve these competing goals

On the Security of HB# against a Man-in-the-Middle Attack

At EuroCrypt ’08, Gilbert, Robshaw and Seurin proposed HB# to improve on HB+ in terms of transmission cost and security against man-in-the-middle attacks. Although the security of HB# is formally proven against a certain class of man- in-the-middle adversaries, it is only conjectured for the general case. In this paper, we present a general man-in-the-middle attack against HB# and Random-HB#, which can also be applied to all anterior HB-like protocols, that recovers the shared secret in 225 or 220 authentication rounds for HB# and 234 or 228 for Random-HB#, depending on the parameter set. We further show that the asymptotic complexity of our attack is polynomial under some conditions on the parameter set which are met on one of those proposed in [8]

A role for XRCC2 gene polymorphisms in breast cancer risk and survival

Background The XRCC2 gene is a key mediator in the homologous recombination repair of DNA double strand breaks. It is hypothesised that inherited variants in the XRCC2 gene might also affect susceptibility to, and survival from, breast cancer. Methods The study genotyped 12 XRCC2 tagging single nucleotide polymorphisms (SNPs) in 1131 breast cancer cases and 1148 controls from the Sheffield Breast Cancer Study (SBCS), and examined their associations with breast cancer risk and survival by estimating ORs and HRs, and their corresponding 95% CIs. Positive findings were further investigated in 860 cases and 869 controls from the Utah Breast Cancer Study (UBCS) and jointly analysed together with available published data for breast cancer risk. The survival findings were further confirmed in studies (8074 cases) from the Breast Cancer Association Consortium (BCAC). Results The most significant association with breast cancer risk in the SBCS dataset was the XRCC2 rs3218408 SNP (recessive model p=2.3×10−4, minor allele frequency (MAF)=0.23). This SNP yielded an ORrec of 1.64 (95% CI 1.25 to 2.16) in a two-site analysis of SBCS and UBCS, and a meta-ORrec of 1.33 (95% CI 1.12 to 1.57) when all published data were included. This SNP may mark a rare risk haplotype carried by two in 1000 of the control population. Furthermore, the XRCC2 coding R188H SNP (rs3218536, MAF=0.08) was significantly associated with poor survival, with an increased per-allele HR of 1.58 (95% CI 1.01 to 2.49) in a multivariate analysis. This effect was still evident in a pooled meta-analysis of 8781 breast cancer patients from the BCAC (HR 1.19, 95% CI 1.05 to 1.36; p=0.01). Conclusions These findings suggest that XRCC2 SNPs may influence breast cancer risk and survival

Association of the CHEK2 c.1100delC variant, radiotherapy, and systemic treatment with contralateral breast cancer risk and breast cancer-specific survival

Background Breast cancer (BC) patients with a germline CHEK2 c.1100delC variant have an increased risk of contralateral BC (CBC) and worse BC-specific survival (BCSS) compared to non-carriers. Aim To assessed the associations of CHEK2 c.1100delC, radiotherapy, and systemic treatment with CBC risk and BCSS. Methods Analyses were based on 82,701 women diagnosed with a first primary invasive BC including 963 CHEK2 c.1100delC carriers; median follow-up was 9.1 years. Differential associations with treatment by CHEK2 c.1100delC status were tested by including interaction terms in a multivariable Cox regression model. A multi-state model was used for further insight into the relation between CHEK2 c.1100delC status, treatment, CBC risk and death. Results There was no evidence for differential associations of therapy with CBC risk by CHEK2 c.1100delC status. The strongest association with reduced CBC risk was observed for the combination of chemotherapy and endocrine therapy [HR (95% CI): 0.66 (0.55–0.78)]. No association was observed with radiotherapy. Results from the multi-state model showed shorter BCSS for CHEK2 c.1100delC carriers versus non-carriers also after accounting for CBC occurrence [HR (95% CI): 1.30 (1.09–1.56)]. Conclusion Systemic therapy was associated with reduced CBC risk irrespective of CHEK2 c.1100delC status. Moreover, CHEK2 c.1100delC carriers had shorter BCSS, which appears not to be fully explained by their CBC risk

Breast cancer risk factors and survival by tumor subtype: pooled analyses from the breast cancer association consortium

Background: It is not known whether modifiable lifestyle factors that predict survival after invasive breast cancer differ by subtype.Methods: We analyzed data for 121,435 women diagnosed with breast cancer from 67 studies in the Breast Cancer Association Consortium with 16,890 deaths (8,554 breast cancer specific) over 10 years. Cox regression was used to estimate associations between risk factors and 10-year all-cause mortality and breast cancer-specific mortality overall, by estrogen receptor (ER) status, and by intrinsic-like subtype.Results: There was no evidence of heterogeneous associations between risk factors and mortality by subtype (P-adj > 0.30). The strongest associations were between all-cause mortality and BMI >= 30 versus 18.5-25 kg/m(2) [HR (95% confidence interval (CI), 1.19 (1.06-1.34)]; current versus never smoking [1.37 (1.27-1.47)], high versus low physical activity [0.43 (0.21-0.86)], age >= 30 years versus 0-= 10 years since last full-term birth [1.31 (1.11-1.55)]; ever versus never use of oral contraceptives [0.91 (0.87-0.96)]; ever versus never use of menopausal hormone therapy, including current estrogen-progestin therapy [0.61 (0.54-0.69)]. Similar associations with breast cancer mortality were weaker; for example, 1.11 (1.02-1.21) for current versus never smoking.Conclusions: We confirm associations between modifiable lifestyle factors and 10-year all-cause mortality. There was no strong evidence that associations differed by ER status or intrinsic-like subtype.Impact: Given the large dataset and lack of evidence that associations between modifiable risk factors and 10-year mortality differed by subtype, these associations could be cautiously used in prognostication models to inform patient-centered care.Surgical oncolog

Understanding the genetic complexity of puberty timing across the allele frequency spectrum

Pubertal timing varies considerably and is associated with later health outcomes. We performed multi-ancestry genetic analyses on ~800,000 women, identifying 1,080 signals for age at menarche. Collectively, these explained 11% of trait variance in an independent sample. Women at the top and bottom 1% of polygenic risk exhibited ~11 and ~14-fold higher risks of delayed and precocious puberty, respectively. We identified several genes harboring rare loss-of-function variants in ~200,000 women, including variants in ZNF483, which abolished the impact of polygenic risk. Variant-to-gene mapping approaches and mouse gonadotropin-releasing hormone neuron RNA sequencing implicated 665 genes, including an uncharacterized G-protein-coupled receptor, GPR83, which amplified the signaling of MC3R, a key nutritional sensor. Shared signals with menopause timing at genes involved in DNA damage response suggest that the ovarian reserve might signal centrally to trigger puberty. We also highlight body size-dependent and independent mechanisms that potentially link reproductive timing to later life disease

Physical activity, sedentary time and breast cancer risk: a Mendelian randomisation study

Objectives: Physical inactivity and sedentary behaviour are associated with higher breast cancer risk in observational studies, but ascribing causality is difficult. Mendelian randomisation (MR) assesses causality by simulating randomised trial groups using genotype. We assessed whether lifelong physical activity or sedentary time, assessed using genotype, may be causally associated with breast cancer risk overall, pre/post-menopause, and by case-groups defined by tumour characteristics. Methods: We performed two-sample inverse-variance-weighted MR using individual-level Breast Cancer Association Consortium case-control data from 130 957 European-ancestry women (69 838 invasive cases), and published UK Biobank data (n=91 105–377 234). Genetic instruments were single nucleotide polymorphisms (SNPs) associated in UK Biobank with wrist-worn accelerometer-measured overall physical activity (nsnps=5) or sedentary time (nsnps=6), or accelerometer-measured (nsnps=1) or self-reported (nsnps=5) vigorous physical activity. Results: Greater genetically-predicted overall activity was associated with lower breast cancer overall risk (OR=0.59; 95% confidence interval (CI) 0.42 to 0.83 per-standard deviation (SD;~8 milligravities acceleration)) and for most case-groups. Genetically-predicted vigorous activity was associated with lower risk of pre/perimenopausal breast cancer (OR=0.62; 95% CI 0.45 to 0.87,≥3 vs. 0 self-reported days/week), with consistent estimates for most case-groups. Greater genetically-predicted sedentary time was associated with higher hormone-receptor-negative tumour risk (OR=1.77; 95% CI 1.07 to 2.92 per-SD (~7% time spent sedentary)), with elevated estimates for most case-groups. Results were robust to sensitivity analyses examining pleiotropy (including weighted-median-MR, MR-Egger). Conclusion: Our study provides strong evidence that greater overall physical activity, greater vigorous activity, and lower sedentary time are likely to reduce breast cancer risk. More widespread adoption of active lifestyles may reduce the burden from the most common cancer in women

Acute necrotising pulmonary vasculitis and pulmonary hypertension in a juvenile dog

A five-month-old female Jack Russell terrier was presented for investigation of acute lethargy, anorexia, coughing, respiratory distress and weakness. Examination findings included cyanosis, a grade 3 of 6 systolic heart murmur and prolonged capillary refill time. Radiography and echocardiography revealed severe pulmonary hypertension, cor pulmonale and right-sided heart failure. Indirect measurement of the systolic pulmonary artery pressure estimated pressures over 100 mmHg. Despite treatment the patient died. Postmortem examination did not identify a congenital cardiovascular anomaly. Histopathology confirmed acute necrotising pulmonary arteritis and immunohistochemistry failed to identify any immune complex or complement deposition

Provably Secure Steganography with Imperfect Sampling

The goal of steganography is to pass secret messages by disguising them as innocent-looking covertexts. Real world stegosystems are often broken because they make invalid assumptions about the system’s ability to sample covertexts. We examine whether it is possible to weaken this assumption. By modeling the covertext distribution as a stateful Markov process, we create a sliding scale between real world and provably secure stegosystems. We also show that insufficient knowledge of past states can have catastrophic results

A new human identification protocol and Coppersmith's baby-step giant-step algorithm

We propose a new protocol providing cryptographically secure authentication to unaided humans against passive adversaries. We also propose a new generic passive attack on human identification protocols. The attack is an application of Coppersmith’s baby-step giant-step algorithm on human identification protcols. Under this attack, the achievable security of some of the best candidates for human identification protocols in the literature is further reduced. We show that our protocol preserves similar usability while achieves better security than these protocols. A comprehensive security analysis is provided which suggests parameters guaranteeing desired levels of security