How does a machine know who is using it? Currently, systems assume that the user typing now is the same person who supplied a password days ago. Such persistent authentication is inappropriate for mobile and ubiquitous systems, because associations between people and devices are fleeting. To address this, we propose transient authentication. In this model, a user wears a small hardware token that authenticates the user to other devices over a short-range, wireless link. This paper presents the four principles of transient authentication, our experience applying the model to a cryptographic file system, and our plans for extending the model to other services and applications.

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	Matt Blaze, A cryptographic file system for UNIX, Proceedings of the 1st ACM conference on Computer and communications security, p.9-16, November 03-05, 1993, Fairfax, Virginia, United States  [doi>10.1145/168588.168590]
	2	M. Blaze. Key management in an encrypting file system. In Proceedings of the Summer 1994 USENIX Conference, pages 27--35, Boston, MA, June 1994.
	3	Mark D. Corner , Brian D. Noble, Zero-interaction authentication, Proceedings of the 8th annual international conference on Mobile computing and networking, September 23-28, 2002, Atlanta, Georgia, USA  [doi>10.1145/570645.570647]
	4	W. Diffie, P. van Oorschot, and M. Wiener. Design Codes and Cryptograhpy. Kluwer Academic Publishers, 1992.
	5	A. Freier, P. Karlton, and P. Kocher. The SSL protocol version 3.0. Internet Draft, March 1996.
	6	John S. Heidemann , Gerald J. Popek, File-system development with stackable layers, ACM Transactions on Computer Systems (TOCS), v.12 n.1, p.58-89, Feb. 1994  [doi>10.1145/174613.174616]
	7	C. E. Landwehr, Protecting unattended computers without software, Proceedings of the 13th Annual Computer Security Applications Conference, p.274, December 08-12, 1997
	8	Microsoft. Encrypting File System for Windows 2000. http://www.microsoft.com/windows2000/techinfo/howitworks/security/encrypt.asp.
	9	Chandra Narayanaswami , M. T. Raghunath, Application Design for a Smart Watch with a High Resolution Display, Proceedings of the 4th IEEE International Symposium on Wearable Computers, p.7, October 18-21, 2000
	10	Michael Negin , Thomas A. Chmielewski , Marcos Salganicoff , Theodore A. Camus , Ulf M. Cahn von Seelen , Péter L. Venetianer , Guanghua G. Zhang, An Iris Biometric System for Public and Personal Use, Computer, v.33 n.2, p.70-75, February 2000  [doi>10.1109/2.820042]
	11	National Institute of Standards and Technology. Computer data authentication. FIPS Publication #113, May 1985.
	12	P. Jonathon Phillips , Alvin Martin , C. l. Wilson , Mark Przybocki, An Introduction to Evaluating Biometric Systems, Computer, v.33 n.2, p.56-63, February 2000  [doi>10.1109/2.820040]
	13	N. Provos. Encrypting virtual memory. In Proceedings of the Ninth USENIX Security Symposium, pages 35--44, Denver, CO, August 2000.
	14	Ensure Technologies, http://www.ensuretech.com/.
	15	B. Yee and J. D. Tygar. Secure coprocessors in electronic commerce applications. In Proceedings of the First USENIX Workship of Electronic Commerce, pages 155--70, New York, NY, July 1995.
	16	E. Zadok, I. Badulescu, and A. Shender. Cryptfs: A stackable vnode level encryption file system. Technical Report CUCS-021-98, Computer Science Department, Columbia University, 1998.
	17	E. Zadok and J. Nieh. FiST: a language for stackable file systems. In Proceedings of the 2000 USENIX Annual Technical Conference, pages 55--70, San Diego, CA, June 2000.