Seeing-is-believing: Using camera phones for human-verifiable authentication

Seeing-is-believing: Using camera phones for human-verifiable authentication (2005)

Cached

Download Links

Other Repositories/Bibliography

DBLP

by Jonathan M. Mccune , Adrian Perrig , Michael K. Reiter

Venue:	In IEEE Symposium on Security and Privacy
Citations:	103 - 13 self

BibTeX

@INPROCEEDINGS{Mccune05seeing-is-believing:using,
    author = {Jonathan M. Mccune and Adrian Perrig and Michael K. Reiter},
    title = {Seeing-is-believing: Using camera phones for human-verifiable authentication},
    booktitle = {In IEEE Symposium on Security and Privacy},
    year = {2005},
    pages = {110--124}
}

Years of Citing Articles

Bookmark

OpenURL

Abstract

Current mechanisms for authenticating communication between devices that share no prior context are inconvenient for ordinary users, without the assistance of a trusted authority. We present and analyze Seeing-Is-Believing, a system that utilizes 2D barcodes and cameraphones to implement a visual channel for authentication and demonstrative identification of devices. We apply this visual channel to several problems in computer security, including authenticated key exchange between devices that share no prior context, establishment of a trusted path for configuration of a TCG-compliant computing platform, and secure device configuration in the context of a smart home. 1.

Citations

2292	New directions in cryptography - Diffie, Hellmen - 1976
581	Kerberos: An authentication service for open network systems - Steiner, Neuman, et al. - 1988
410	The Resurrecting Duckling: Security Issues for Ad-Hoc Wireless Networks - Stajano, Anderson - 2000
360	The Official PGP User’s Guide - Zimmermann - 1995
293	Encrypted key exchange: Password-based protocols secure against dictionary attacks - Bellovin, Merritt - 1992
255	Polynomial codes over certain finite fields - Reed, Solomon - 1960
205	Selecting cryptographic key sizes - Lenstra, Verheul
197	Talking to strangers: Authentication in ad-hoc wireless networks - Balfanz, Smetters, et al. - 2002
191	Design and implementation of a TCG-based integrity measurement architecture - Sailer, Zhang, et al. - 2004
157	The Bluetooth Radio System - Haartsen - 2000
155	The secure remote password protocol - Wu - 1998
125	Provably secure password authenticated key exchange using Diffie-Hellman - Boyko, MacKenzie, et al. - 2000
117	Augmented encrypted key exchange: A password-based protocol secure against dictionary attacks and password le compromise - Bellovin, Merritt - 1994
102	The Internet Key Exchange (IKE - Harkins, Carrel - 1998
82	Kerberos authentication and authorization system - Miller, Neuman, et al. - 1987
82	Hash visualization: a new technique to improve real-world security - Perrig, Song - 1999
75	Key-Privacy in Public-Key Encryption - Bellare, Boldyreva, et al. - 2001
75	Web Spoofing: An Internet Con Game - Felten, Balfanz, et al. - 1997
74	Secure Communications over Insecure Channels Based on Short Authenticated Strings - Vaudenay
72	Loud and clear: Human verifiable authentication based on audio - Goodrich, Sirivianos, et al. - 2006
71	Mobility helps security in ad hoc networks - Capkun, Hubaux, et al. - 2003
69	Towards a practical public-key cryptosystem - Kohnfelder - 1978
68	Using Camera-Equipped Mobile Phones for Interacting with Real-World Objects - ROHS, GFELLER - 2004
64	Trusted paths for browsers - Ye, Smith, et al. - 2005
56	Efficient Mutual Data Authentication Using Manually Authenticated Strings - Laur, Nyberg - 2006
54	Measurement and analysis of spyware in a university environment - Saroiu, Gribble, et al. - 2004
47	The Transport Layer Security - Dierks, Rescorla - 2006
42	Soft tempest: Hidden data transmission using electromagnetic emanations - Kuhn, Anderson - 1998
41	Password-Authenticated Key Exchange Based on RSA - MacKenzie, Patel, et al. - 1976
40	Secure device pairing based on a visual channel,” Cryptology ePrint Archive, Report 2006/050 - Saxena, Ekberg, et al. - 2006
40	Usability Analysis of Secure Pairing Methods - Uzun, Karvonen, et al. - 2007
34	Optical time-domain eavesdropping risks of CRT displays - Kuhn
30	Phoolproof Phishing Prevention - Parno, Kuo, et al. - 2006
29	Using visual tags to bypass bluetooth device discovery - Scott, Sharp, et al. - 2005
27	vCard MIME Directory Profile - Dawson, Howes - 1998
26	The untrusted computer problem and camera-based authentication - Burnside, Clarke, et al. - 2002
25	Design of the EROS trusted window system - Shapiro, Vanderburgh, et al. - 2004
23	Public key support for collaborative groups - Dohrmann, Ellison - 2002
21	WWW electronic commerce and Java Trojan horses - Tygar, Whitten - 1996
17	A composable framework for secure multi-modal access to internet services from Post-PC devices - Ross, Hill, et al.
15	RFC 3174: US secure hashing algorithm 1 (SHA1 - Eastlake, Jone - 2001
13	Using Camera-Phones to Enhance Human Computer Interaction - Madhavapeddy, Scott, et al.
13	A MIME Content-Type for Directory Information - Howes, Smith
8	secure hash algorithm i - US - 2001
6	RFC 2246: The TLS protocol version 1.0. http: //www.ietf.org/rfc/rfc2246.txt - Dierks, Allen - 1999
6	Visual Key Fingerprint Code. http://www.cs.berkeley.edu/iang/visprint.c - Goldberg - 1996
6	visualization: A new technique to improve real-world security - Hash - 1999
5	RFC2426: vCard MIME directory profile. http://www.faqs.org/rfcs/ rfc2426.html - Dawson, Howes - 1998
5	Password authenticated key exchange based on - MacKenzie, Patel, et al. - 2000
4	Secure web authentication with mobile phones using keyed hash authentication - Gieseke, McLaughlin - 2005