SPATE: small-group PKI-less authenticated trust establishment

Authors:
Yue-Hsun Lin;Ahren Studer;Hsu-Chin Hsiao;Jonathan M. McCune;King-Hang Wang;Maxwell Krohn;Phen-Lan Lin;Adrian Perrig;Hung-Min Sun;Bo-Yin Yang
Affiliations:
National Tsing Hua University, Hsinchu, Taiwan Roc;Carnegie Mellon University, Pittsburgh, PA, USA;Carnegie Mellon University, Pittsburgh, PA, USA;Carnegie Mellon University, Pittsburgh, PA, USA;National Tsing Hua University, Hsinchu, Taiwan Roc;Carnegie Mellon University, Pittsburgh, PA, USA;Providence University, Taichung, Taiwan Roc;Carnegie Mellon University, Pittsburgh, PA, USA;National Tsing Hua University, Hsinchu, Taiwan Roc;Academia Sinica, Taipei, Taiwan Roc
Venue:
Proceedings of the 7th international conference on Mobile systems, applications, and services
Year:
2009

Citing 23
Cited 16

Simple and fault-tolerant key agreement for dynamic collaborative groups

Proceedings of the 7th ACM conference on Computer and communications security
Key Agreement in Dynamic Peer Groups

IEEE Transactions on Parallel and Distributed Systems
Usability and privacy: a study of Kazaa P2P file-sharing

Proceedings of the SIGCHI Conference on Human Factors in Computing Systems
A Secure Audio Teleconference System

CRYPTO '88 Proceedings of the 8th Annual International Cryptology Conference on Advances in Cryptology
Authenticated Multi-Party Key Agreement

ASIACRYPT '96 Proceedings of the International Conference on the Theory and Applications of Cryptology and Information Security: Advances in Cryptology
Efficient and Secure Conference-Key Distribution

Proceedings of the International Workshop on Security Protocols
Smart-Its Friends: A Technique for Users to Easily Establish Connections between Smart Artefacts

UbiComp '01 Proceedings of the 3rd international conference on Ubiquitous Computing
The Resurrecting Duckling: Security Issues for Ad-hoc Wireless Networks

Proceedings of the 7th International Workshop on Security Protocols
Mobility helps security in ad hoc networks

Proceedings of the 4th ACM international symposium on Mobile ad hoc networking & computing
Specifying security for CSCW systems

CSFW '95 Proceedings of the 8th IEEE workshop on Computer Security Foundations
Public-key support for group collaboration

ACM Transactions on Information and System Security (TISSEC)
Using visual tags to bypass Bluetooth device discovery

ACM SIGMOBILE Mobile Computing and Communications Review
Seeing-Is-Believing: Using Camera Phones for Human-Verifiable Authentication

SP '05 Proceedings of the 2005 IEEE Symposium on Security and Privacy
Shake them up!: a movement-based pairing protocol for CPU-constrained devices

Proceedings of the 3rd international conference on Mobile systems, applications, and services
Loud and Clear: Human-Verifiable Authentication Based on Audio

ICDCS '06 Proceedings of the 26th IEEE International Conference on Distributed Computing Systems
Persistent personal names for globally connected mobile devices

OSDI '06 Proceedings of the 7th USENIX Symposium on Operating Systems Design and Implementation - Volume 7
GAnGS: gather, authenticate 'n group securely

Proceedings of the 14th ACM international conference on Mobile computing and networking
Reduction of end user errors in the design of scalable, secure communication

Reduction of end user errors in the design of scalable, secure communication
Secure communications over insecure channels based on short authenticated strings

CRYPTO'05 Proceedings of the 25th annual international conference on Advances in Cryptology
Password-Based group key exchange in a constant number of rounds

PKC'06 Proceedings of the 9th international conference on Theory and Practice of Public-Key Cryptography
Efficient mutual data authentication using manually authenticated strings

CANS'06 Proceedings of the 5th international conference on Cryptology and Network Security
Ad hoc security associations for groups

ESAS'06 Proceedings of the Third European conference on Security and Privacy in Ad-Hoc and Sensor Networks
Key agreement in ad hoc networks

Computer Communications

SMILE: encounter-based trust for mobile social services

Proceedings of the 16th ACM conference on Computer and communications security
PROTECT: proximity-based trust-advisor using encounters for mobile societies

Proceedings of the 6th International Wireless Communications and Mobile Computing Conference
Group device pairing based secure sensor association and key management for body area networks

INFOCOM'10 Proceedings of the 29th conference on Information communications
Groupthink: usability of secure group association for wireless devices

Proceedings of the 12th ACM international conference on Ubiquitous computing
Privacy-preserving activity scheduling on mobile devices

Proceedings of the first ACM conference on Data and application security and privacy
Meetings through the cloud: Privacy-preserving scheduling on mobile devices

Journal of Systems and Software
Privacy in mobile computing for location-sharing-based services

PETS'11 Proceedings of the 11th international conference on Privacy enhancing technologies
Don't Bump, Shake on It: the exploitation of a popular accelerometer-based smart phone exchange and its secure replacement

Proceedings of the 27th Annual Computer Security Applications Conference
Towards a theory of trust in networks of humans and computers

SP'11 Proceedings of the 19th international conference on Security Protocols
Discovering trustworthy social spaces

Proceedings of the Third International Workshop on Sensing Applications on Mobile Phones
Secure ad hoc trust initialization and key management in wireless body area networks

ACM Transactions on Sensor Networks (TOSN)
Chorus: scalable in-band trust establishment for multiple constrained devices over the insecure wireless channel

Proceedings of the sixth ACM conference on Security and privacy in wireless and mobile networks
How groups of users associate wireless devices

Proceedings of the SIGCHI Conference on Human Factors in Computing Systems
SafeSlinger: easy-to-use and secure public-key exchange

Proceedings of the 19th annual international conference on Mobile computing & networking
Go anywhere: user-verifiable authentication over distance-free channel for mobile devices

Personal and Ubiquitous Computing
Secure interaction with piggybacked key-exchange

Pervasive and Mobile Computing

Quantified Score

Hi-index	0.00

Visualization

Abstract

Establishing trust between a group of individuals remains a difficult problem. Prior works assume trusted infrastructure, require an individual to trust unknown entities, or provide relatively low probabilistic guarantees of authenticity (95% for realistic settings). This work presents SPATE, a primitive that allows users to establish trust via device mobility and physical interaction. Once the SPATE protocol runs to completion, its participants' mobile devices have authentic data that their applications can use to interact securely (i.e., the probability of a successful attack is 2-24). For this work, we leverage SPATE as part of a larger system to facilitate efficient, secure, and user-friendly collaboration via email and file-sharing services. Our implementation of SPATE on Nokia N70 smartphones allows users to establish trust in small groups of up to eight users in less than one minute. The two example SPATE applications provide increased security with no overhead noticeable to users once keys are established.