Sciweavers

PERCOM
2009
ACM

Caveat Emptor: A Comparative Study of Secure Device Pairing Methods

15 years 11 days ago
Caveat Emptor: A Comparative Study of Secure Device Pairing Methods
Abstract--"Secure Device Pairing" is the process of bootstrapping a secure channel between two previously unassociated devices over a (usually wireless) human-imperceptible communication channel. Lack of prior security context and common trust infrastructure open the door for Man-in-the-Middle (also known as Evil Twin) attacks. Mitigation of these attacks requires user involvement in the device pairing process. Prior research yielded a number of interesting methods utilizing various auxiliary human-perceptible channels, e.g., visual, acoustic or tactile. These methods engage the user in authenticating information exchanged over human-imperceptible channels, thus mitigating MiTM attacks and forming the basis for secure pairing. We present the first comprehensive comparative evaluation of notable secure device pairing methods. Our results identify methods best-suited for a given combination of devices and human abilities. This work is both important and timely, since it sheds l...
Arun Kumar, Nitesh Saxena, Gene Tsudik, Ersin Uzun
Added 25 Nov 2009
Updated 25 Nov 2009
Type Conference
Year 2009
Where PERCOM
Authors Arun Kumar, Nitesh Saxena, Gene Tsudik, Ersin Uzun
Comments (0)