Skip to main content
SpringerLink
Log in

Device-Enabled Authorization in the Grey System

(Extended Abstract)

  • Conference paper
Information Security (ISC 2005)

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 3650))

Included in the following conference series:

Abstract

We describe the design of Grey, a set of software extensions that convert an off-the-shelf smartphone-class device into a tool by which its owner exercises and delegates her authority to both physical and virtual resources. We focus on the software components and user interfaces of Grey, highlighting the features of each. We also discuss an initial case study for Grey, in which we are equipping over 65 doors on two floors of office space for access control using Grey-enabled devices, for a population of roughly 150 persons. Further details of Grey, and this and other applications, can be found in a companion technical report.

We gratefully acknowledge support from the National Science Foundation grant number CNS-0433540, the U.S. Navy grant number N00014-04-1-0724, and the U.S. Army Research Office contract number DAAD19-02-1-0389.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Abadi, M.: On SDSI’s linked local name spaces. J. Computer Security (1998)

    Google Scholar 

  2. Abadi, M., Burrows, M., Lampson, B., Plotkin, G.D.: A calculus for access control in distributed systems. ACM Trans. Prog. Lang. and Sys. (September 1993)

    Google Scholar 

  3. Appel, A.W., Felten, E.W.: Proof-carrying authentication. In: Proc. 6th ACM Conference on Computer and Communications Security (November 1999)

    Google Scholar 

  4. Appel, A.W., Michael, N., Stump, A., Virga, R.: A trustworthy proof checker. J. Automated Reasoning 31(3-4), 231–260 (2003)

    Article  MATH  Google Scholar 

  5. Balfanz, D., Dean, D., Spreitzer, M.: A security infrastructure for distributed Java applications. In: Proc. 21st IEEE Symposium on Security and Privacy (2002)

    Google Scholar 

  6. Bauer, L., Garriss, S., McCune, J.M., Reiter, M.K., Rouse, J., Rutenbar, P.: Device-enabled authorization in the Grey system. Technical Report CMU-CS-05- 111, Computer Science Department, Carnegie Mellon University (February 2005)

    Google Scholar 

  7. Bauer, L., Garriss, S., Reiter, M.K.: Distributed proving in access-control systems. In: Proc. 2005 IEEE Symposium on Security and Privacy (May 2005)

    Google Scholar 

  8. Bauer, L., Schneider, M.A., Felten, E.W.: A general and flexible access-control system for the Web. In: Proc. 11th USENIX Security Symposium (August 2002)

    Google Scholar 

  9. Beaufour, A., Bonnet, P.: Personal servers as digital keys. In: Proc. 2nd IEEE International Conference of Pervasive Computing and Communications (March 2004)

    Google Scholar 

  10. Blaze, M., Feigenbaum, J., Strauss, M.: Compliance checking in the Policy- Maker trust-management system. In: Proc. 2nd Financial Crypto Conference (1998)

    Google Scholar 

  11. Church, A.: A formulation of the simple theory of types. J. Symbolic Logic (1940)

    Google Scholar 

  12. Coquand, T.: An algorithm for testing conversion in type theory. In: Huet, G., Plotkin, G. (eds.) Logical Frameworks, pp. 255–280 (1991)

    Google Scholar 

  13. de Ipiña, D.L., Mendonça, P., Hopper, A.: TRIP: a low-cost vision-based location system for ubiquitous computing. Pers. and Ubiq. Comp. 6(3) (2002)

    Google Scholar 

  14. Dohrmann, S., Ellison, C.: Public key support for collaborative groups. In: Proc. First Annual PKI Research Workshop (April 2002)

    Google Scholar 

  15. Ellison, C., Frantz, B., Lampson, B., Rivest, R., Thomas, B., Ylonen, T.: SPKI certificate theory. RFC 2693 (September 1999)

    Google Scholar 

  16. Ellison, C.M., Frantz, B., Lampson, B., Rivest, R.: Simple public key certificate. Internet Engineering Task Force Draft (July 1997)

    Google Scholar 

  17. Goldberg, I.: Visual key fingerprint code (1996), Available at http://www.cs.berkeley.edu/iang/visprint.c

  18. Halpern, J.Y., van der Meyden, R.: A logic for SDSI’s linked local name spaces. In: Proc. 12th IEEE Computer Security Foundations Workshop (1999)

    Google Scholar 

  19. Harper, R., Honsell, F., Plotkin, G.: A framework for defining logics. J. ACM 40(1), 143–184 (1993)

    Article  MATH  MathSciNet  Google Scholar 

  20. Lampson, B., Abadi, M., Burrows, M., Wobber, E.: Authentication in distributed systems: Theory and practice. ACM Trans. Comp. Sys. 10(4), 265–310 (1992)

    Article  Google Scholar 

  21. Levin, R.: PGP snowflake. Personal communication (1996)

    Google Scholar 

  22. MacKenzie, P., Reiter, M.K.: Networked cryptographic devices resilient to capture. International Journal of Information Security 2(1), 1–20 (2003)

    Article  Google Scholar 

  23. McCune, J.M., Perrig, A., Reiter, M.K.: Seeing-is-believing: Using camera phones for human-verifiable authentication. In: Proc. 2005 IEEE Symposium on Security and Privacy (May 2005)

    Google Scholar 

  24. Perrig, A., Song, D.: Hash visualization: A new technique to improve real-world security. In: Proc. 1999 Intern. Work. Crypto. Techn. and E-Comm. (July 1999)

    Google Scholar 

  25. Ramsdell, B.: Secure/multipurpose internet mail extensions (S/MIME) version 3.1: Message specification. RFC 3850 (July 2004)

    Google Scholar 

  26. Ravi, N., Stern, P., Desai, N., Iftode, L.: Accessing ubiquitous services using smart phones. In: Proc. 3rd Intern. Conf. Pervasive Comp. and Comm. (2005)

    Google Scholar 

  27. Rivest, R.L., Lampson, B.: SDSI—A simple distributed security infrastructure. Presented at CRYPTO 1996 Rumpsession (April 1996)

    Google Scholar 

  28. Rohs, M., Gfeller, B.: Using camera-equipped mobile phones for interacting with real-world objects. Advances in Pervasive Computing, pp. 265–271 (April 2004)

    Google Scholar 

  29. Scott, D., Sharp, R., Madhavapeddy, A., Upton, E.: Using visual tags to bypass Bluetooth device discovery. Mobile Comp. and Comm. Review 1(2) (January 2005)

    Google Scholar 

  30. Slawsby, A., Leibovitch, A.: Worldwide mobile phone 2004–2008 forecast update and 1H04 vendor shares (December 2004), http://www.idc.com/getdoc.jsp?containerId=32336

  31. Wobber, E., Abadi, M., Burrows, M., Lampson, B.: Authentication in the Taos operating system. ACM Trans. Comp. Sys. 12(1), 3–32 (1994)

    Article  Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Carnegie Mellon University, Pittsburgh, Pennsylvania, USA

    Lujo Bauer, Scott Garriss, Jonathan M. McCune, Michael K. Reiter, Jason Rouse & Peter Rutenbar

Authors
  1. Lujo Bauer
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Scott Garriss
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Jonathan M. McCune
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Michael K. Reiter
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Jason Rouse
    View author publications

    You can also search for this author in PubMed Google Scholar

  6. Peter Rutenbar
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Cryptography and Security Department Institute for Infocomm Research, Singapore

    Jianying Zhou

  2. Department of Information and Communication Technologies, University of A Coruña, Spain

    Javier Lopez

  3. School of Information Systems, Singapore Management University, Singapore

    Robert H. Deng

  4. Institute for Infocomm Research, 119613, Singapore

    Feng Bao

Rights and permissions

Reprints and permissions

Copyright information

© 2005 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Bauer, L., Garriss, S., McCune, J.M., Reiter, M.K., Rouse, J., Rutenbar, P. (2005). Device-Enabled Authorization in the Grey System. In: Zhou, J., Lopez, J., Deng, R.H., Bao, F. (eds) Information Security. ISC 2005. Lecture Notes in Computer Science, vol 3650. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11556992_31

Download citation

  • DOI: https://doi.org/10.1007/11556992_31

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-29001-8

  • Online ISBN: 978-3-540-31930-6

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation