Formalising Application-Driven Authentication & Access-Control based on Users’ Companion Devices

Chris Culnane; Ioana Boureanu; Jean Snyman; Stephan Wesemeyer; Helen Treharne

doi:10.1145/3579856.3595800

Back

Formalising Application-Driven Authentication & Access-Control based on Users’ Companion Devices

Conference proceeding

Open access

Formalising Application-Driven Authentication & Access-Control based on Users’ Companion Devices

Chris Culnane, Ioana Boureanu, Jean Snyman, Stephan Wesemeyer and Helen Treharne

Proceedings of the 2023 ACM Asia Conference on Computer and Communications Security, pp.884-898

ACM Conferences

ASIA CCS '23: ACM Asia Conference on Computer and Communications Security (Melbourne, Australia, 10/07/2023–14/07/2023)

07/2023

DOI: https://doi.org/10.1145/3579856.3595800

Abstract

Computer systems organization

Embedded and cyber-physical systems

Embedded systems

ACM proceedings

LATEX

text tagging

We define and formalise a generic cryptographic construction that underpins coupling of companion devices, e.g., biometrics-enabled devices, with main devices (e.g., PCs), in a user-aware manner, mainly for on-demand authentication and secure storage for applications running on the main device. We define the security requirements of such constructions, provide a full instantiation in a protocol-suite and prove its computational as well as Dolev-Yao security. Finally, we implement our protocol suite and one password-manager use-case.

Files and links (2)

pdf

Formalising920.20 kBDownload View

Published (Version of record)CC BY-NC-ND V4.0, Open Access

url

https://asiaccs2023.org/View

Event WebsiteConference website

Metrics

36 Record Views

Details

Title: Formalising Application-Driven Authentication & Access-Control based on Users’ Companion Devices
Creators: Chris Culnane - University of Surrey
Ioana Boureanu - University of Surrey, School of Computer Science and Electronic Engineering
Jean Snyman - University of Surrey, School of Computer Science and Electronic Engineering
Stephan Wesemeyer - Univeristy of Surrey
Helen Treharne - University of Surrey, School of Computer Science and Electronic Engineering
Publication Details: Proceedings of the 2023 ACM Asia Conference on Computer and Communications Security, pp.884-898
Conference: ASIA CCS '23: ACM Asia Conference on Computer and Communications Security (Melbourne, Australia, 10/07/2023–14/07/2023)
Series: ACM Conferences
Publisher: Association for Computing Machinery (ACM)
Number of pages: 15
First online publication date: 10/07/2023
Publication Date: 07/2023
Date accepted for publication: 23/11/2022
Identifiers: 99816463802346; WOS:001053857900069
Copyright: © 2023 Copyright held by the owner/author(s). Publication rights licensed to ACM. Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than the author(s) must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from permissions@acm.org.
Academic Unit: School of Computer Science and Electronic Engineering
Language: English
Resource Type: Conference proceeding

Formalising Application-Driven Authentication & Access-Control based on Users’ Companion Devices

Abstract

Files and links (2)

Metrics

Details

Usage Policy