RSA Laboratories - Authenticating Pervasive Devices with Human Protocols

Ari Juels

Citation: A. Juels and S. Weis. Authenticating Pervasive Devices with Human Protocols. Crypto ’05.

Abstract: Forgery and counterfeiting are emerging as serious security risks in low-cost pervasive computing devices. These devices lack the computational, storage, power, and communication resources necessary for most cryptographic authentication schemes. Surprisingly, low-cost pervasive devices like Radio Frequency Identification (RFID) tags share similar capabilities with another weak computing device: people.

These similarities motivate the adoption of techniques from human-computer security to the pervasive computing setting. This paper analyzes a particular human-to-computer authentication protocol designed by Hopper and Blum (HB), and shows it to be practical for low-cost pervasive devices. We offer an improved, concrete proof of security for the HB protocol against passive adversaries.

This paper also offers a new, augmented version of the HB protocol, named HB+, that is secure against active adversaries. The HB+, protocol is a novel, symmetric authentication protocol with a simple, low-cost implementation. We prove the security of the HB+, protocol against active adversaries based on the hardness of the Learning Parity with Noise (LPN) problem.

Click here for paper

Dr. Ari Juels Full Publication List Manuscripts & Miscellaneous Presentations Dr. Alina Oprea Kevin Bowers Dr. Nikos Triandopoulos Dr. Ting-Fang Yen Guoying Luo Prof. Ronald L. Rivest John Brainard Todd S. Leetham RSA Labs is Hiring	Home: Staff and Associates: Dr. Ari Juels: Full Publication List Authenticating Pervasive Devices with Human Protocols Ari Juels Citation: A. Juels and S. Weis. Authenticating Pervasive Devices with Human Protocols. Crypto ’05. Abstract: Forgery and counterfeiting are emerging as serious security risks in low-cost pervasive computing devices. These devices lack the computational, storage, power, and communication resources necessary for most cryptographic authentication schemes. Surprisingly, low-cost pervasive devices like Radio Frequency Identification (RFID) tags share similar capabilities with another weak computing device: people. These similarities motivate the adoption of techniques from human-computer security to the pervasive computing setting. This paper analyzes a particular human-to-computer authentication protocol designed by Hopper and Blum (HB), and shows it to be practical for low-cost pervasive devices. We offer an improved, concrete proof of security for the HB protocol against passive adversaries. This paper also offers a new, augmented version of the HB protocol, named HB+, that is secure against active adversaries. The HB+, protocol is a novel, symmetric authentication protocol with a simple, low-cost implementation. We prove the security of the HB+, protocol against active adversaries based on the hardness of the Learning Parity with Noise (LPN) problem. Click here for paper
		Email to a friend Print