A Proximity Authentication System for Smartphones

Lingjun Li, Xinxin Zhao, Guoliang Xue

Research output: Contribution to journalArticle

3 Citations (Scopus)

Abstract

Authenticating whether two smartphones are in close proximity is important in smartphone security. For example, the authentication result can be used to pair two devices and construct a secure communication channel between them. Many existing proximity authentication systems rely on short range networks-the communication is usually restricted in short range networks. However, this approach is inadequate when we want to verify whether the communication distance is within a few centimeters, i.e. near field. To address this challenge, many other techniques construct systems based on the near field communication (NFC) system. Unfortunately, only a small portion of smart devices in the current market are equipped with NFC chips. The purpose of this paper is to provide a close proximity authentication system which does not depend on NFC chips. We devise a system to achieve close proximity authentication by using correlated finger movements on the two smartphones. Human input usually contains errors and is of low entropy, which affects the usability and security of our system. We solve these issues in an efficient way, considering the limited computational resources on smart devices. Our system does not need any prior secret information shared between the two devices, and generates the same high-entropy cryptographic key for both devices in a successful authentication. The efficiency of the system is validated by evaluations on Motorola Droid smartphones.

Original languageEnglish (US)
Pages (from-to)605-616
Number of pages12
JournalIEEE Transactions on Dependable and Secure Computing
Volume13
Issue number6
DOIs
StatePublished - Nov 1 2016

Fingerprint

Smartphones
Authentication
Entropy
Communication
Communication systems
Near field communication

Keywords

  • authenticated key exchange
  • device authentication
  • protocol design
  • Smart devices

ASJC Scopus subject areas

  • Electrical and Electronic Engineering

Cite this

A Proximity Authentication System for Smartphones. / Li, Lingjun; Zhao, Xinxin; Xue, Guoliang.

In: IEEE Transactions on Dependable and Secure Computing, Vol. 13, No. 6, 01.11.2016, p. 605-616.

Research output: Contribution to journalArticle

@article{0bbdbd61d1494fe580498ee3b40b89f8,
title = "A Proximity Authentication System for Smartphones",
abstract = "Authenticating whether two smartphones are in close proximity is important in smartphone security. For example, the authentication result can be used to pair two devices and construct a secure communication channel between them. Many existing proximity authentication systems rely on short range networks-the communication is usually restricted in short range networks. However, this approach is inadequate when we want to verify whether the communication distance is within a few centimeters, i.e. near field. To address this challenge, many other techniques construct systems based on the near field communication (NFC) system. Unfortunately, only a small portion of smart devices in the current market are equipped with NFC chips. The purpose of this paper is to provide a close proximity authentication system which does not depend on NFC chips. We devise a system to achieve close proximity authentication by using correlated finger movements on the two smartphones. Human input usually contains errors and is of low entropy, which affects the usability and security of our system. We solve these issues in an efficient way, considering the limited computational resources on smart devices. Our system does not need any prior secret information shared between the two devices, and generates the same high-entropy cryptographic key for both devices in a successful authentication. The efficiency of the system is validated by evaluations on Motorola Droid smartphones.",
keywords = "authenticated key exchange, device authentication, protocol design, Smart devices",
author = "Lingjun Li and Xinxin Zhao and Guoliang Xue",
year = "2016",
month = "11",
day = "1",
doi = "10.1109/TDSC.2015.2427848",
language = "English (US)",
volume = "13",
pages = "605--616",
journal = "IEEE Transactions on Dependable and Secure Computing",
issn = "1545-5971",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
number = "6",

}

TY - JOUR

T1 - A Proximity Authentication System for Smartphones

AU - Li, Lingjun

AU - Zhao, Xinxin

AU - Xue, Guoliang

PY - 2016/11/1

Y1 - 2016/11/1

N2 - Authenticating whether two smartphones are in close proximity is important in smartphone security. For example, the authentication result can be used to pair two devices and construct a secure communication channel between them. Many existing proximity authentication systems rely on short range networks-the communication is usually restricted in short range networks. However, this approach is inadequate when we want to verify whether the communication distance is within a few centimeters, i.e. near field. To address this challenge, many other techniques construct systems based on the near field communication (NFC) system. Unfortunately, only a small portion of smart devices in the current market are equipped with NFC chips. The purpose of this paper is to provide a close proximity authentication system which does not depend on NFC chips. We devise a system to achieve close proximity authentication by using correlated finger movements on the two smartphones. Human input usually contains errors and is of low entropy, which affects the usability and security of our system. We solve these issues in an efficient way, considering the limited computational resources on smart devices. Our system does not need any prior secret information shared between the two devices, and generates the same high-entropy cryptographic key for both devices in a successful authentication. The efficiency of the system is validated by evaluations on Motorola Droid smartphones.

AB - Authenticating whether two smartphones are in close proximity is important in smartphone security. For example, the authentication result can be used to pair two devices and construct a secure communication channel between them. Many existing proximity authentication systems rely on short range networks-the communication is usually restricted in short range networks. However, this approach is inadequate when we want to verify whether the communication distance is within a few centimeters, i.e. near field. To address this challenge, many other techniques construct systems based on the near field communication (NFC) system. Unfortunately, only a small portion of smart devices in the current market are equipped with NFC chips. The purpose of this paper is to provide a close proximity authentication system which does not depend on NFC chips. We devise a system to achieve close proximity authentication by using correlated finger movements on the two smartphones. Human input usually contains errors and is of low entropy, which affects the usability and security of our system. We solve these issues in an efficient way, considering the limited computational resources on smart devices. Our system does not need any prior secret information shared between the two devices, and generates the same high-entropy cryptographic key for both devices in a successful authentication. The efficiency of the system is validated by evaluations on Motorola Droid smartphones.

KW - authenticated key exchange

KW - device authentication

KW - protocol design

KW - Smart devices

UR - http://www.scopus.com/inward/record.url?scp=85027715600&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85027715600&partnerID=8YFLogxK

U2 - 10.1109/TDSC.2015.2427848

DO - 10.1109/TDSC.2015.2427848

M3 - Article

VL - 13

SP - 605

EP - 616

JO - IEEE Transactions on Dependable and Secure Computing

JF - IEEE Transactions on Dependable and Secure Computing

SN - 1545-5971

IS - 6

ER -