Presentation is loading. Please wait.

Presentation is loading. Please wait.

Privacy Research In the RFID Ecosystem Project Evan Welbourne joint work with Magdalena Balazinska, Gaetano Borriello, Tadayoshi.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Privacy Research In the RFID Ecosystem Project Evan Welbourne joint work with Magdalena Balazinska, Gaetano Borriello, Tadayoshi."— Presentation transcript:

1 http://rfid.cs.washington.edu/ Privacy Research In the RFID Ecosystem Project Evan Welbourne joint work with Magdalena Balazinska, Gaetano Borriello, Tadayoshi Kohno, Dan Suciu Nodira Khoussainova, Karl Koscher, Travis Kriplean, Julie Letchner, Vibhor Rastogi University of Washington, Dept. of Computer Science & Engineering RFID CUSP Workshop John’s Hopkins University, Baltimore January 24, 2008

2 http://rfid.cs.washington.edu/ Defining Security & Privacy  Security: Protection against unauthorized access, use, disclosure, disruption, modification, or destruction  Privacy: Privacy in the collection and sharing of data  Roughly two areas of concern: 1) Security of reader-tag communication 2) Security and privacy of collected RFID data ( Rigorously defined and evaluated ) ( Definition and evaluation depends on human perception/interpretation )

3 http://rfid.cs.washington.edu/ Outline  Overview of the RFID Ecosystem  Organize privacy concerns  Recent focus: Peer-to-Peer privacy  Designing a default policy  Implementing the policy  Extensions for probabilistic data  Techniques for detecting and preventing violations

4 http://rfid.cs.washington.edu/ Today: Outside the Supply Chain  Subpoenas for EZ-Pass data  Insecurities in first version of e-Passport  Insecurities in first-generation RFID credit cards  Cloning RFID access control badge  Dutch transit card hack

5 http://rfid.cs.washington.edu/ Tomorrow: User-Centered RFID Systems  User-centered, pervasive RFID Applications  “How do I know if I am wearing a tag?”  “How do I know who can see me?”  “How can I control who can see me?”  “Who owns the data? Can I remove/edit my data?”  “What is the lifetime of the data?”

6 http://rfid.cs.washington.edu/ Laboratory Everyday Life From the Lab to the Real World

7 http://rfid.cs.washington.edu/  Create a microcosm of a world saturated with uniquely identifiable objects  100s of readers and antennas, 1000s of tags  Explore applications, systems, and social implications  Do it while there is still time to learn and adapt  Groups: Database, Security, Ubicomp, and others  Participants include: RFID Ecosystem at UW CSE Magdalena Balazinska Yang Li Nodira Khoussainova Julie Letchner Gaetano Borriello Dan Suciu Karl Koscher Vibhor Rastogi Tadayoshi Kohno Travis Kriplean Evan Welbourne 14 undergraduate researchers over the past 2 years

8 http://rfid.cs.washington.edu/ RFID Ecosystem Video [ Show First RFID Ecosystem Demo Video ] [ http://rfid.cs.washington.edu/ ]http://rfid.cs.washington.edu/ OR [ http://www.youtube.com/watch?v=DxZzDMQ7D4A ] http://www.youtube.com/watch?v=DxZzDMQ7D4A

9 http://rfid.cs.washington.edu/ RFID Ecosystem at UW CSE

10 http://rfid.cs.washington.edu/ Outline Overview of the RFID Ecosystem  Organize privacy concerns  Recent focus: Peer-to-Peer privacy  Designing a default policy  Implementing the policy  Extensions for probabilistic data  Techniques for detecting and preventing violations [Kriplean, Rastogi, Welbourne and others] }

11 http://rfid.cs.washington.edu/  Modes of information disclosure:  Institutional  Organization collects, uses, and shares personal data  Addressed by contracts, federal law, corporate practice (e.g. FIPs)  Peer-to-Peer or “Mediated”  Peers and superiors access data through some authorized channel  Mediated by access control policies  Malicious  Personal data is compromised by unauthorized parties  Addressed by secure systems engineering Organizing Privacy Concerns

12 http://rfid.cs.washington.edu/  Modes of information disclosure:  Institutional  Organization collects, uses, and shares personal data  Addressed by contracts, federal law, corporate practice (e.g. FIPS)  Peer-to-Peer or “Mediated”  Peers and superiors access data through some authorized channel  Mediated by access control policies  Malicious  Personal information is compromised by un authorized parties  Addresses by secure systems engineering Organizing Privacy Concerns

13 http://rfid.cs.washington.edu/ A Key Problem in Peer-to-Peer Privacy  The Panopticon  Key problem: asymmetric visibility Image credit: Prison building at Presidio Modelo, Isla De Juventud, Cuba (Wikipedia)

14 http://rfid.cs.washington.edu/  Privacy vs. Utility:  What information to disclose by default?  Who to disclose information to by default?  How to support applications and preserve privacy?  How to detect and prevent violations? A Key Problem in Peer-to-Peer Privacy Image: Paul G. Allen Center for Computer Science & Engineering, Seattle, WA

15 http://rfid.cs.washington.edu/ Default Policy: Physical Access Control  “Socially appropriate access control” - Kriplean  Concept:  Each user has a personal data store (or personal view of the data)  Store contains events that occurred when and where the user was physically present  Requirements:  Each user carries a personal tag  Line-of-sight information between each pair of antennas is known and static  Key points:  Provides symmetric visibility  Models sense of sight  Enables applications which augment user’s memory

16 http://rfid.cs.washington.edu/ sightingstimestampsightingstimestampsightingstimestamp Time:0 ’s data store 111 1 000 222 2

17 http://rfid.cs.washington.edu/ Implementing PAC with RFID  Tag Read Event (TRE): (tag id, antenna id, timestamp)  Mutual Visibility: When 2 TREs instantaneously share an unobstructed line-of-sight  Practical Definition of Mutual Visibility: 1) TREs occur within some time window Δ of each other 2a) TREs are read by the same antenna or 2b) The reading antennas are considered mutually visible

18 http://rfid.cs.washington.edu/ Challenge: Inaccurate Model  Some problems with model:  360° vision  Perfect observations in complex/crowded situations  Perfect, everlasting memory  Second two could be dealt with…

19 http://rfid.cs.washington.edu/ Challenge: Imperfect Deployment  The physics of a real RFID deployment may not match up  Antenna read-range may not be clearly defined  In our deployment it works out… [Kriplean, Welbourne, et al. 2007]  But RFID is noisy and uncertain  Data is really probabilistic!  Microbenchmarks  Δ = 1 sec, mv = geometry  Colocations per second  Few false positives  Most colocations detected

20 http://rfid.cs.washington.edu/ - antenna Challenge: Uncertain Data ? ? ?? ??? ??? ? ? ? ?  Uncertainty in data: Where did Alice go? - Alice  Each possible location is assigned a probability ? ? ?

21 http://rfid.cs.washington.edu/ Assigning Probabilities: Particle Filter  [Particle Filter Movie]  Assigns a probability to each location  Incorporates prior knowledge:  Sensor model  Motion Model  Past behavior [Letchner, Balazinska]

22 http://rfid.cs.washington.edu/  Reveal partial information in uncertain context  Perturb p` s = p s + noise(p c )  Return p` s instead of p s  Compromises soundness  Answers returned may be wrong  Justifiable as system is itself uncertain!  Degree of confidence in answer also returned (Re)defining PAC: Data Perturbation ? ? ? ?  Let Pr(context) = p c  Let Pr(secret) = p s  Semantics:  p c = 1  reveal p s  p c = 0  deny query  0 < p c < 1  then what?? [Rastogi, Suciu]

23 http://rfid.cs.washington.edu/  -0.5 <= noise(pc) <= 0.5 p c = 0.5p c = 0 Noise Function [Rastogi, Suciu]

24 http://rfid.cs.washington.edu/  Ex: Alice slips her personal tag into Bob’s brief case  Ex: Bob tapes his tag to Alice’s office door  Detection methods:  Detect / report / investigate anomalous behavior: Two users suddenly together everywhere User stays in one place for an unusually long time  “Calm” reports of another user’s presence  Ambient display shows how many users are present  Prevention methods:  Require “personal tag” to be present in order to make a query  Add value to “personal tag”, e.g. use a phone instead of a tag Challenge: “Misplaced Tags”

25 http://rfid.cs.washington.edu/  User-level controls:  Authorize access using other context (e.g. during a scheduled meeting)  Access control w/shared social knowledge: Facebook plugin [Toomim]  An economic model for pricing queries  Other policies:  Authorize access using other context (e.g. during a scheduled meeting)  Access according to user settings  Prevention:  “Proactive privacy” – device teaches users about their privacy settings Some Extensions

26 http://rfid.cs.washington.edu/ Thank you! Thanks! Questions?

Download ppt "Privacy Research In the RFID Ecosystem Project Evan Welbourne joint work with Magdalena Balazinska, Gaetano Borriello, Tadayoshi."

Similar presentations

Network Security Chapter 1 - Introduction.

Network Security Chapter 1 - Introduction.
Provenance-Aware Storage Systems Margo Seltzer April 29, 2005.

Provenance-Aware Storage Systems Margo Seltzer April 29, 2005.
User Care Preference-based Service Discovery in a Ubiquitous Environments Dongpil Kwak, Joongsoo Lee, Dohyun Kim, and Younghee Lee Talk by Joongsoo Lee.

User Care Preference-based Service Discovery in a Ubiquitous Environments Dongpil Kwak, Joongsoo Lee, Dohyun Kim, and Younghee Lee Talk by Joongsoo Lee.
Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.

Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.
Beyond Prototypes: Challenges in Deploying Ubiquitous Systems N. Davies and H. Gellersen IEEE pervasive computing, 2002 Presenter: Min Zhang

Beyond Prototypes: Challenges in Deploying Ubiquitous Systems N. Davies and H. Gellersen IEEE pervasive computing, 2002 Presenter: Min Zhang
2 Issues of the information age Computer _______ and mistakes –Preventing computer related waste & mistakes Computer crime –Computer as tool to commit.

2 Issues of the information age Computer _______ and mistakes –Preventing computer related waste & mistakes Computer crime –Computer as tool to commit.
Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.

Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.
Network Isolation Using Group Policy and IPSec Paula Kiernan Senior Consultant Ward Solutions.

Network Isolation Using Group Policy and IPSec Paula Kiernan Senior Consultant Ward Solutions.
The RFID Ecosystem Project Longitudinal Study of a Building-Scale RFID Ecosystem Evan Welbourne with Karl Koscher, Emad.

The RFID Ecosystem Project Longitudinal Study of a Building-Scale RFID Ecosystem Evan Welbourne with Karl Koscher, Emad.
 Guarantee that EK is safe  Yes because it is stored in and used by hw only  No because it can be obtained if someone has physical access but this can.

 Guarantee that EK is safe  Yes because it is stored in and used by hw only  No because it can be obtained if someone has physical access but this can.
CSCE 715 Ankur Jain 11/16/2010. Introduction Design Goals Framework SDT Protocol Achievements of Goals Overhead of SDT Conclusion.

CSCE 715 Ankur Jain 11/16/2010. Introduction Design Goals Framework SDT Protocol Achievements of Goals Overhead of SDT Conclusion.
Design and Implementation of a Middleware for Sentient Spaces Bijit Hore, Hojjat Jafarpour, Ramesh Jain, Shengyue Ji, Daniel Massaguer Sharad Mehrotra,

Design and Implementation of a Middleware for Sentient Spaces Bijit Hore, Hojjat Jafarpour, Ramesh Jain, Shengyue Ji, Daniel Massaguer Sharad Mehrotra,
1 Dynamic Key-Updating: Privacy- Preserving Authentication for RFID Systems Li Lu, Lei Hu State Key Laboratory of Information Security, Graduate School.

1 Dynamic Key-Updating: Privacy- Preserving Authentication for RFID Systems Li Lu, Lei Hu State Key Laboratory of Information Security, Graduate School.
The RFID Ecosystem Project Studying Next Generation RFID Applications in the Workplace Evan Welbourne University of Washington,

The RFID Ecosystem Project Studying Next Generation RFID Applications in the Workplace Evan Welbourne University of Washington,
CS-550 (M.Soneru): Protection and Security - 1 [SaS] 1 Protection and Security.

CS-550 (M.Soneru): Protection and Security - 1 [SaS] 1 Protection and Security.
Exploiting Preferences for Minimal Credential Disclosure in Policy-Driven Trust Negotiations Philipp Kärger, Daniel Olmedilla, Wolf-Tilo Balke L3S Research.

Exploiting Preferences for Minimal Credential Disclosure in Policy-Driven Trust Negotiations Philipp Kärger, Daniel Olmedilla, Wolf-Tilo Balke L3S Research.
Evan Welbourne University of Washington, Dept. of Computer Science & Engineering “ Radio Frequency Identification: What’s.

Evan Welbourne University of Washington, Dept. of Computer Science & Engineering “ Radio Frequency Identification: What’s.
Privacy Issues and Techniques for Monitoring Applications Vibhor Rastogi RFID Security Group.

Privacy Issues and Techniques for Monitoring Applications Vibhor Rastogi RFID Security Group.
Stephen S. Yau CSE465 & CSE591, Fall 2006 1 Information Assurance (IA) & Security Overview Concepts Security principles & strategies Techniques Guidelines,

Stephen S. Yau CSE465 & CSE591, Fall Information Assurance (IA) & Security Overview Concepts Security principles & strategies Techniques Guidelines,
Privacy Preserving Data Mining: An Overview and Examination of Euclidean Distance Preserving Data Transformation Chris Giannella cgiannel AT acm DOT org.

Privacy Preserving Data Mining: An Overview and Examination of Euclidean Distance Preserving Data Transformation Chris Giannella cgiannel AT acm DOT org.

Similar presentations

Ads by Google