Survey on Location Authentication Protocols and Spatial-Temporal Attestation Services

González-Tablas, Ana I.; Kursawe, Klaus; Ramos, Benjamín; Ribagorda, Arturo

doi:10.1007/11596042_82

Cited by 8 publications

(6 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…4 Most researchers assume that they can't separate location authentication from entity authentication as we have done. Additionally, some believe they can treat both properties independently, 7 and others view location authentication as an alternative to the traditional entity-authentication proofs based on something you have, know, and are.…”

Section: Redefining Location Authenticationmentioning

confidence: 99%

“…Despite the recent advances, we still need a clearer picture of this property. Here, we extend a survey we published in 2005 4 to provide a more comprehensive definition of location authentication and to describe its main threats in different scenarios. We also give an overview of proposed mechanisms for fulfilling this requirement, taking into account not only location verification but also the related problem of secure location determination.…”

mentioning

confidence: 99%

See 1 more Smart Citation

Guaranteeing the Authenticity of Location Information

González-Tablas

Álvarez

Garnacho

2008

IEEE Pervasive Comput.

View full text Add to dashboard Cite

A comprehensive definition of location authentication and a review of its threats and possible solutions help provide a better understanding of this young security requirement. N ew and enhanced locationdetermination technologies have allowed ubiquitous computing applications to better exploit location information. In particular, these technologies have improved location-based services, such as emergency and navigation services, tracking and monitoring systems, and location-based billing services. They also apply to more specific contexts-for example, in sensor networks, location information is often crucial for node tracking and packet routing.This increasing use of location information has driven researchers to analyze its specific security requirements. 1 The most important requirements relate to privacy and trust, including authenticity and attestation. Here, we focus on authenticating location information, which is necessary when using such information to grant access to a service or to generate evidence such as a certificate guaranteeing an entity's location at some point in time. It's also useful for accountable tracking of nodes and billing of mobile services. More important, for some services-such as emergency related services-failing to guarantee location information can have fatal consequences.Location authentication is still a relatively young security property. Stefan Brands and David Chaum first addressed location authentication in 1994, 2 followed by Dorothy Denning and Peter MacDoran in 1996. 3 Researchers have since increased their efforts to understand location authentication, proposing several solutions for different contexts. Despite the recent advances, we still need a clearer picture of this property. Here, we extend a survey we published in 2005 4 to provide a more comprehensive definition of location authentication and to describe its main threats in different scenarios. We also give an overview of proposed mechanisms for fulfilling this requirement, taking into account not only location verification but also the related problem of secure location determination. Location determinationWe start with a brief overview of location determination because of its obvious importance to location authentication. One main approach to location determination is to use an object's internal measurements, such as inertial navigation or odometry techniques. However, the more common approach in ubiquitous computing is to use a reference system that exploits triangulation, proximity, or scene-analysis techniques. 5 Typically, reference-based location determination considers the exchange of signals between a target node (the one being located) and a set

show abstract

Section: Redefining Location Authenticationmentioning

confidence: 99%

mentioning

confidence: 99%

Guaranteeing the Authenticity of Location Information

González-Tablas

Álvarez

Garnacho

2008

IEEE Pervasive Comput.

View full text Add to dashboard Cite

show abstract

“…An example would be the aforementioned classroom, where the individual participants could store logs of their own wearable sensors directly in the lecture hall, allowing participants who come late, or maybe even next year's students, to easily find it there, yet preventing someone from half-way around the globe from monitoring their performance in class. 1 While traditional location-based access control methods (Gonzales-Tablas et al 2005) could offer similar functionality, the setup for both users and system administrators would be considerably higher, as locations and their access parameters would need to be explicitly defined.…”

Section: Introductionmentioning

confidence: 99%

Secure localised storage based on super-distributed RFID-tag infrastructures

Langheinrich

2007

Journal of Location Based Services

View full text Add to dashboard Cite

Humans are social creatures that often take pleasure in sharing ideas and opinions with others. While the Internet has made this process much easier (Wikipedia, Flickr, Facebook), it has also made the assembly of such shared information into central profiles with the help of a simple online search dangerously trivial. Access control could of course be used to prevent this, yet this would also limit the sharing of such information to a much smaller set of wellknown users, as well as introducing a significant administrative overhead. This article presents FragDB, a storage concept based on localised access control, where data storage and retrieval are bound to a specific place, rather than the knowledge of a particular password or certificate. Data shared using FragDB are much harder to assemble into a profile, as a person's activities across space and time are not centrally assembled, but require actual physical presence for querying. FragDB uses the IDs of tiny RFID-tags embedded in floors, walls, or doors, to compute a local key that is used to encrypt and decrypt data in a global storage system. It is particularly suited to disseminate information pertaining to a particular location or a local group. We describe the requirements and implementation of such a system, and analyse its complexity.

show abstract

“…It is assumed that the spatial-temporal information of the subject is securely verified or authenticated before the evidence is generated. The verifier of location (V loc ) performs this verification in collaboration with a positioning infrastructure (PI); this process is done by executing a location authentication protocol (see a description and an analysis of this kind of protocols in [GKRR05]). Note that considering the user controlling the target device as part of the subject would require to verify also the proximity of this particular user to that target device.…”

Section: Goal and General Modelmentioning

confidence: 99%

“…Several mechanisms have been proposed to address trust of location information, mainly location authentication protocols and spatial-temporal attestation services, which include spatial-temporal certification services. A brief survey on mechanisms that address trust of location information can be found in [GKRR05]. A survey on mechanisms to protect location privacy in pervasive computing can be found in [GTH05].…”

Section: Introductionmentioning

confidence: 99%

Spatial-Temporal Certification Framework and Extension of X.509 Attribute Certificate Framework and SAML Standard to Support Spatial-Temporal Certificates

González-Tablas

Álvarez

Garnacho

Public Key Infrastructure

View full text Add to dashboard Cite

Abstract. The recent development of location-based services has originated a set of new security services that address their particular security problems. Spatial-temporal certification services are among these new services. They have as main goal the generation of evidences about an entity's spatial-temporal information and, in general, their life-cycle support. Currently there is still a lack of a general framework for spatialtemporal certification services. In this work it is presented such a framework and an extension of the X.509 attribute certificate framework and the SAML standard to represent spatial-temporal certificates.

show abstract

Survey on Location Authentication Protocols and Spatial-Temporal Attestation Services

Cited by 8 publications

References 12 publications

Guaranteeing the Authenticity of Location Information

Guaranteeing the Authenticity of Location Information

Secure localised storage based on super-distributed RFID-tag infrastructures

Spatial-Temporal Certification Framework and Extension of X.509 Attribute Certificate Framework and SAML Standard to Support Spatial-Temporal Certificates

Contact Info

Product

Resources

About