Skip to main content
SpringerLink
Log in

Securely Propagating Authentication in an Ensemble of Personal Devices Using Single Sign-on

  • Conference paper
Security in Ad-hoc and Sensor Networks (ESAS 2004)

Part of the book series: Lecture Notes in Computer Science ((LNCCN,volume 3313))

Included in the following conference series:

  • 717 Accesses

Abstract

More and more, people will continuously be using ubiquitously available networked computational devices as they go about their lives: small personal devices that they carry, appliances that they find in their surroundings, and servers in remote data centers. Some of the data exchanged by these devices will be private and should be protected. Normally to protect data, users would need to authenticate themselves with a device by signing on to it. However it will be physically impossible to sign onto devices that have limited or no user interface and even if they all had a sufficient user interface it will be an intolerable burden to have to sign on to each of many devices, particularly as the membership of the ensemble of devices continuously changes with the user’s movements. Making authentication in this environment more difficult is the fact that these devices are usually connected in a personal area network that is neither secure nor reliable and uses a broadcast medium for communication. In this paper, we present a simple easy-to-use scheme that allows users to sign on to a single device and enable the rest of the devices connected in the personal area network automatically without requiring a central server or synchronized clocks. As well as being simple for the user, our solution is designed not only to prevent commonly used attacks like replay and man-in-the-middle but also to protect the user’s data even if the devices are lost or stolen.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Bellare, M., Rogaway, P.: Entity Authentication and Key Distribution. In: Stinson, D.R. (ed.) CRYPTO 1993. LNCS, vol. 773, pp. 232–249. Springer, Heidelberg (1994)

    Google Scholar 

  2. Bird, R., Gopal, I., Herzberg, A., Janson, P., Kutten, S., Lolva, R., Yung, M.: Systematic design of two-party authentication protocols. In: Feigenbaum, J. (ed.) CRYPTO 1991. LNCS, vol. 576, pp. 44–61. Springer, Heidelberg (1992)

    Google Scholar 

  3. Bellovin, S.M., Merritt, M.: Encrypted Key Exchange: Password-Based Protocols Secure Against Dictionary Attacks. In: Proceedings of the IEEE Symposium on Research in Security and Privacy, Oakland (May 1992)

    Google Scholar 

  4. Bellovin, S.M., Merritt, M.: Augmented Encrypted Key Exchange: a Password-Based Protocols Secure Against Dictionary Attacks and Password File Compromise. In: Proceedings of the 1st ACM Conference on Computer and Communications Security (1993)

    Google Scholar 

  5. Corner, M., Noble, B.: Zero-interaction authentication. In: Proceedings of the Eighth International conference on Mobile Computing and Networking (MOBICOM), pp. 1–11. ACM Press, New York (2002)

    Chapter  Google Scholar 

  6. Woo, T., Lam, S.: A semantic model for authentication protocols. In: Proceedings 1993 IEEE Symposium on Research in Security and Privacy (May 1993)

    Google Scholar 

  7. Steiner, J.G., Neuman, B.C., Schiller, J.I.: Kerberos: An Authentication Service for Open Network Systems. In: Usenix Conference Proceedings (1988)

    Google Scholar 

  8. Bellovin, S.M., Merritt, M.: Limitations of the kerberos authenication system. Computer Communication Review 20(5), 119–132 (1990)

    Article  Google Scholar 

  9. Kormann, D.P., Rubin, A.D.: Risks of the Passport Single Signon Protocol. Computer Networks 33 (2000)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. HP Labs,  

    Prakash Reddy, Eamonn O’Brien-Strain & Jim Rowson

Authors
  1. Prakash Reddy
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Eamonn O’Brien-Strain
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Jim Rowson
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. INRIA Rhône-Alpes, France

    Claude Castelluccia

  2. ITM, University of Karlsruhe (TH),  

    Hannes Hartenstein

  3. Horst Görtz Institute for IT Security, Ruhr University Bochum, 44780, Bochum, Germany

    Christof Paar

  4. NEC Europe Ltd.,  

    Dirk Westhoff

Rights and permissions

Reprints and permissions

Copyright information

© 2005 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Reddy, P., O’Brien-Strain, E., Rowson, J. (2005). Securely Propagating Authentication in an Ensemble of Personal Devices Using Single Sign-on. In: Castelluccia, C., Hartenstein, H., Paar, C., Westhoff, D. (eds) Security in Ad-hoc and Sensor Networks. ESAS 2004. Lecture Notes in Computer Science, vol 3313. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-30496-8_15

Download citation

  • DOI: https://doi.org/10.1007/978-3-540-30496-8_15

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-24396-0

  • Online ISBN: 978-3-540-30496-8

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation