Scheck, Markus ; Putz, Florentin ; Hessel, Frank ; Leinweber, Hermann ; Crystall, Jonatan ; Hollick, Matthias (2023)
DEMO: Secure Bootstrapping of Smart Speakers Using Acoustic Communication.
WiSec '23: 16th ACM Conference on Security and Privacy in Wireless and Mobile Networks. Guildford, Surrey, United Kingdom (29.05.2023-01.06.2023)
doi: 10.26083/tuprints-00024180
Konferenzveröffentlichung, Erstveröffentlichung, Verlagsversion
Kurzbeschreibung (Abstract)
Smart speakers are highly privacy-sensitive devices: They are located in our homes and provide an Internet-enabled microphone, making them a prime target for attackers. The pairing between a client device and the speaker must be protected to prohibit adversaries from accessing the device. Most commercial protocols are vulnerable to nearby adversaries as they do not probe for human presence at the speaker or proximity between both devices. In addition to security, the protocol must provide a user-friendly way for initial bootstrapping of the speaker. We design an open pairing protocol for the establishment of a shared secret between both devices using acoustic messaging to guarantee proximity, and release our implementation for the smart speaker as well as Android and Linux clients as open-source software on GitHub.
| Typ des Eintrags: | Konferenzveröffentlichung |
|---|---|
| Erschienen: | 2023 |
| Autor(en): | Scheck, Markus ; Putz, Florentin ; Hessel, Frank ; Leinweber, Hermann ; Crystall, Jonatan ; Hollick, Matthias |
| Art des Eintrags: | Erstveröffentlichung |
| Titel: | DEMO: Secure Bootstrapping of Smart Speakers Using Acoustic Communication |
| Sprache: | Englisch |
| Publikationsjahr: | 2023 |
| Ort: | Darmstadt |
| Veranstaltungstitel: | WiSec '23: 16th ACM Conference on Security and Privacy in Wireless and Mobile Networks |
| Veranstaltungsort: | Guildford, Surrey, United Kingdom |
| Veranstaltungsdatum: | 29.05.2023-01.06.2023 |
| DOI: | 10.26083/tuprints-00024180 |
| URL / URN: | https://tuprints.ulb.tu-darmstadt.de/24180 |
| Zugehörige Links: | |
| Kurzbeschreibung (Abstract): | Smart speakers are highly privacy-sensitive devices: They are located in our homes and provide an Internet-enabled microphone, making them a prime target for attackers. The pairing between a client device and the speaker must be protected to prohibit adversaries from accessing the device. Most commercial protocols are vulnerable to nearby adversaries as they do not probe for human presence at the speaker or proximity between both devices. In addition to security, the protocol must provide a user-friendly way for initial bootstrapping of the speaker. We design an open pairing protocol for the establishment of a shared secret between both devices using acoustic messaging to guarantee proximity, and release our implementation for the smart speaker as well as Android and Linux clients as open-source software on GitHub. |
| Freie Schlagworte: | Internet of Things, Secure Device Pairing, Device Association, Key Establishment, Key Exchange, Setup, Data over Sound, Authentication, emergenCITY_KOM |
| Status: | Verlagsversion |
| URN: | urn:nbn:de:tuda-tuprints-241809 |
| Sachgruppe der Dewey Dezimalklassifikatin (DDC): | 000 Allgemeines, Informatik, Informationswissenschaft > 004 Informatik |
| Fachbereich(e)/-gebiet(e): | 20 Fachbereich Informatik 20 Fachbereich Informatik > Sichere Mobile Netze LOEWE LOEWE > LOEWE-Zentren LOEWE > LOEWE-Zentren > emergenCITY |
| Hinterlegungsdatum: | 29 Jun 2023 11:48 |
| Letzte Änderung: | 30 Jun 2023 07:33 |
| PPN: | |
| Export: | |
| Suche nach Titel in: | TUfind oder in Google |
 |
Frage zum Eintrag |
Optionen (nur für Redakteure)
 |
Redaktionelle Details anzeigen |
Drucken
Impressum