Book ChapterDOI
The Resurrecting Duckling: Security Issues for Ad-hoc Wireless Networks
Frank Stajano,Frank Stajano,Ross Anderson +2 more
- pp 172-194
Reads0
Chats0
TLDR
A resurrecting duckling security policy model is presented, which describes secure transient association of a device with multiple serialised owners over the air in a short range wireless channel.Abstract:
In the near future, many personal electronic devices will be able to communicate with each other over a short range wireless channel. We investigate the principal security issues for such an environment. Our discussion is based on the concrete example of a thermometer that makes its readings available to other nodes over the air. Some lessons learned from this example appear to be quite general to ad-hoc networks, and rather different from what we have come to expect in more conventional systems: denial of service, the goals of authentication, and the problems of naming all need re-examination. We present the resurrecting duckling security policy model, which describes secure transient association of a device with multiple serialised owners.read more
Citations
More filters
Journal ArticleDOI
TRICKS—Time TRIggered Covert Key Sharing for Controller Area Networks
TL;DR: This work exploits both delays and the non-destructive arbitration of CAN to achieve a secure key exchange and bootstrap secret keys by means of the guessing-resilient protocols, such as encrypted-key-exchange (EKE) and simple password exponential key exchange (SPEKE).
Efficient self-organization of large wireless sensor networks
TL;DR: A novel approach for message-efficient clustering, in which nodes allocate local growth budgets to neighbors and a new methodology for designing initiator timers that provides a probabilistic guarantee that initiators will not interfere with each other is presented.
Book ChapterDOI
Smart Devices and Software Agents: The Basics of Good Behaviour
TL;DR: In this paper, security requirements for software agents and smart devices are derived by working from typical requirements for existing systems, exploring the changes that are envisaged as systems become more highly distributed, then identifying what these imply for a device or service in a pervasive environment.
Book ChapterDOI
Practical schemes for privacy and security enhanced RFID
Jaap-Henk Hoepman,Rieks Joosten +1 more
TL;DR: In this article, the authors propose a mutual authentication protocol between a tag and a reader that achieves a reasonable level of privacy, using only symmetric key cryptography on the tag, while not requiring a costly key-search algorithm at the reader side.
Proceedings ArticleDOI
WLC02-4: A Secure SIP-based Instant Messaging and Presence Framework for Ad-Hoc Networks
TL;DR: A novel design that extends SIP for use in ad-hoc networks is presented, which allows existing applications to discover users within an ad-Hoc network, make use of presence information, and set up VoIP and instant messaging sessions.
References
More filters
Journal ArticleDOI
New Directions in Cryptography
TL;DR: This paper suggests ways to solve currently open problems in cryptography, and discusses how the theories of communication and computation are beginning to provide the tools to solve cryptographic problems of long standing.
Integrity Considerations for Secure Computer Systems
TL;DR: The author identifies the integrity problems posed by a secure military computer utility and integrity policies addressing these problems are developed and their effectiveness evaluated.
Tamper resistance: a cautionary note
Ross Anderson,Markus G. Kuhn +1 more
TL;DR: It is concluded that trusting tamper resistance is problematic; smartcards are broken routinely, and even a device that was described by a government signals agency as 'the most secure processor generally available' turns out to be vulnerable.
Book ChapterDOI
Low Cost Attacks on Tamper Resistant Devices
Ross Anderson,Markus G. Kuhn +1 more
TL;DR: A number of attacks that can be mounted by opponents with much shallower pockets, such as smart-cards, are described.
Journal Article
Low cost attacks on tamper resistant devices
Ross Anderson,Markus G. Kuhn +1 more
TL;DR: In this article, the authors describe a number of attacks that can be mounted by opponents with much shallower pockets, three of them involve special (but low cost) equipment: differential fault analysis, chip rewriting, and memory remanence.