Book ChapterDOI
The Resurrecting Duckling: Security Issues for Ad-hoc Wireless Networks
Frank Stajano,Frank Stajano,Ross Anderson +2 more
- pp 172-194
Reads0
Chats0
TLDR
A resurrecting duckling security policy model is presented, which describes secure transient association of a device with multiple serialised owners over the air in a short range wireless channel.Abstract:
In the near future, many personal electronic devices will be able to communicate with each other over a short range wireless channel. We investigate the principal security issues for such an environment. Our discussion is based on the concrete example of a thermometer that makes its readings available to other nodes over the air. Some lessons learned from this example appear to be quite general to ad-hoc networks, and rather different from what we have come to expect in more conventional systems: denial of service, the goals of authentication, and the problems of naming all need re-examination. We present the resurrecting duckling security policy model, which describes secure transient association of a device with multiple serialised owners.read more
Citations
More filters
Proceedings Article
Decentralized Jini Security
Pasi Eronen,Pekka Nikander +1 more
TL;DR: This paper describes the experimental implementation that separates the Java 2 access permissions of Jini clients, service proxies, and services, while allowing natural delegation of Java 2 permissions between Jini enabled devices, and integrates seamlessly to the underlying Java 2 security.
Proceedings ArticleDOI
How users associate wireless devices
Ming Ki Chong,Hans Gellersen +1 more
TL;DR: The findings indicate that there is no single most spontaneous action; instead five prominent categories of user-defined actions were found.
Proceedings ArticleDOI
Mobile user location-specific encryption (MULE): using your office as your password
Ahren Studer,Adrian Perrig +1 more
TL;DR: This work examines how to provide an unobtrusive system to securely encrypt files on laptops and study two settings: home use where zero management overhead is needed and a corporate setting where staff management of a whitelist of acceptable devices allows a higher level of security.
Journal ArticleDOI
SPATE: Small-Group PKI-Less Authenticated Trust Establishment
Yue-Hsun Lin,Ahren Studer,Yao-Hsin Chen,Hsu-Chun Hsiao,Li-Hsiang Kuo,Jason Lee,Jonathan M. McCune,King-Hang Wang,Maxwell Krohn,Phen-Lan Lin,Adrian Perrig,Hung-Min Sun,Bo-Yin Yang +12 more
TL;DR: The implementation of SPATE on Nokia N70 smartphones allows users to establish trust in small groups of up to eight users in less than one minute, and the example SPATE applications provide increased security with little overhead noticeable to users once keys are established.
Journal ArticleDOI
On the security of consumer wearable devices in the Internet of Things.
TL;DR: This paper explores how a device ICMetric can be generated by using the accelerometer and gyroscope sensor and results prove that the scheme offers high levels of security without compromising on resource demands.
References
More filters
Journal ArticleDOI
New Directions in Cryptography
TL;DR: This paper suggests ways to solve currently open problems in cryptography, and discusses how the theories of communication and computation are beginning to provide the tools to solve cryptographic problems of long standing.
Integrity Considerations for Secure Computer Systems
TL;DR: The author identifies the integrity problems posed by a secure military computer utility and integrity policies addressing these problems are developed and their effectiveness evaluated.
Tamper resistance: a cautionary note
Ross Anderson,Markus G. Kuhn +1 more
TL;DR: It is concluded that trusting tamper resistance is problematic; smartcards are broken routinely, and even a device that was described by a government signals agency as 'the most secure processor generally available' turns out to be vulnerable.
Book ChapterDOI
Low Cost Attacks on Tamper Resistant Devices
Ross Anderson,Markus G. Kuhn +1 more
TL;DR: A number of attacks that can be mounted by opponents with much shallower pockets, such as smart-cards, are described.
Journal Article
Low cost attacks on tamper resistant devices
Ross Anderson,Markus G. Kuhn +1 more
TL;DR: In this article, the authors describe a number of attacks that can be mounted by opponents with much shallower pockets, three of them involve special (but low cost) equipment: differential fault analysis, chip rewriting, and memory remanence.