GAnGS: gather, authenticate 'n group securely

Authors:
Chia-Hsin Owen Chen;Chung-Wei Chen;Cynthia Kuo;Yan-Hao Lai;Jonathan M. McCune;Ahren Studer;Adrian Perrig;Bo-Yin Yang;Tzong-Chen Wu
Affiliations:
Academia Sinica, Nankang, Taiwan Roc;National Tsing Hua University, Hsinchu, Taiwan Roc;Carnegie Mellon University, Pittsburgh, PA, USA;National Chung Hsing University, Taichung, Taiwan Roc;Carnegie Mellon University, Pittsburgh, PA, USA;Carnegie Mellon University, Pittsburgh, PA, USA;Carnegie Mellon University, Pittsburgh, PA, USA;Academia Sinica, Nankang, Taiwan Roc;National Taiwan University of Science and Technology, Taipei, Taiwan Roc
Venue:
Proceedings of the 14th ACM international conference on Mobile computing and networking
Year:
2008

Citing 20
Cited 22

Simple and fault-tolerant key agreement for dynamic collaborative groups

Proceedings of the 7th ACM conference on Computer and communications security
Key Agreement in Dynamic Peer Groups

IEEE Transactions on Parallel and Distributed Systems
The Sybil Attack

IPTPS '01 Revised Papers from the First International Workshop on Peer-to-Peer Systems
A Secure Audio Teleconference System

CRYPTO '88 Proceedings of the 8th Annual International Cryptology Conference on Advances in Cryptology
Authenticated Multi-Party Key Agreement

ASIACRYPT '96 Proceedings of the International Conference on the Theory and Applications of Cryptology and Information Security: Advances in Cryptology
Efficient and Secure Conference-Key Distribution

Proceedings of the International Workshop on Security Protocols
Smart-Its Friends: A Technique for Users to Easily Establish Connections between Smart Artefacts

UbiComp '01 Proceedings of the 3rd international conference on Ubiquitous Computing
The Resurrecting Duckling: Security Issues for Ad-hoc Wireless Networks

Proceedings of the 7th International Workshop on Security Protocols
Public-key support for group collaboration

ACM Transactions on Information and System Security (TISSEC)
Seeing-Is-Believing: Using Camera Phones for Human-Verifiable Authentication

SP '05 Proceedings of the 2005 IEEE Symposium on Security and Privacy
Shake them up!: a movement-based pairing protocol for CPU-constrained devices

Proceedings of the 3rd international conference on Mobile systems, applications, and services
Loud and Clear: Human-Verifiable Authentication Based on Audio

ICDCS '06 Proceedings of the 26th IEEE International Conference on Distributed Computing Systems
Mind your manners: socially appropriate wireless key establishment for groups

WiSec '08 Proceedings of the first ACM conference on Wireless network security
Reduction of end user errors in the design of scalable, secure communication

Reduction of end user errors in the design of scalable, secure communication
Usability analysis of secure pairing methods

FC'07/USEC'07 Proceedings of the 11th International Conference on Financial cryptography and 1st International conference on Usable Security
Secure communications over insecure channels based on short authenticated strings

CRYPTO'05 Proceedings of the 25th annual international conference on Advances in Cryptology
Password-Based group key exchange in a constant number of rounds

PKC'06 Proceedings of the 9th international conference on Theory and Practice of Public-Key Cryptography
Efficient mutual data authentication using manually authenticated strings

CANS'06 Proceedings of the 5th international conference on Cryptology and Network Security
Ad hoc security associations for groups

ESAS'06 Proceedings of the Third European conference on Security and Privacy in Ad-Hoc and Sensor Networks
Key agreement in ad hoc networks

Computer Communications

SPATE: small-group PKI-less authenticated trust establishment

Proceedings of the 7th international conference on Mobile systems, applications, and services
PROTECT: proximity-based trust-advisor using encounters for mobile societies

Proceedings of the 6th International Wireless Communications and Mobile Computing Conference
Group device pairing based secure sensor association and key management for body area networks

INFOCOM'10 Proceedings of the 29th conference on Information communications
Groupthink: usability of secure group association for wireless devices

Proceedings of the 12th ACM international conference on Ubiquitous computing
Proximity-based trust-advisor using encounters

ACM SIGMOBILE Mobile Computing and Communications Review
Privacy-preserving activity scheduling on mobile devices

Proceedings of the first ACM conference on Data and application security and privacy
Group distance bounding protocols

TRUST'11 Proceedings of the 4th international conference on Trust and trustworthy computing
Meetings through the cloud: Privacy-preserving scheduling on mobile devices

Journal of Systems and Software
Privacy in mobile computing for location-sharing-based services

PETS'11 Proceedings of the 11th international conference on Privacy enhancing technologies
Body sensor network key distribution using human interactive channels

Proceedings of the 4th International Symposium on Applied Sciences in Biomedical and Communication Technologies
Fast track article: Looking ahead in pervasive computing: Challenges and opportunities in the era of cyber-physical convergence

Pervasive and Mobile Computing
Fast track article: Looking ahead in pervasive computing: Challenges and opportunities in the era of cyber-physical convergence

Pervasive and Mobile Computing
Towards a theory of trust in networks of humans and computers

SP'11 Proceedings of the 19th international conference on Security Protocols
Discovering trustworthy social spaces

Proceedings of the Third International Workshop on Sensing Applications on Mobile Phones
Secure ad hoc trust initialization and key management in wireless body area networks

ACM Transactions on Sensor Networks (TOSN)
Social networks for importing and exporting security

Proceedings of the 17th Monterey conference on Large-Scale Complex IT Systems: development, operation and management
Chorus: scalable in-band trust establishment for multiple constrained devices over the insecure wireless channel

Proceedings of the sixth ACM conference on Security and privacy in wireless and mobile networks
How groups of users associate wireless devices

Proceedings of the SIGCHI Conference on Human Factors in Computing Systems
SafeSlinger: easy-to-use and secure public-key exchange

Proceedings of the 19th annual international conference on Mobile computing & networking
Privacy of Community Pseudonyms in Wireless Peer-to-Peer Networks

Mobile Networks and Applications
Go anywhere: user-verifiable authentication over distance-free channel for mobile devices

Personal and Ubiquitous Computing
Secure interaction with piggybacked key-exchange

Pervasive and Mobile Computing

Quantified Score

Hi-index	0.00

Visualization

Abstract

Establishing secure communication among a group of physically collocated people is a challenge. This problem can be reduced to establishing authentic public keys among all the participants - these public keys then serve to establish a shared secret symmetric key for encryption and authentication of messages. Unfortunately, in most real-world settings, public key infrastructures (PKI) are uncommon and distributing a secret in a public space is difficult. Thus, it is a challenge to exchange authentic public keys in a scalable, secure, and easy to use fashion. In this paper, we propose GAnGS, a protocol for the secure exchange of authenticated information among a group of people. In contrast to prior work, GAnGS resists Group-in-the-Middle and Sybil attacks by malicious insiders, as well as infiltration attacks by malicious bystanders. GAnGS is designed to be robust to user errors, such as miscounting the number of participants or incorrectly comparing checksums. We have implemented and evaluated GAnGS on Nokia N70 phones. The GAnGS system is viable and achieves a good balance between scalability, security, and ease of use.