Device-enabled authorization in the grey system

Authors:
Lujo Bauer;Scott Garriss;Jonathan M. McCune;Michael K. Reiter;Jason Rouse;Peter Rutenbar
Affiliations:
Carnegie Mellon University, Pittsburgh, Pennsylvania;Carnegie Mellon University, Pittsburgh, Pennsylvania;Carnegie Mellon University, Pittsburgh, Pennsylvania;Carnegie Mellon University, Pittsburgh, Pennsylvania;Carnegie Mellon University, Pittsburgh, Pennsylvania;Carnegie Mellon University, Pittsburgh, Pennsylvania
Venue:
ISC'05 Proceedings of the 8th international conference on Information Security
Year:
2005

Citing 18
Cited 29

An algorithm for testing conversion in type theory

Logical frameworks
A framework for defining logics

Journal of the ACM (JACM)
Authentication in distributed systems: theory and practice

ACM Transactions on Computer Systems (TOCS)
A calculus for access control in distributed systems

ACM Transactions on Programming Languages and Systems (TOPLAS)
Authentication in the Taos operating system

ACM Transactions on Computer Systems (TOCS) - Special issue on operating systems principles
Proof-carrying authentication

CCS '99 Proceedings of the 6th ACM conference on Computer and communications security
On SDSI's linked local name spaces

Journal of Computer Security
TRIP: A Low-Cost Vision-Based Location System for Ubiquitous Computing

Personal and Ubiquitous Computing
Compliance Checking in the PolicyMaker Trust Management System

FC '98 Proceedings of the Second International Conference on Financial Cryptography
A General and Flexible Access-Control System for the Web

Proceedings of the 11th USENIX Security Symposium
A Logic for SDSI's Linked Local Name Spaces: Preliminary Version

CSFW '99 Proceedings of the 12th IEEE workshop on Computer Security Foundations
A Security Infrastructure for Distributed Java Applications

SP '00 Proceedings of the 2000 IEEE Symposium on Security and Privacy
A Trustworthy Proof Checker

Journal of Automated Reasoning
Personal Servers as Digital Keys

PERCOM '04 Proceedings of the Second IEEE International Conference on Pervasive Computing and Communications (PerCom'04)
Accessing Ubiquitous Services Using Smart Phones

PERCOM '05 Proceedings of the Third IEEE International Conference on Pervasive Computing and Communications
Using visual tags to bypass Bluetooth device discovery

ACM SIGMOBILE Mobile Computing and Communications Review
Distributed Proving in Access-Control Systems

SP '05 Proceedings of the 2005 IEEE Symposium on Security and Privacy
Seeing-Is-Believing: Using Camera Phones for Human-Verifiable Authentication

SP '05 Proceedings of the 2005 IEEE Symposium on Security and Privacy

Lessons learned from the deployment of a smartphone-based access-control system

Proceedings of the 3rd symposium on Usable privacy and security
Single-bit re-encryption with applications to distributed proof systems

Proceedings of the 2007 ACM workshop on Privacy in electronic society
A user study of policy creation in a flexible access-control system

Proceedings of the SIGCHI Conference on Human Factors in Computing Systems
Detecting and resolving policy misconfigurations in access-control systems

Proceedings of the 13th ACM symposium on Access control models and technologies
Trustworthy and personalized computing on public kiosks

Proceedings of the 6th international conference on Mobile systems, applications, and services
AURA: a programming language for authorization and audit

Proceedings of the 13th ACM SIGPLAN international conference on Functional programming
Proof Checking Technology for Satisfiability Modulo Theories

Electronic Notes in Theoretical Computer Science (ENTCS)
Seeing-Is-Believing: using camera phones for human-verifiable authentication

International Journal of Security and Networks
xDomain: cross-border proofs of access

Proceedings of the 14th ACM symposium on Access control models and technologies
Distributed programming with distributed authorization

Proceedings of the 5th ACM SIGPLAN workshop on Types in language design and implementation
Policy-based access control for weakly consistent replication

Proceedings of the 5th European conference on Computer systems
A modal deconstruction of access control logics

FOSSACS'08/ETAPS'08 Proceedings of the Theory and practice of software, 11th international conference on Foundations of software science and computational structures
PCAL: language support for proof-carrying authorization systems

ESORICS'09 Proceedings of the 14th European conference on Research in computer security
Security-typed programming within dependently typed programming

Proceedings of the 15th ACM SIGPLAN international conference on Functional programming
Porscha: policy oriented secure content handling in Android

Proceedings of the 26th Annual Computer Security Applications Conference
Challenges in access right assignment for secure home networks

HotSec'10 Proceedings of the 5th USENIX conference on Hot topics in security
Detecting and resolving policy misconfigurations in access-control systems

ACM Transactions on Information and System Security (TISSEC)
Nexus authorization logic (NAL): Design rationale and applications

ACM Transactions on Information and System Security (TISSEC)
Stateful authorization logic: proof theory and a case study

STM'10 Proceedings of the 6th international conference on Security and trust management
Enforcing trust in pervasive computing with trusted computing technology

CRITIS'06 Proceedings of the First international conference on Critical Information Infrastructures Security
Discovering access-control misconfigurations: new approaches and evaluation methodologies

Proceedings of the second ACM conference on Data and Application Security and Privacy
Instant matchmaking: simple and secure integrated ubiquitous computing environments

UbiComp'06 Proceedings of the 8th international conference on Ubiquitous Computing
Privacy-aware proof-carrying authorization

Proceedings of the ACM SIGPLAN 6th Workshop on Programming Languages and Analysis for Security
A proof-carrying file system with revocable and use-once certificates

STM'11 Proceedings of the 7th international conference on Security and Trust Management
New modalities for access control logics: permission, control and ratification

STM'11 Proceedings of the 7th international conference on Security and Trust Management
SMT proof checking using a logical framework

Formal Methods in System Design
Smart keys for cyber-cars: secure smartphone-based NFC-enabled car immobilizer

Proceedings of the third ACM conference on Data and application security and privacy
Belief semantics of authorization logic

Proceedings of the 2013 ACM SIGSAC conference on Computer & communications security
Stateful authorization logic --Proof theory and a case study

Journal of Computer Security - STM'10

Quantified Score

Hi-index	0.00

Visualization

Abstract

We describe the design of Grey, a set of software extensions that convert an off-the-shelf smartphone-class device into a tool by which its owner exercises and delegates her authority to both physical and virtual resources. We focus on the software components and user interfaces of Grey, highlighting the features of each. We also discuss an initial case study for Grey, in which we are equipping over 65 doors on two floors of office space for access control using Grey-enabled devices, for a population of roughly 150 persons. Further details of Grey, and this and other applications, can be found in a companion technical report.