This paper presents SPACE an application-level protocol for secure automatic ad-hoc connection-establishment between two devices based on their address book entries. The protocol is based on the simple premise that if two people have each others contact details in their address books, they probably know and trust each other in some limited way and this can form a basis for a trust relationship between their devices, without additional user intervention. This paper shows how the protocol is resistant to specific security attacks and can accommodate for privacy concerns. Existing connection-establishment protocols for Bluetooth and IEEE 802.11 have known security flaws, and can be compromised using well-known techniques and off-the-shelf hardware. In addition, these protocols require explicit user intervention, like entering a passkey.
Did you find this white paper useful?
28 out of 50 users found this white paper useful
Related white papers
IPv6 Usage With Various Operating Systems
In a nutshell, IPv6 (Internet Protocol version 6) is the successor to the most common Internet Protocol today (IPv4). This is largely driven by the fact that IPv4's 32-bit address...
Cisco IPICS Enhances Safety and Security at Cisco
Cisco campus in San Jose reaches up to 20,000 people per day. They wanted to manage on-premise emergency response and day-to-day safety and security operations as well as enable location-independent...
Route Fragility: A Novel Metric for Route Selection in Mobile Ad Hoc Networks
A key factor deciding the performance of a routing protocol in mobile ad hoc networks is the manner in which it adapts to route changes caused by mobility. Exploiting the...
Self-Configurable Key Pre-Distribution in Mobile Ad Hoc Networks
This paper presents two new schemes that, in the absence of a centralized support, allow a pair of nodes of a mobile ad hoc network to compute a shared key...
HTTP Traffic Modeling: Development and Application
This paper proposes a new HTTP model, which is based on the concept of aggregated behavior and presents two main advantages: small number of parameters and easy and precise load...
An Efficient Group Key Agreement Protocol for Ad Hoc Networks
A Group Key Agreement (GKA) protocol is a mechanism to establish a cryptographic key for a group of participants, based on each one's contribution, over a public network. The key,...
Discoverer: Automatic Protocol Reverse Engineering From Network Traces
Application-level protocol specifications are useful for many security applications, including intrusion prevention and detection that performs deep packet inspection and traffic normalization, and penetration testing that generates network inputs to...
