secure pairing
play

Secure Pairing Getting from nothing to something Johannes Gilger - PowerPoint PPT Presentation

Dec 07, 2023 •649 likes •711 views

Secure Pairing Getting from nothing to something Johannes Gilger <Gilger@UMIC.RWTH-Aachen.de> RWTH Aachen University Smart Object Security Workshop, 23 March 2012 Introduction Definition / Terminology Secure Pairing:

  1. Secure Pairing ‘‘Getting from nothing to something’’ Johannes Gilger <Gilger@UMIC.RWTH-Aachen.de> RWTH Aachen University Smart Object Security Workshop, 23 March 2012

  2. Introduction Definition / Terminology Secure Pairing: Definition Secure Pairing is the process of bootstrapping a secure communication channel between two previously unassociated electronic devices communicating over some insecure channel. Terminology ▸ Devices : Smart Objects, PCs, routers, smartphones ▸ Channel : IEEE 802.15.4, IR, NFC, Buttons, LEDs We need to talk about Secure Pairing for Smart Objects because ... ▸ these devices sometimes lack even the most basic user interfaces. ▸ current pairing approaches would simply take too long for Smart Objects. ▸ certain assumptions regarding security may no longer hold. 1 / 3

  3. Problem statement What we need We need a channel between two devices that provides integrity (not confidentiality). This channel will be used to exchange a shared secret (Diffie Hellman), which is used to authenticate any subsequent DTLS handshake. Pairing two devices over this channel should be relatively quick (a few seconds) and easy to perform for untrained personnel. The owner of the Smart Object has to be able to confirm that the object was actually paired with him (i.e. nobody ’’stole’’ it). These will likely not work with Smart Objects ▸ Lack of interface: Comparing PIN, reading/entering PIN, creating PIN ▸ Cost/Power: Aux. channel exchange: NFC, Bluetooth, IR ▸ Security: Vulnerable period, fixed PIN 2 / 3

  4. Pairing schemes Schemes, not protocols! Interesting and realistic avenues of research in my opinion ▸ CGAs: Secure storage for private key needed (PUF, TPM-like). Scales well. ▸ In-Band Pairing: No addtl. interface needed, question of applicability for IEEE 802.15.4. ▸ Out-of-Band: Button-to-Button, LED-to-Button. Nice and easy, yet time-intensive. ▸ Proximity-based: RF signal propagation characteristics, distance bounding. ▸ RF-fingerprinting: reliably re-establish the identity of a radio signal using transients. Things to discuss ▸ How do the secure pairing schemes fit into protocols and roles? ▸ What kind of attackers and attacks do we want to protect against? ▸ How do realistic deployment scenarios look like in the industry? 3 / 3

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Secure Device Pairing What is device pairing? What is

Secure Device Pairing What is device pairing? What is

Secure Device Pairing What is device pairing? What is device pairing? What is the problem? The wireless communica8on channel is rela8vely easy to

298 views • 9 slides
T2Pair: Secure and Usable Pairing for Heterogeneous IoT Devices Xiaopeng Li, Qiang Zeng , Lannan

T2Pair: Secure and Usable Pairing for Heterogeneous IoT Devices Xiaopeng Li, Qiang Zeng , Lannan

T2Pair: Secure and Usable Pairing for Heterogeneous IoT Devices Xiaopeng Li, Qiang Zeng , Lannan Luo, Tongbo Luo CCS 2020 IoT Pairing Pairing is supposed to establish a secure communication channel IoT pairing is important for adding

345 views • 21 slides
Usability Analysis of Secure Pairing Methods 12 , 3 , 23 Ersin Uzun Kristiina Karvonen N.

Usability Analysis of Secure Pairing Methods 12 , 3 , 23 Ersin Uzun Kristiina Karvonen N.

Usability Analysis of Secure Pairing Methods 12 , 3 , 23 Ersin Uzun Kristiina Karvonen N. Asokan 1 University Of California, Irvine 2 Nokia Research Center 3 Helsinki University of Technology Outline What is secure pairing and why is it

533 views • 31 slides
Pairing Pairing is the process by which we condition ourselves, the teaching materials, and

Pairing Pairing is the process by which we condition ourselves, the teaching materials, and

Pairing &amp; Manding Vincent J. Carbone Ed.D., BCBA-D NYS Licensed Behavior Analyst Carbone Clinic New York Boston Dubai www.CarboneClinic.com www.TheCarboneclinic.ae IESCUM Parma, Italy December 1,2 &amp; 3, 2016 1 Pairing

622 views • 35 slides
Usability and Security of Out-Of-Band Channels in Secure Device Pairing Protocols Ronald Kainda,

Usability and Security of Out-Of-Band Channels in Secure Device Pairing Protocols Ronald Kainda,

Outline Introduction HISPs Proposed OOB Methods Experimental Design Results Analysis and Discussion Conclusion Usability and Security of Out-Of-Band Channels in Secure Device Pairing Protocols Ronald Kainda, Ivan Flechais, and A.W.

670 views • 41 slides
AdHocPairing Spontaneous audio based secure device pairing for Android mobile devices Stephan

AdHocPairing Spontaneous audio based secure device pairing for Android mobile devices Stephan

Information Systems Architecture Science Research Division AdHocPairing Spontaneous audio based secure device pairing for Android mobile devices Stephan Sigg, Ngu Nguyen, An Huynh and Yusheng Ji iwssi 2012, 18.06.2012, Newcastle Motivation

349 views • 12 slides
Pairing-Based Cryptography &amp; Generic Groups Lecture 21 Bilinear Pairing Bilinear Pairing

Pairing-Based Cryptography &amp; Generic Groups Lecture 21 Bilinear Pairing Bilinear Pairing

Pairing-Based Cryptography &amp; Generic Groups Lecture 21 Bilinear Pairing Bilinear Pairing Two (or three) groups with an efficient pairing operation, e: G x G G T that is bilinear Bilinear Pairing Two (or three) groups with an

1.67k views • 118 slides
Pairing-Based Cryptography &amp; Generic Groups Lecture 22 Bilinear Pairing Bilinear Pairing

Pairing-Based Cryptography &amp; Generic Groups Lecture 22 Bilinear Pairing Bilinear Pairing

Pairing-Based Cryptography &amp; Generic Groups Lecture 22 Bilinear Pairing Bilinear Pairing Two (or three) groups with an efficient pairing operation, e: G x G G T that is bilinear Bilinear Pairing Two (or three) groups with an

1.44k views • 105 slides
Pairing time-reversal states J = 0 + (a) +m -m k F k F K k F + L.N.

Pairing time-reversal states J = 0 + (a) +m -m k F k F K k F + L.N.

Nuclear pairing from microscopic forces (with applications) Paolo Finelli Dept. of Physics and Astronomy, University of Bologna paolo. fj nelli@bo.infn.it Based on Phys. Rev. C 90, 044003 Published 21 October 2014 Pairing time-reversal

674 views • 22 slides
Pairing-Based Cryptography &amp; Generic Groups Lecture 22 1 Bilinear Pairing 2 Bilinear

Pairing-Based Cryptography &amp; Generic Groups Lecture 22 1 Bilinear Pairing 2 Bilinear

Pairing-Based Cryptography &amp; Generic Groups Lecture 22 1 Bilinear Pairing 2 Bilinear Pairing Two (or three) groups with an efficient pairing operation, e: G x G G T that is bilinear 2 Bilinear Pairing Two (or three) groups

1.06k views • 102 slides
Exponentiating in Pairing Groups Joppe W. Bos, Craig Costello, and Michael Naehrig SAC 2013

Exponentiating in Pairing Groups Joppe W. Bos, Craig Costello, and Michael Naehrig SAC 2013

Exponentiating in Pairing Groups Joppe W. Bos, Craig Costello, and Michael Naehrig SAC 2013 Vancouver, Canada August 16, 2013 Exponentiating in Pairing Groups The pairing explosion The big (bilinear) bang: [Jou00] , [SOK00] , [BF01] . . . . .

311 views • 16 slides
Another Approach to Pairing Computation in Edwards Coordinates Sorina Ionica PRISM, Universit

Another Approach to Pairing Computation in Edwards Coordinates Sorina Ionica PRISM, Universit

Another Approach to Pairing Computation in Edwards Coordinates Sorina Ionica PRISM, Universit e de Versailles joint work with Antoine Joux Sorina Ionica Pairing Computation in Edwards Coordinates What is a pairing? A pairing is a map

361 views • 25 slides
Further Together: Curated Pairing Culture @Pivotal Neha Batra @nerdneha

Further Together: Curated Pairing Culture @Pivotal Neha Batra @nerdneha

Further Together: Curated Pairing Culture @Pivotal Neha Batra @nerdneha #furtherpairingtogether #qconsf Goals 1. Failed Attempts 2. Pairing @ Pivotal Labs 3. Pair Programming &amp; You 4. Good times 5. War Stories 6. Lessons Learned

1.07k views • 95 slides
Experiments to probe the pairing properties of double-beta decay candidates. Speculations from

Experiments to probe the pairing properties of double-beta decay candidates. Speculations from

Experiments to probe the pairing properties of double-beta decay candidates. Speculations from an experimentalist point of view on pairing- related effects that might be important for 0 matrix element. Sean J Freeman TRIUMF Workshop

625 views • 26 slides
Semi-Inclusive Reactions: N, Z, Nucleon momenta, and Pairing Lawrence Weinstein Old Dominion

Semi-Inclusive Reactions: N, Z, Nucleon momenta, and Pairing Lawrence Weinstein Old Dominion

Semi-Inclusive Reactions: N, Z, Nucleon momenta, and Pairing Lawrence Weinstein Old Dominion University N, Z and high momentum nucleons: 54-40 or Fight aka The CaFe Experiment Goal: understand pairing mechanisms in symmetric and

181 views • 16 slides
How Secure are Secure How Secure are Secure Interdomain Routing Protocols? Interdomain Routing

How Secure are Secure How Secure are Secure Interdomain Routing Protocols? Interdomain Routing

DIMACS Workshop On Secure Routing March 10, 2010 How Secure are Secure How Secure are Secure Interdomain Routing Protocols? Interdomain Routing Protocols? $ $ Sharon Goldberg Microsoft Research &amp; Boston University y Michael Schapira

701 views • 54 slides
Development of a Database for Electronically Supported Examination Jonas Andre April 27, 2016

Development of a Database for Electronically Supported Examination Jonas Andre April 27, 2016

Chair of Network Architectures and Services Department of Informatics Technical University of Munich Development of a Database for Electronically Supported Examination Jonas Andre April 27, 2016 Chair of Network Architectures and Services

422 views • 8 slides
00-12-14 Skerhet i Disposition distribuerade system IT-skerhet Skerhet i

00-12-14 Skerhet i Disposition distribuerade system IT-skerhet Skerhet i

00-12-14 Skerhet i Disposition distribuerade system IT-skerhet Skerhet i distribuerade system Elektronisk identitet Torbjrn Wiberg Krypteringsteknik Ume universitet PKI Infrastruktur fr certifikat

465 views • 12 slides
Analysing Cryptographic Hardware Interfaces with Tookan Graham Steel joint work with R. Bardou,

Analysing Cryptographic Hardware Interfaces with Tookan Graham Steel joint work with R. Bardou,

Analysing Cryptographic Hardware Interfaces with Tookan Graham Steel joint work with R. Bardou, M. Bortolozzo, M. Centenaro, R. Focardi, Y. Kawamoto, L. Simionato, J.-K. Tsay Graham Steel September 23, 2012 Analysing Security Device

377 views • 22 slides
Agenda Introductions Facilitator Participants Expectations Why are we

Agenda Introductions Facilitator Participants Expectations Why are we

www. ITSec .org.za Your IT Audit and Information Security Partner CISA Exam Preparation June 2015 Session 1 : 10 March 2015 Agenda Introductions Facilitator Participants Expectations Why are we all here? CISA

418 views • 17 slides
ST. GABRIEL MERCY CENTER MOUND BAYOU MISSISSIPPI P.O. BOX 824 PHONE: 662 741-3255 FAX:

ST. GABRIEL MERCY CENTER MOUND BAYOU MISSISSIPPI P.O. BOX 824 PHONE: 662 741-3255 FAX:

ST. GABRIEL MERCY CENTER MOUND BAYOU MISSISSIPPI P.O. BOX 824 PHONE: 662 741-3255 FAX: 662-741-3494 E-MAIL: moundbayou@tecinfo.com MISSION STATEMENT Rooted in the mission of Jesus, and being faithful to the service tradition of the

342 views • 13 slides
Game Design Concept Submitted by: Wendy Ann Mansilla Castle of Sulaiman Genre: Adventure Game

Game Design Concept Submitted by: Wendy Ann Mansilla Castle of Sulaiman Genre: Adventure Game

Game Design Concept Submitted by: Wendy Ann Mansilla Castle of Sulaiman Genre: Adventure Game Requirements: Dice (may be triggered by shaker or may also be manual) Timer (Must be controlled in the first level, programmed, triggered using a

191 views • 5 slides
PRIMARY ONE (2020) ORIENTATION Thursday, 14 November 2019 Yio Chu Kang Primary School Yio Chu

PRIMARY ONE (2020) ORIENTATION Thursday, 14 November 2019 Yio Chu Kang Primary School Yio Chu

PRIMARY ONE (2020) ORIENTATION Thursday, 14 November 2019 Yio Chu Kang Primary School Yio Chu Kang Primary School Empowering Mind Engaging Heart Extending Hands Empowering Mind Engaging Heart Extending Hands 2 DAILY SCHOOL

956 views • 48 slides
Specification and verification in the field: Applying formal methods to BPF just-in-time

Specification and verification in the field: Applying formal methods to BPF just-in-time

Specification and verification in the field: Applying formal methods to BPF just-in-time compilers in the Linux kernel Luke Nelson, Jacob Van Geffen, Emina Torlak, and Xi Wang University of Washington Goal: formally verified (e)BPF JITs in the

267 views • 22 slides

More recommend