Solberg Hjorth, Theis4; Madsen, Per Printz1; Torbensen, Rune Sonnich2
1 Automation & Control, The Technical Faculty of IT and Design, Aalborg University, VBN2 Department of Electronic Systems, The Technical Faculty of IT and Design, Aalborg University, VBN3 The Faculty of Engineering and Science (TECH), Aalborg University, VBN4 Mads Clausen Institute, Faculty of Technology
Current wireless technologies use a variety of methods to locally exchange and verify credentials between devices to establish trusted relationships. Scenarios in home automation networks also require this capability over the Internet, but the necessary involvement of non-expert users to setup these relationships can lead to misconfiguration or breaches of security. We outline a security system for Home Automation called Trusted Domain that can establish and maintain cryptographically secure relationships between devices connected via IP-based networks and the Internet. Trust establishment is presented in a simple and meaningful way that allows non-expert users to make the correct security decisions when enrolling new devices. We propose a social remote mutual authentication method called the PictogramDB Hash designed to easily and accurately verify certificate hash values by visualizing them with sequences of predefined pictograms. This method is designed to scale from smart-phones and tablets down to low-resource embedded systems. The presented approach is supported by an extensive literature study, and the ease of use and feasibility of the method has been indicated through a preliminary user study and implementation.
23rd Ieee International Symposium on Personal, Indoor and Mobile Radio Communications (pimrc), 2012, p. 7-12
Main Research Area:
I E E E International Symposium Personal, Indoor and Mobile Radio Communications
2012 IEEE 23rd International Symposium on Personal, Indoor and Mobile Radio Communications, 2012