Wireless Authentication Token Protocols

Dan Bailey, Sr. Research Scientist

RSA Securities, The Security Division of EMC Corporation

Friday October 10, 2008
11:00 a.m. - 12:00 p.m.
Fuller Labs 320

Abstract:

Motivated by the difficulties of static passwords, we explore the security and usability benefits of equipping users with an extremely limited, wireless (radio-frequency), output-only device. While it may seem counter-intuitive that a token that accepts no inputs and broadcasts its output using an untrusted medium can provide any security benefits, we propose and analyze a family of authentication and encryption protocols using a unidirectional token. Since unidirectional security devices seem mostly unexplored in the literature, we appeal to analysis frameworks for established protocols like Bellare and Rogaway's AKE. We additionally offer protocols of increasing cryptographic sophistication while still relying on a unidirectional token. Our prototype wireless security-token works with standard, Wi-Fi-enabled personal computers and requires no special-purpose hardware or drivers. Thanks to a new tunneling protocol, our token allows a computer to conduct an ongoing conventional 802.11 session and simultaneously receive token emissions.

______

Dan Bailey is a Senior Research Scientist at RSA Laboratories, part of the Security Division of EMC. At RSA Labs, Dan’s research interests include security for wireless devices and next-generation authenticators. In addition, Dan has been a leader in standardization efforts including serving as chairman of the ZigBee Alliance security working group, contributing co-editor for security of IEEE 802.15.3, and author of portions of the IEEE 1363a and 802.15.4 standards. Dan holds B.S. and M.S. degrees in Computer Science from Worcester Polytechnic Institute in Worcester, Massachusetts.

Host: Michael Gennert

Refreshments will be served.