ToAuth: Towards Automatic Near Field Authentication for Smartphones. Gu, W., Yang, Z., Shangguan, L., Ji, X., & Zhao, Y. In 2014 IEEE 13th International Conference on Trust, Security and Privacy in Computing and Communications, pages 229–236, September, 2014.
doi  abstract   bibtex   
Near field authentication is of great importance for a range of applications, and has attracted many research efforts in the past decades. Several approaches have been developed and demonstrated their feasibility. The state-of-art works, however, still have much room to improve their automation and usability. First, user assistance is required in most existing approaches, which will be easily observed and imitated by attackers. Second, the authentications of several works heavily depend on special hardware, e.g., Server or high resolution screen, which greatly restricts their application scenarios. In this paper, we present a near field authentication system Tooth that needs little human assistance and is compatible with most smart phones. ToAuth is based on the key insight that the acceleration traces are similar for a pair of smart phones when they are contacting physically and vibrating. The random vibration patterns are sufficiently uncertain to provide high entropy to generate a pair of cryptographic keys yet are inimitable for a third party who does not get in touch with the vibration source. ToAuth leverages the keys to make authentication for smart phones. We implement ToAuth on Android platform and evaluate its performance under various scenarios. Extensive experiments demonstrate ToAuth could achieve around 90% success rate in stable environment, and prevent attacks depended on vibration noise.
@inproceedings{gu_toauth:_2014,
	title = {{ToAuth}: {Towards} {Automatic} {Near} {Field} {Authentication} for {Smartphones}},
	shorttitle = {{ToAuth}},
	doi = {10.1109/TrustCom.2014.34},
	abstract = {Near field authentication is of great importance for a range of applications, and has attracted many research efforts in the past decades. Several approaches have been developed and demonstrated their feasibility. The state-of-art works, however, still have much room to improve their automation and usability. First, user assistance is required in most existing approaches, which will be easily observed and imitated by attackers. Second, the authentications of several works heavily depend on special hardware, e.g., Server or high resolution screen, which greatly restricts their application scenarios. In this paper, we present a near field authentication system Tooth that needs little human assistance and is compatible with most smart phones. ToAuth is based on the key insight that the acceleration traces are similar for a pair of smart phones when they are contacting physically and vibrating. The random vibration patterns are sufficiently uncertain to provide high entropy to generate a pair of cryptographic keys yet are inimitable for a third party who does not get in touch with the vibration source. ToAuth leverages the keys to make authentication for smart phones. We implement ToAuth on Android platform and evaluate its performance under various scenarios. Extensive experiments demonstrate ToAuth could achieve around 90\% success rate in stable environment, and prevent attacks depended on vibration noise.},
	booktitle = {2014 {IEEE} 13th {International} {Conference} on {Trust}, {Security} and {Privacy} in {Computing} and {Communications}},
	author = {Gu, W. and Yang, Z. and Shangguan, L. and Ji, X. and Zhao, Y.},
	month = sep,
	year = {2014},
	pages = {229--236}
}
Downloads: 0
About
Documentation
Keywords
Search
Users
Terms and Conditions of Use
Privacy Policy
Sitemap
© BibBase.org 2021