COOB: Hybrid secure device pairing scheme in a hostile environment

Sameh Khalfaoui; Jean Leneutre; Arthur Villard; Jingxuan Ma; Pascal Urien

doi:10.1007/978-3-030-63095-9_27

COOB: Hybrid secure device pairing scheme in a hostile environment

Sameh Khalfaoui
, Jean Leneutre
, Arthur Villard
, Jingxuan Ma
, Pascal Urien

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Due to the scalability limitations, the secure device pairing of Internet of Things objects cannot be efficiently conducted based on traditional cryptographic techniques using a pre-shared security knowledge. The use of Out-of-Band (OoB) channels has been proposed as a way to authenticate the key establishment process but they require a relatively long time and an extensive user involvement to transfer the authentication bits. However, the context-based schemes exploit the randomness of the ambient environment to extract a common secret without an extensive user intervention under the requirement of having a secure perimeter during the extraction phase, which is considered as a strong security assumption. In this paper, we introduce a novel hybrid scheme, called COOB, that efficiently combines a state-of-the-art fast context-based encoder with our Out-of-Band based scheme. This protocol exploits a nonce exponentiation to achieve the temporary secrecy goal needed for the authentication. Our method provides security against an attacker that can violate the secure perimeter requirement, which is not supported by the existing contextual schemes. This security improvement has been formally validated in the symbolic model using the TAMARIN prover. Based on our implementation of the Out-of-Band channel, COOB enhances the usability by reducing the pairing time up to 39 % for an 80-bit OoB exchange while keeping an optimal protocol cost.

Original language	English
Title of host publication	Security and Privacy in Communication Networks - 16th EAI International Conference, SecureComm 2020, Proceedings
Editors	Noseong Park, Kun Sun, Sara Foresti, Kevin Butler, Nitesh Saxena
Publisher	Springer Science and Business Media Deutschland GmbH
Pages	419-438
Number of pages	20
ISBN (Print)	9783030630942
DOIs	https://doi.org/10.1007/978-3-030-63095-9_27
Publication status	Published - 1 Jan 2020
Event	16th International Conference on Security and Privacy in Communication Networks, SecureComm 2020 - Washington, United States Duration: 21 Oct 2020 → 23 Oct 2020

Publication series

Name	Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST
Volume	336
ISSN (Print)	1867-8211

Conference

Conference	16th International Conference on Security and Privacy in Communication Networks, SecureComm 2020
Country/Territory	United States
City	Washington
Period	21/10/20 → 23/10/20

Keywords

Context-based pairing
Formal methods
Internet of Things
Out-of-band channel
Secure device pairing
Security

Access to Document

10.1007/978-3-030-63095-9_27

Cite this

Khalfaoui, S., Leneutre, J., Villard, A., Ma, J., & Urien, P. (2020). COOB: Hybrid secure device pairing scheme in a hostile environment. In N. Park, K. Sun, S. Foresti, K. Butler, & N. Saxena (Eds.), Security and Privacy in Communication Networks - 16th EAI International Conference, SecureComm 2020, Proceedings (pp. 419-438). (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST; Vol. 336). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-3-030-63095-9_27

Khalfaoui, Sameh ; Leneutre, Jean ; Villard, Arthur et al. / COOB : Hybrid secure device pairing scheme in a hostile environment. Security and Privacy in Communication Networks - 16th EAI International Conference, SecureComm 2020, Proceedings. editor / Noseong Park ; Kun Sun ; Sara Foresti ; Kevin Butler ; Nitesh Saxena. Springer Science and Business Media Deutschland GmbH, 2020. pp. 419-438 (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST).

@inproceedings{ef22945a87cf41cbb201066924a93f12,

title = "COOB: Hybrid secure device pairing scheme in a hostile environment",

abstract = "Due to the scalability limitations, the secure device pairing of Internet of Things objects cannot be efficiently conducted based on traditional cryptographic techniques using a pre-shared security knowledge. The use of Out-of-Band (OoB) channels has been proposed as a way to authenticate the key establishment process but they require a relatively long time and an extensive user involvement to transfer the authentication bits. However, the context-based schemes exploit the randomness of the ambient environment to extract a common secret without an extensive user intervention under the requirement of having a secure perimeter during the extraction phase, which is considered as a strong security assumption. In this paper, we introduce a novel hybrid scheme, called COOB, that efficiently combines a state-of-the-art fast context-based encoder with our Out-of-Band based scheme. This protocol exploits a nonce exponentiation to achieve the temporary secrecy goal needed for the authentication. Our method provides security against an attacker that can violate the secure perimeter requirement, which is not supported by the existing contextual schemes. This security improvement has been formally validated in the symbolic model using the TAMARIN prover. Based on our implementation of the Out-of-Band channel, COOB enhances the usability by reducing the pairing time up to 39 \% for an 80-bit OoB exchange while keeping an optimal protocol cost.",

keywords = "Context-based pairing, Formal methods, Internet of Things, Out-of-band channel, Secure device pairing, Security",

author = "Sameh Khalfaoui and Jean Leneutre and Arthur Villard and Jingxuan Ma and Pascal Urien",

note = "Publisher Copyright: {\textcopyright} ICST Institute for Computer Sciences, Social Informatics and Telecommunications Engineering 2020.; 16th International Conference on Security and Privacy in Communication Networks, SecureComm 2020 ; Conference date: 21-10-2020 Through 23-10-2020",

year = "2020",

month = jan,

day = "1",

doi = "10.1007/978-3-030-63095-9\_27",

language = "English",

isbn = "9783030630942",

series = "Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST",

publisher = "Springer Science and Business Media Deutschland GmbH",

pages = "419--438",

editor = "Noseong Park and Kun Sun and Sara Foresti and Kevin Butler and Nitesh Saxena",

booktitle = "Security and Privacy in Communication Networks - 16th EAI International Conference, SecureComm 2020, Proceedings",

}

Khalfaoui, S, Leneutre, J, Villard, A, Ma, J & Urien, P 2020, COOB: Hybrid secure device pairing scheme in a hostile environment. in N Park, K Sun, S Foresti, K Butler & N Saxena (eds), Security and Privacy in Communication Networks - 16th EAI International Conference, SecureComm 2020, Proceedings. Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST, vol. 336, Springer Science and Business Media Deutschland GmbH, pp. 419-438, 16th International Conference on Security and Privacy in Communication Networks, SecureComm 2020, Washington, United States, 21/10/20. https://doi.org/10.1007/978-3-030-63095-9_27

COOB: Hybrid secure device pairing scheme in a hostile environment. / Khalfaoui, Sameh; Leneutre, Jean; Villard, Arthur et al.
Security and Privacy in Communication Networks - 16th EAI International Conference, SecureComm 2020, Proceedings. ed. / Noseong Park; Kun Sun; Sara Foresti; Kevin Butler; Nitesh Saxena. Springer Science and Business Media Deutschland GmbH, 2020. p. 419-438 (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST; Vol. 336).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - COOB

T2 - 16th International Conference on Security and Privacy in Communication Networks, SecureComm 2020

AU - Khalfaoui, Sameh

AU - Leneutre, Jean

AU - Villard, Arthur

AU - Ma, Jingxuan

AU - Urien, Pascal

N1 - Publisher Copyright: © ICST Institute for Computer Sciences, Social Informatics and Telecommunications Engineering 2020.

PY - 2020/1/1

Y1 - 2020/1/1

N2 - Due to the scalability limitations, the secure device pairing of Internet of Things objects cannot be efficiently conducted based on traditional cryptographic techniques using a pre-shared security knowledge. The use of Out-of-Band (OoB) channels has been proposed as a way to authenticate the key establishment process but they require a relatively long time and an extensive user involvement to transfer the authentication bits. However, the context-based schemes exploit the randomness of the ambient environment to extract a common secret without an extensive user intervention under the requirement of having a secure perimeter during the extraction phase, which is considered as a strong security assumption. In this paper, we introduce a novel hybrid scheme, called COOB, that efficiently combines a state-of-the-art fast context-based encoder with our Out-of-Band based scheme. This protocol exploits a nonce exponentiation to achieve the temporary secrecy goal needed for the authentication. Our method provides security against an attacker that can violate the secure perimeter requirement, which is not supported by the existing contextual schemes. This security improvement has been formally validated in the symbolic model using the TAMARIN prover. Based on our implementation of the Out-of-Band channel, COOB enhances the usability by reducing the pairing time up to 39 % for an 80-bit OoB exchange while keeping an optimal protocol cost.

AB - Due to the scalability limitations, the secure device pairing of Internet of Things objects cannot be efficiently conducted based on traditional cryptographic techniques using a pre-shared security knowledge. The use of Out-of-Band (OoB) channels has been proposed as a way to authenticate the key establishment process but they require a relatively long time and an extensive user involvement to transfer the authentication bits. However, the context-based schemes exploit the randomness of the ambient environment to extract a common secret without an extensive user intervention under the requirement of having a secure perimeter during the extraction phase, which is considered as a strong security assumption. In this paper, we introduce a novel hybrid scheme, called COOB, that efficiently combines a state-of-the-art fast context-based encoder with our Out-of-Band based scheme. This protocol exploits a nonce exponentiation to achieve the temporary secrecy goal needed for the authentication. Our method provides security against an attacker that can violate the secure perimeter requirement, which is not supported by the existing contextual schemes. This security improvement has been formally validated in the symbolic model using the TAMARIN prover. Based on our implementation of the Out-of-Band channel, COOB enhances the usability by reducing the pairing time up to 39 % for an 80-bit OoB exchange while keeping an optimal protocol cost.

KW - Context-based pairing

KW - Formal methods

KW - Internet of Things

KW - Out-of-band channel

KW - Secure device pairing

KW - Security

U2 - 10.1007/978-3-030-63095-9_27

DO - 10.1007/978-3-030-63095-9_27

M3 - Conference contribution

AN - SCOPUS:85098257348

SN - 9783030630942

T3 - Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST

SP - 419

EP - 438

BT - Security and Privacy in Communication Networks - 16th EAI International Conference, SecureComm 2020, Proceedings

A2 - Park, Noseong

A2 - Sun, Kun

A2 - Foresti, Sara

A2 - Butler, Kevin

A2 - Saxena, Nitesh

PB - Springer Science and Business Media Deutschland GmbH

Y2 - 21 October 2020 through 23 October 2020

ER -

Khalfaoui S, Leneutre J, Villard A, Ma J, Urien P. COOB: Hybrid secure device pairing scheme in a hostile environment. In Park N, Sun K, Foresti S, Butler K, Saxena N, editors, Security and Privacy in Communication Networks - 16th EAI International Conference, SecureComm 2020, Proceedings. Springer Science and Business Media Deutschland GmbH. 2020. p. 419-438. (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST). doi: 10.1007/978-3-030-63095-9_27

COOB: Hybrid secure device pairing scheme in a hostile environment

Abstract

Publication series

Conference

Keywords

Access to Document

Fingerprint

Cite this