Presentation is loading. Please wait.

Presentation is loading. Please wait.

Seeing-Is-Believing: Using Camera Phones for Human- Verifiable Authentication Jonathan M. McCune Adrian Perrig Michael K. Reiter Carnegie Mellon University.

Published byKristina Bryan Modified over 9 years ago

Similar presentations

Presentation on theme: "Seeing-Is-Believing: Using Camera Phones for Human- Verifiable Authentication Jonathan M. McCune Adrian Perrig Michael K. Reiter Carnegie Mellon University."— Presentation transcript:

1 Seeing-Is-Believing: Using Camera Phones for Human- Verifiable Authentication Jonathan M. McCune Adrian Perrig Michael K. Reiter Carnegie Mellon University 2005報告人:張淯閎

2 Outline Related works Related works Authentication Authentication Barcode Recognition with Camera Phones Barcode Recognition with Camera Phones Seeing-Is-Believing Seeing-Is-Believing

3 Authentication Authentication between two co-located entities with no prior trust relationships. Authentication between two co-located entities with no prior trust relationships. Public key infrastructure relies on trusted certifiers. Public key infrastructure relies on trusted certifiers. Diffie-Hellman key Diffie-Hellman key Man-in-the-middle Man-in-the-middle Encrypted key exchange Encrypted key exchange

4 Barcode Recognition with Camera Phones SiB depends on a camera phone and can recognize 2D barcodes. SiB depends on a camera phone and can recognize 2D barcodes. 2D code used in mobile phones can be read from electronic screens and printed paper(Rohs and Gfeller). 2D code used in mobile phones can be read from electronic screens and printed paper(Rohs and Gfeller). Semacodes, which is a Data Matrix barcode standard(Woodside). Semacodes, which is a Data Matrix barcode standard(Woodside). HP Labs propose tagging electronics with barcode to be read by camera phones. HP Labs propose tagging electronics with barcode to be read by camera phones.

5 Seeing-Is-Believing A mobile phone’s integrated camera serves as a visual channel to provide identification of communicating devices. A mobile phone’s integrated camera serves as a visual channel to provide identification of communicating devices. User identifies that other device visually. User identifies that other device visually. With 2D barcodes With 2D barcodes

6 Pre-Authentication and the Visual channel SiB uses a visual channel instead of an invisible channel, thus adding a direct human factor. SiB uses a visual channel instead of an invisible channel, thus adding a direct human factor. Pre-authentication data is used in both communicating parties in any standard public-key over the wireless link.(Figure1.) Pre-authentication data is used in both communicating parties in any standard public-key over the wireless link.(Figure1.)

7 Figure1. Pre-authentication over the visual channel. Ka is A’s public key, which can be either long-term or ephemeral, depending the protocol.

8 Bidirectional Authentication Without a trusted authority Without a trusted authority Diffie-Hellman key exchange to establish a shared secret Diffie-Hellman key exchange to establish a shared secret Mutually authenticated one another’s public keys Mutually authenticated one another’s public keys

9 Unidirectional Authentication Figure2. Can a device of type X authenticate a device of type Y? We consider devices with cameras and displays(CD), cameras only(C), displays only(D), and neither(N).

10 SiB For Example

11 Security Analysis Assumption that an attacker is unable to perform an active attack on the visual channel. Assumption that an attacker is unable to perform an active attack on the visual channel. Unable to compromise the mobile device itself. Unable to compromise the mobile device itself. Cryptography Cryptography Selecting an Authentication Channel Selecting an Authentication Channel

12 Conclusion SiB is a system that uses barcodes and camera phones as a visual channel for human-verifiable authentication. SiB is a system that uses barcodes and camera phones as a visual channel for human-verifiable authentication. Visual channel provides demonstrative identification of communicating parties,that user assurance her device. Visual channel provides demonstrative identification of communicating parties,that user assurance her device. SiB characteristic SiB characteristic

13 Diffie-Hellman key exchange n, g public value n, g public value Both sides have his own value like X and Y (must a large number ). Both sides have his own value like X and Y (must a large number ). Count Secrete Key g xy Count Secrete Key g xy Alice Bob Count: (g y mod n) x = g xy mod n Count: (g x mod n) y = g xy mod n n, g, g x mod n g y mod n

Download ppt "Seeing-Is-Believing: Using Camera Phones for Human- Verifiable Authentication Jonathan M. McCune Adrian Perrig Michael K. Reiter Carnegie Mellon University."

Similar presentations

The Diffie-Hellman Algorithm

The Diffie-Hellman Algorithm
1 Security for Ad Hoc Network Routing. 2 Ad Hoc Networks Properties Mobile Wireless communication Medium to high bandwidth High variability of connection.

1 Security for Ad Hoc Network Routing. 2 Ad Hoc Networks Properties Mobile Wireless communication Medium to high bandwidth High variability of connection.
Cynthia Kuo, Mark Luk, Rohit Negi, Adrian Perrig Carnegie Mellon University Message-In-a-Bottle: User-Friendly and Secure Cryptographic Key Deployment.

Cynthia Kuo, Mark Luk, Rohit Negi, Adrian Perrig Carnegie Mellon University Message-In-a-Bottle: User-Friendly and Secure Cryptographic Key Deployment.
KAIS T Message-In-a-Bottle: User-Friendly and Secure Key Deployment for Sensor Nodes Cynthia Kuo, Mark Luk, Rohit Negi, Adrian Perrig(CMU), Sensys07 2007.

KAIS T Message-In-a-Bottle: User-Friendly and Secure Key Deployment for Sensor Nodes Cynthia Kuo, Mark Luk, Rohit Negi, Adrian Perrig(CMU), Sensys
1 Bootstrapping Trust in a “Trusted” Platform Carnegie Mellon University November 11, 2008 Bryan Parno.

1 Bootstrapping Trust in a “Trusted” Platform Carnegie Mellon University November 11, 2008 Bryan Parno.
Mar 12, 2002Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities SSL/TLS.

Mar 12, 2002Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities SSL/TLS.
CS555Spring 2012/Topic 161 Cryptography CS 555 Topic 16: Key Management and The Need for Public Key Cryptography.

CS555Spring 2012/Topic 161 Cryptography CS 555 Topic 16: Key Management and The Need for Public Key Cryptography.
TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 29 Cryptography and Network.

TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 29 Cryptography and Network.
1 Authenticated key agreement without using one-way hash functions Harn, L.; Lin, H.-Y. Electronics Letters, Volume: 37 Issue: 10, 10 May 2001 Presented.

1 Authenticated key agreement without using one-way hash functions Harn, L.; Lin, H.-Y. Electronics Letters, Volume: 37 Issue: 10, 10 May 2001 Presented.
20-751 ECOMMERCE TECHNOLOGY FALL 2003 COPYRIGHT © 2003 MICHAEL I. SHAMOS Cryptography.

ECOMMERCE TECHNOLOGY FALL 2003 COPYRIGHT © 2003 MICHAEL I. SHAMOS Cryptography.
Cryptography1 CPSC 3730 Cryptography Chapter 10 Key Management.

Cryptography1 CPSC 3730 Cryptography Chapter 10 Key Management.
Mar 4, 2003Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities.

Mar 4, 2003Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities.
Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.

Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.
EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 7 Wenbing Zhao Department of Electrical and Computer Engineering.

EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 7 Wenbing Zhao Department of Electrical and Computer Engineering.
Friendly Authentication and Communication Experience (Face) for Ubiquitous Authentication on Mobile Devices Author: Benjamin Halpert Presented by: 魏聲尊.

Friendly Authentication and Communication Experience (Face) for Ubiquitous Authentication on Mobile Devices Author: Benjamin Halpert Presented by: 魏聲尊.
Inter-Domain Identity-Based Authenticated Key Agreement Protocols from Weil Pairing Authors: Hong-bin Tasi, Yun-Peng Chiu and Chin-Laung Lei From:ISC2006.

Inter-Domain Identity-Based Authenticated Key Agreement Protocols from Weil Pairing Authors: Hong-bin Tasi, Yun-Peng Chiu and Chin-Laung Lei From:ISC2006.
Kemal AkkayaWireless & Network Security 1 Department of Computer Science Southern Illinois University Carbondale CS 591 – Wireless & Network Security Lecture.

Kemal AkkayaWireless & Network Security 1 Department of Computer Science Southern Illinois University Carbondale CS 591 – Wireless & Network Security Lecture.
EEC 688/788 Secure and Dependable Computing Lecture 7 Wenbing Zhao Department of Electrical and Computer Engineering Cleveland State University

EEC 688/788 Secure and Dependable Computing Lecture 7 Wenbing Zhao Department of Electrical and Computer Engineering Cleveland State University
CMSC 414 Computer and Network Security Lecture 6 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 6 Jonathan Katz.
1 Hidden Exponent RSA and Efficient Key Distribution author: He Ge Cryptology ePrint Archive 2005/325 PDFPDF 報告人:陳昱升.

1 Hidden Exponent RSA and Efficient Key Distribution author: He Ge Cryptology ePrint Archive 2005/325 PDFPDF 報告人:陳昱升.

Similar presentations

Ads by Google