Presentation is loading. Please wait.

Presentation is loading. Please wait.

Usable Bootstrapping of Secure Ad Hoc Communication Ersin Uzun PARC 1.

Published byCarter Hart Modified over 10 years ago

Similar presentations

Presentation on theme: "Usable Bootstrapping of Secure Ad Hoc Communication Ersin Uzun PARC 1."— Presentation transcript:

1 Usable Bootstrapping of Secure Ad Hoc Communication Ersin Uzun PARC 1

2 Outline What is first connect (aka device pairing or bootstrapping secure communication)? Why is it hard to secure? Why usability is important? Methods & standards, and the current state. 2

3 Secure pairing of personal devices Pairing: bootstrapping the association and the security contexts for subsequent communication. E.g., Pairing a bluetooth phone and a headset Enrolling a phone or PC into a home WLAN 3

4 4 What devices? Desktops Laptops PDAs Phones MP3 Players Wireless Headsets Cameras Device (e.g., TV) Remotes Access Points FAX-s/Copiers/Printers Sensors? RFIDs? Pacemakers? Dialysis devices?

5 Setting up a security association (authenticated secure communication) where: no prior context exists (no PKI, common TTPs, key servers, shared secrets, etc.) Ordinary non-expert users Cost-sensitive commodity devices Problem Ohh! I cannot even pair my socks! 5

6 Wireless channel: susceptible to eavesdropping Lets use K as the secret key Alice Bob OK 6 Encrypted Communication using K

7 Uups! Lets use K as the secret key Alice Bob OK Eve can decrypt the communication! Eve can impersonate either party! 7 Communication

8 Also open to active attacks… PK E1 Eve PK A Alice Bob PK E2 PK B Man in the middle attack over Diffie-Hellman key agreement 8

9 Mechanisms should be intuitive...and work on various devices! SSID? WPA? Passcode! Which E61? 9

10 … and secure 10

11 Security and usability coexistence Better usability = insecure? More security = harder to use? 11

12 Goal: Secure, intuitive, inexpensive methods for secure communication bootstrapping One well-studied approach: using two communication channels Assumption: Peer devices are physically identifiable Two channels: 1. Wireless channel 2. OOB channel: Human perceivable or location-limited Other approaches Based on physical properties of wireless signals Distance-bounding Environmental sensing 12

13 Some examples (not a complete list!) Various OOB channels Cables Resurrecting Duckling, [Stanajo, et al. IWSP99] Camera, barcodes/LEDs Seeing-is-believing, [McCune, et al. S&P05] SIB revisited, [Saxena, et al. S&P06] GAnGS, [Chen, et al. Mobicom08] SPATE, [Lin, et al. Mobisys09] Speakers and microphones Loud And Clear, [Goodrich, et al. ICDCS06) HAPADEP, [Soriente, et al. ISC08) Other hardware Accelerometers Shake well before use, [Mayrhofer, et al. Pervasive07] Ultrasound, laser transceivers and many others.... Standardization activities Wi-fi protected setup Bluetooth secure pairing Wireless USB association models Location limited channels IrDA: Talking to Strangers, [Balfanz, et al. NDSS02] NFC: Bluetooth specs draft Distance-bounding (e.g., Capkun et al. TMC10), Env. sensing (Krumm et al. Ubicomp07) 13

14 Where are we now? Proposals are not adapted by manufacturers I still cannot securely pair a Bluetooth handset and a phone in the presence of an active attacker My mother still cannot secure her WLAN at home without my help Emerging scenarios are even more challenging Group pairing Home sensor networks Pairing with personal RFID tags 14

15 Thanks! 15

Download ppt "Usable Bootstrapping of Secure Ad Hoc Communication Ersin Uzun PARC 1."

Similar presentations

Wi-Fi Technology.

Wi-Fi Technology.
Wi-Fi Technology ARTI J JANSARI M.E.(C.S.E.):-1ST (E.C.)

Wi-Fi Technology ARTI J JANSARI M.E.(C.S.E.):-1ST (E.C.)
1 Security for Ad Hoc Network Routing. 2 Ad Hoc Networks Properties Mobile Wireless communication Medium to high bandwidth High variability of connection.

1 Security for Ad Hoc Network Routing. 2 Ad Hoc Networks Properties Mobile Wireless communication Medium to high bandwidth High variability of connection.
1 Key Exchange Solutions Diffie-Hellman Protocol Needham Schroeder Protocol X.509 Certification.

1 Key Exchange Solutions Diffie-Hellman Protocol Needham Schroeder Protocol X.509 Certification.
Trusted Data Sharing over Untrusted Cloud Storage Provider Gansen Zhao, Chunming Rong, Jin Li, Feng Zhang, and Yong Tang Cloud Computing Technology and.

Trusted Data Sharing over Untrusted Cloud Storage Provider Gansen Zhao, Chunming Rong, Jin Li, Feng Zhang, and Yong Tang Cloud Computing Technology and.
Gold Country Computer Learning Center March 2006 Is Wireless for You? Roger Thornburn.

Gold Country Computer Learning Center March 2006 Is Wireless for You? Roger Thornburn.
Chapter 7: Physical & Environmental Security

Chapter 7: Physical & Environmental Security
-Priyanka, Madhurima. IDEA of WIRELESS LEASH Your devices go…. Wherever you go!!

-Priyanka, Madhurima. IDEA of WIRELESS LEASH Your devices go…. Wherever you go!!
Mobile Devices and Wireless Tracy Jackson Liz Nenni Matt Hinson Chris Eiben.

Mobile Devices and Wireless Tracy Jackson Liz Nenni Matt Hinson Chris Eiben.
Background Information. 2 Scope: Computer Hardware  Tablets, Laptops, Embedded Systems  Desktops, Servers, Supercomputers  Peripherals and Accessories:

Background Information. 2 Scope: Computer Hardware  Tablets, Laptops, Embedded Systems  Desktops, Servers, Supercomputers  Peripherals and Accessories:
By Md Emran Mazumder Ottawa University Student no: 6282845.

By Md Emran Mazumder Ottawa University Student no:
Doc.: IEEE 802.11-06/655r0 Submission May 2006 Slide 1Scott Lee, et al., Samsung Electronics Use Cases of WLAN for AV Streams Scott Seongwook Lee, Huai-Rong.

Doc.: IEEE /655r0 Submission May 2006 Slide 1Scott Lee, et al., Samsung Electronics Use Cases of WLAN for AV Streams Scott Seongwook Lee, Huai-Rong.
Daniel Bichler 2005-10-12 Page 1 Security and Privacy in Pervasive Computing Environments PhD project –Infineon AIM SC D TD, Munich –Started on 2005-05-01.

Daniel Bichler Page 1 Security and Privacy in Pervasive Computing Environments PhD project –Infineon AIM SC D TD, Munich –Started on
Off-the-Record Communication, or, Why Not To Use PGP

Off-the-Record Communication, or, Why Not To Use PGP
ECE454/CS594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2011.

ECE454/CS594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2011.
NFC Devices: Security and Privacy

NFC Devices: Security and Privacy
Unit 1 Understanding computer systems: How ICT can be used to meet business needs OCR Cambridge Nationals in ICT Level 1/2 © Hodder & Stoughton 2013 Connecting.

Unit 1 Understanding computer systems: How ICT can be used to meet business needs OCR Cambridge Nationals in ICT Level 1/2 © Hodder & Stoughton 2013 Connecting.
Tight Bounds for Unconditional Authentication Protocols in the Moni Naor Gil Segev Adam Smith Weizmann Institute of Science Israel Modeland Shared KeyManual.

Tight Bounds for Unconditional Authentication Protocols in the Moni Naor Gil Segev Adam Smith Weizmann Institute of Science Israel Modeland Shared KeyManual.
Cynthia Kuo, Mark Luk, Rohit Negi, Adrian Perrig Carnegie Mellon University Message-In-a-Bottle: User-Friendly and Secure Cryptographic Key Deployment.

Cynthia Kuo, Mark Luk, Rohit Negi, Adrian Perrig Carnegie Mellon University Message-In-a-Bottle: User-Friendly and Secure Cryptographic Key Deployment.
Bluetooth Technology. What is Bluetooth? Bluetooth is a short- range communications technology that allows devices to communicate with each other without.

Bluetooth Technology. What is Bluetooth? Bluetooth is a short- range communications technology that allows devices to communicate with each other without.

Similar presentations

Ads by Google