Location-enhanced authentication using the IoT: because you cannot be in two places at once

Proceedings of the 32nd Annual Conference on Computer Security Applications Pub Date : 2016-12-05 DOI:10.1145/2991079.2991090

Ioannis Agadakos, Per A. Hallgren, D. Damopoulos, A. Sabelfeld, G. Portokalidis

{"title":"Location-enhanced authentication using the IoT: because you cannot be in two places at once","authors":"Ioannis Agadakos, Per A. Hallgren, D. Damopoulos, A. Sabelfeld, G. Portokalidis","doi":"10.1145/2991079.2991090","DOIUrl":null,"url":null,"abstract":"User location can act as an additional factor of authentication in scenarios where physical presence is required, such as when making in-person purchases or unlocking a vehicle. This paper proposes a novel approach for estimating user location and modeling user movement using the Internet of Things (IoT). Our goal is to utilize its scale and diversity to estimate location more robustly, than solutions based on smartphones alone, and stop adversaries from using compromised user credentials (e.g., stolen keys, passwords, etc.), when sufficient evidence physically locates them elsewhere. To locate users, we leverage the increasing number of IoT devices carried and used by them and the smart environments that observe these devices. We also exploit the ability of many IoT devices to \"sense\" the user. To demonstrate our approach, we build a system, called Icelus. Our experiments with it show that it exhibits a smaller false-rejection rate than smartphone-based location-based authentication (LBA) and it rejects attackers with few errors (i.e., false acceptances).","PeriodicalId":419419,"journal":{"name":"Proceedings of the 32nd Annual Conference on Computer Security Applications","volume":"79 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-12-05","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"22","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 32nd Annual Conference on Computer Security Applications","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/2991079.2991090","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 22

Abstract

User location can act as an additional factor of authentication in scenarios where physical presence is required, such as when making in-person purchases or unlocking a vehicle. This paper proposes a novel approach for estimating user location and modeling user movement using the Internet of Things (IoT). Our goal is to utilize its scale and diversity to estimate location more robustly, than solutions based on smartphones alone, and stop adversaries from using compromised user credentials (e.g., stolen keys, passwords, etc.), when sufficient evidence physically locates them elsewhere. To locate users, we leverage the increasing number of IoT devices carried and used by them and the smart environments that observe these devices. We also exploit the ability of many IoT devices to "sense" the user. To demonstrate our approach, we build a system, called Icelus. Our experiments with it show that it exhibits a smaller false-rejection rate than smartphone-based location-based authentication (LBA) and it rejects attackers with few errors (i.e., false acceptances).

查看原文本刊更多论文

使用物联网的位置增强身份验证:因为你不能同时在两个地方

在需要实际存在的情况下，例如在进行亲自购买或解锁车辆时，用户位置可以作为额外的身份验证因素。本文提出了一种利用物联网(IoT)估计用户位置和建模用户运动的新方法。我们的目标是利用其规模和多样性来更稳健地估计位置，而不是单独基于智能手机的解决方案，并阻止对手使用受损的用户凭证(例如，被盗的密钥，密码等)，当有足够的证据在其他地方物理定位它们时。为了定位用户，我们利用了用户携带和使用的越来越多的物联网设备，以及观察这些设备的智能环境。我们还利用许多物联网设备“感知”用户的能力。为了演示我们的方法，我们建立了一个叫做冰岛的系统。我们的实验表明，它比基于智能手机的基于位置的身份验证(LBA)具有更小的错误拒绝率，并且它以很少的错误(即错误接受)拒绝攻击者。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings of the 32nd Annual Conference on Computer Security Applications

自引率

0.00%

发文量