Context-Aware User Authentication - Supporting Proximity-Based Login in Pervasive Computing (FULL PAPER)
Jakob E. Bardram, Rasmus E. Kjær, and Michael Ø. Pedersen
Centre for Pervasive Computing, Department of Computer Science, University of Aarhus
user authentication
- what a user HAS, KNOWS, IS
requirements
- secure
- triggered by proximity
- active gesturing
- support for logout
design
- uses a physical token
-- for active gestures
-- cryptographic unit
- context-aware
-- verify location
-- logout
-fall-back mechanism
-- automatic
-- password
-- username + password
token
- java smartcard
-- id, pass, pair of secret and public key
context monitors
- wlan
- rfid
- voice
- connect to context server, which sends data back to clients
security issues
- location accuracy
-- maintain sensor accuracy
-- accuracy algorithm
- trustworthy data
-- monitor authentication
- what is "sufficiently secure"?
new personal tokens
- "personal pen"
-- contactless smartreader from Philips (MIFARE PRO)
-- [but people notoriously lose pens... is this an issue?]
- passive RFID tags woven into white lab coats
Q: Jalal Al-Muhtadi, U Illinois
How close do you have to be? Logout parameters?
A: enough processing power?
Q: Trevor Pering, Intel Research
Different read/write privileges?
A: long answer
Q: Jurgen someone from Zurich
Interaction with delicate medical equipment on RF spectrum?
A: Work is being done on interference and RF now
Leave a comment