Secure device pairing: A survey

IEEE Communications Surveys and Tutorials

Volumn 16, Issue 1, 2014, Pages 17-40

  Mirzadeh, Shahab ^a   Cruickshank, Haitham ^a   Tafazolli, Rahim ^a  

^a UNIVERSITY OF SURREY   (United Kingdom)

Author keywords

key management; machine to machine communication; pervasive computing; security

Indexed keywords

EID: 84894666219     PISSN: None     EISSN: 1553877X     Source Type: Journal    
DOI: 10.1109/SURV.2013.111413.00196     Document Type: Article

References (55)

1. I. Cha, Y. Shah, A. Schmidt, A. Leicher, and M. Meyerstein, "Trust in m2m communication," IEEE Veh. Technol. Mag., vol. 4, no. 3, pp. 69-75, 2009.
2. ETSI, Smart Cards; Smart Card Platform requirements (Release 9), ETSI Std. ETSI TS 102 412 V9.0.1, January 2010.
3. 3GPP, "Feasibility study on the security aspects of remote provisioning and change of subscription for machine to machine (m2m) equipment (release 9)," vol. 55, no. GPP TR 33.812 V9.2.0.
4. W. Diffie and M. Hellman, "New directions in cryptography," IEEE Trans. Inf. Theory, vol. 22, no. 6, pp. 644-654, 1976.
5. V. Nechaev, "Complexity of a determinate algorithm for the discrete logarithm," Mathematical Notes, vol. 55, no. 2, pp. 165-172, 1994.
6. V. Shoup, "Lower bounds for discrete logarithms and related problems." Springer-Verlag, 1997, pp. 256-266.
7. D. Harkins and D. Carrel, "The internet key exchange (ike),rfc 2409," 1998.
8. L. Law, A. Menezes, M. Qu, J. Solinas, and S. Vanstone, "An efficient protocol for authenticated key agreement," Des. Codes Cryptography, vol. 28, no. 2, pp. 119-134, Mar. 2003.
9. W. Diffie, P. C. Van Oorschot, and M. J. Wiener, "Authentication and authenticated key exchanges," Des. Codes Cryptography, vol. 2, no. 2, pp. 107-125, Jun. 1992.
10. S. Bellovin and M. Merritt, "Encrypted key exchange: passwordbased protocols secure against dictionary attacks," in Proc. 1992 IEEE Computer Society Symp. Research in Security and Privacy, 1992, pp. 72-84. (Pubitemid 23569189)
11. D. Dolev and A. C. Yao, "On the security of public key protocols," IEEE Trans. Inf. Theory, , vol. 29, no. 2, pp. 198-208, 1983.
12. D. Balfanz, D. K. Smetters, P. Stewart, and H. C. Wong, "Talking to strangers: Authentication in ad-hoc wireless networks." in NDSS, 2002.
13. S. Mirzdeh, H. Affifi, and M. Duspiva, "Deliverable d4. 3.2: Final version of the network-level security architecture specification," IST-507102 MAGNET Project, Tech. Rep., 2005.
14. R. L. Rivest and A. Shamir, "How to expose an eavesdropper," Commun. ACM, vol. 27, no. 4, pp. 393-394, Apr. 1984.
15. D. W. Davies and W. L. Price, Security for computer networks: an introduction to data security in teleprocessing and electronic funds transfer, 2nd ed. Chichester: Wiley, 1989.
16. S. Bellovin and M. Merritt, "An attack on the interlock protocol when used for authentication," IEEE Trans. Inf. Theory, vol. 40, no. 1, pp. 273-275, 1994.
17. D. P. Maher, "Secure communication method and apparatus," US Patent US Patent 5,450,493, 1995.
18. F. Stajano and R. Anderson, "The resurrecting duckling: Security issues for ad-hoc wireless networks." Springer-Verlag, 1999, pp. 172-194.
19. M. Vuagnoux and S. Pasini, "An improved technique to discover compromising electromagnetic emanations," in 2010 IEEE Int. Symp. Electromagnetic Compatibility (EMC), 2010, pp. 121-126.
20. M. G. Kuhn, "Electromagnetic eavesdropping risks of flat-panel displays," in Proc. 4th int. conf. on Privacy Enhancing Technologies, ser. PET'04. Berlin, Heidelberg: Springer-Verlag, 2005, pp. 88-107. (Pubitemid 41251999)
21. J. McCune, A. Perrig, and M. Reiter, "Seeing-is-believing: using camera phones for human-verifiable authentication," in IEEE Symp. Security and Privacy, 2005 , 2005, pp. 110-124. (Pubitemid 41543650)
22. N. Saxena, J.-E. Ekberg, K. Kostiainen, and N. Asokan, "Secure device pairing based on a visual channel," in 2006 IEEE Symp. Security and Privacy, 2006, pp. 6-313.
23. C. Gehrmann and K. Nyberg, "Manual authentication for wireless devices," RSA Cryptobytes, vol. 7, p. 2004, 2004.
24. D. R. Stinson, "Universal hashing and authentication codes," in Advances in Cryptology-CRYPTO'91. Springer, 1992, pp. 74-85.
25. J.-H. Hoepman, "The ephemeral pairing problem," in Financial Cryptography, ser. Lecture Notes in Computer Science, A. Juels, Ed. Springer Berlin Heidelberg, 2004, vol. 3110, pp. 212-226.
26. J. Katz, R. Ostrovsky, and M. Yung, "Efficient password- authenticated key exchange using human-memorable passwords," in Advances in Cryptology-EUROCRYPT 2001, ser. Lecture Notes in Computer Science, B. Pfitzmann, Ed. Springer Berlin Heidelberg, 2001, vol. 2045, pp. 475-494. (Pubitemid 33275849)
27. M. Bellare, D. Pointcheval, and P. Rogaway, "Authenticated key exchange secure against dictionary attacks," in Advances in Cryptology-EUROCRYPT 2000, ser. Lecture Notes in Computer Science, B. Preneel, Ed. Springer Berlin Heidelberg, 2000, vol. 1807, pp. 139-155.
28. S. Vaudenay, "Secure communications over insecure channels based on short authenticated strings," in Advances in Cryptology-CRYPTO 2005, ser. Lecture Notes in Computer Science, V. Shoup, Ed. Springer Berlin Heidelberg, 2005, vol. 3621, pp. 309-326. (Pubitemid 43902121)
29. L. H. Nguyen and A. W. Roscoe, "Authentication protocols based on low-bandwidth unspoofable channels: a comparative survey," J. Computer Security, vol. 19, no. 1, pp. 139-201, 2011.
30. M. Cagalj, S. Capkun, and J.-P. Hubaux, "Key agreement in peer-to peer wireless networks," Proc. IEEE, vol. 94, no. 2, pp. 467-478, 2006. (Pubitemid 43145998)
31. F. L. Wong and F. Stajano, "Multi-channel protocols," in Proc. Security Protocols Workshop. Springer, 2005.
32. F. L. Wong and F. Stajano, "Multichannel security protocols," IEEE Pervasive Computing, vol. 6, no. 4, pp. 31-39, 2007. (Pubitemid 47594392)
33. S. Pasini and S. Vaudenay, "Sas-based authenticated key agreement," in Public Key Cryptography-PKC 2006, ser. Lecture Notes in Computer Science, M. Yung, Y. Dodis, A. Kiayias, and T. Malkin, Eds. Springer Berlin Heidelberg, 2006, vol. 3958, pp. 395-409. (Pubitemid 44029595)
34. M. Bellare and P. Rogaway, "Entity authentication and key distribution," in Advances in Cryptology-CRYPTO'93, ser. Lecture Notes in Computer Science, D. Stinson, Ed. Springer Berlin Heidelberg, 1994, vol. 773, pp. 232-249.
35. -, "Provably secure session key distribution: the three party case," in Proc. 27th annu. ACM symp. Theory of computing, ser. STOC '95. New York, NY, USA: ACM, 1995, pp. 57-66.
36. S. Laur and K. Nyberg, "Efficient mutual data authentication using manually authenticated strings," in Cryptology and Network Security, ser. Lecture Notes in Computer Science, D. Pointcheval, Y. Mu, and K. Chen, Eds. Springer Berlin Heidelberg, 2006, vol. 4301, pp. 90-107.
37. S. Laur, N. Asokan, and K. Nyberg, "Efficient mutual data authentication using manually authenticated strings," Research Report in the IACR ePrint archive, November 2005.
38. S. Capkun, M. Cagalj, R. Rengaswamy, I. Tsigkogiannis, J.-P. Hubaux, and M. Srivastava, "Integrity codes: Message integrity protection and authentication over insecure channels," IEEE Trans. Dependable and Secure Computing, vol. 5, no. 4, pp. 208-223, 2008.
39. S. Gollakota, N. Ahmed, N. Zeldovich, and D. Katabi, "Secure in-band wireless pairing," in Proc. 20th USENIX conf. on Security, ser. SEC'11. Berkeley, CA, USA: USENIX Association, 2011, pp. 16-16.
40. J. Valkonen, N. Asokan, and K. Nyberg, "Ad hoc security associations for groups," in Proc. 3rd European conf. on Security and Privacy in Ad-Hoc and Sensor Networks, ser. ESAS'06. Berlin, Heidelberg: Springer-Verlag, 2006, pp. 150-164.
41. F.-L. Wong and F. Stajano, "Multi-channel protocols for group key agreement in arbitrary topologies," in Proc. 4th annu. IEEE int. conf. Pervasive Computing and Commun. Workshops, ser. PERCOMW '06. Washington, DC, USA: IEEE Computer Society, 2006, pp. 246.
42. M. Steiner, G. Tsudik, and M. Waidner, "Cliques: a new approach to group key agreement," in Proc. 18th Int. Conf. Distributed Computing Systems, 1998., 1998, pp. 380-387.
43. L. H. Nguyen and A. W. Roscoe, "Efficient group authentication protocol based on human interaction," in Proc. Workshop on Foundation of Computer Security and Automated Reasoning Protocol Security Analysis (FCS-ARSPA, 2006, pp. 9-33.
44. -, "Authenticating ad hoc networks by comparison of short digests," Inf. Comput., vol. 206, no. 2-4, pp. 250-271, Feb. 2008.
45. A. W. Roscoe, "Human-centred computer security," 2005. [Online]. Available: http://www.cs.ox.ac.uk/people/bill.roscoe/publications/113. pdf
46. T. Perkovic, M. Cagalj, T. Mastelic, N. Saxena, and D. Begusic, "Secure initialization of multiple constrained wireless devices for an unaided user," IEEE Trans. Mobile Comput., vol. 11, no. 2, pp. 337-351, 2012.
47. S. Laur and S. Pasini, "Sas-based group authentication and key agreement protocols," in In Public Key Cryptography, 2008.
48. M. Burmester and Y. Desmedt, "A secure and efficient conference key distribution system (extended abstract)," in Proc. Advances in Cryptology-EUROCRYPT '94, Workshop on the Theory and Application of Cryptographic Techniques, Perugia, Italy, May 9-12, 1994, ser. Lecture Notes in Computer Science, vol. 950. Springer, 1994, pp. 275-286.
49. -, "A secure and scalable group key exchange system," Information Processing Lett., vol. 94, no. 3, pp. 137-143, 2005. (Pubitemid 40391340)
50. M. Manulis, "Contributory group key agreement protocols, revisited for mobile ad-hoc groups," IEEE Int. Conf. Mobile Adhoc and Sensor Systems Conf., vol. 0, p. 818, 2005.
51. A. Kumar, N. Saxena, G. Tsudik, and E. Uzun, "Caveat eptor: A comparative study of secure device pairing methods," in IEEE Int. Conf. Pervasive Computing and Commun., 2009. PerCom 2009., 2009, pp. 1-10.
52. R. Nithyanand, N. Saxena, G. Tsudik, and E. Uzun, "Groupthink: usability of secure group association for wireless devices," in Proc. 12th ACM int. conf. on Ubiquitous computing, ser. Ubicomp '10. New York, NY, USA: ACM, 2010, pp. 331-340.
53. J. Carter and M. N. Wegman, "Universal classes of hash functions," J. Computer and System Sciences, vol. 18, no. 2, pp. 143-154, 1979.
54. M. N. Wegman and J. Carter, "New hash functions and their use in authentication and set equality," J. Computer and System Sciences, vol. 22, no. 3, pp. 265-279, 1981. (Pubitemid 12444638)
55. M. Blum, "Coin flipping by telephone a protocol for solving impossible problems," SIGACT News, vol. 15, no. 1, pp. 23-27, Jan. 1983.