ACE Seminar: Device Pairing at the Touch of an Electrode

Speaker: Kasper Bonne Rasmussen

Date/Time: 08-Mar-2018, 16:00 UTC

Venue: Main Quad Pop-Up 102

Details

Abstract

Device pairing is the problem of having two devices securely establish a key that can be used to secure subsequent communication. The problem arises every time two devices that do not already share a secret need to bootstrap a secure communication channel. Many solutions exist, all suited to different situations, and all with their own strengths and weaknesses. In this paper, we propose a novel approach to device pairing that applies whenever a user wants to pair two devises that can be physically touched at the same time. The pairing process is easy to perform, even for novice users. A central problem for a device (Alice) running a device pairing protocol, is determining whether the other party (Bob) is in fact the device that we are supposed to establish a key with. Our scheme is based on the idea that two devices can perform device pairing, if they are physically held by the same person (at the same time). In order to pair two devices, a person touches a conductive surface on each device. While the person is in contact with both devices, the human body acts as a transmission medium for intra-body communication and the two devices can communicate through the body. This body channel is used as part of a pairing protocol which allows the devices to agree on a mutual secret and, at the same time, extract physical features to verify that they are being held by the same person. We prove that our device pairing protocol is secure in our threat model and we build a proof of concept set-up and conduct experiments with 15 people to verify the idea in practice.

Bio

Kasper Rasmussen is Associate Professor in the Computer Science Department. He joined University of Oxford in 2013 and in 2015 was awarded a University Research Fellowship from the Royal Society in London. Kasper Rasmussen completed his masters degree in Computer Science (Information technology and Mathematics) from the Technical University of Denmark (DTU) in December 2005. His masters thesis was on optimization of path protection in circuit switched networks. Kasper did his Ph.D. with prof. Srdjan Capkun at the Department of Computer Science at ETH Zurich. During his Ph.D. he worked mainly on security issues relating to secure time synchronization and secure localization with a particular focus on distance bounding. After completing his Ph.D., Kasper worked as a post-doc at University of California, Irvine, with Prof. Gene Tsudik.

Add to Calendar

This page was last modified on 27 Mar 2014.