ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Detecting relay attacks with timing-based protocols
Full text PdfPdf (299 KB)
Source ASIAN ACM Symposium on Information, Computer and Communications Security archive
Proceedings of the 2nd ACM symposium on Information, computer and communications security table of contents
Singapore
SESSION: Applications & security policy table of contents
Pages: 204 - 213  
Year of Publication: 2007
ISBN:1-59593-574-6
Authors
Jason Reid  Queensland University of Technology, Australia
Juan M. Gonzalez Nieto  Queensland University of Technology, Australia
Tee Tang  Queensland University of Technology, Australia
Bouchra Senadji  Queensland University of Technology, Australia
Sponsor
SIGSAC: ACM Special Interest Group on Security, Audit, and Control
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 25,   Downloads (12 Months): 120,   Citation Count: 5
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/1229285.1229314
What is a DOI?

ABSTRACT

Distance-bounding protocols have been proposed as a means of detecting relay attacks, also known as mafia fraud. In this paper we present the first symmetric key based distance-bounding protocol that is also resistant to so-called terrorist fraud, a variant of mafia fraud. Distance-bounding protocols require a communication channel that can exchange single bits with extremely low latency. This unconventional communication requirement has prompted Hancke and Kuhn to assert in a recent publication that ultra wide band (UWB) radio is necessary to achieve a useful distance-bounding resolution for RF security devices (contactless smart cards, RFID tags and the like). We analyse this assertion and present an alternative, novel communication approach that leverages the phenomena of side channel leakage to deliver a low latency channel. Our proposal is capable of detecting sophisticated relay attacks without resorting to the considerable expense and complexity of UWB radio. We present experimental results to support our arguments.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
D. Ballo. Measuring absolute group delay of multistage converters. In Proceedings of 33rd European Microwave Conference, volume 1, pages 89--92. IEEE, 2003.
 
2
Stefan Brands , David Chaum, Distance-bounding protocols, Workshop on the theory and application of cryptographic techniques on Advances in cryptology, p.344-359, January 1994, Lofthus, Norway
 
3
L. Bussard. Trust Establishment Protocols for Communicating Devices. PhD thesis, Institut Eurécom, Télécom, Paris, 2004.
4
Srdjan Čapkun , Levente Buttyán , Jean-Pierre Hubaux, SECTOR: secure tracking of node encounters in multi-hop wireless networks, Proceedings of the 1st ACM workshop on Security of ad hoc and sensor networks, October 31, 2003, Fairfax, Virginia  [doi>10.1145/986858.986862]
 
5
Y. Desmedt. Major security problems with the 'unforgeable' (Feige)-Fiat-Shamir proofs of identity and how to overcome them. In SecuriCom '88, pages 15--17, SEDEP Paris, France, 1988.
 
6
Y. Dodis, R. Genaro, J. H. stad, H. Krawczyk, and T. Rabin. Randomness extraction and key derivation using the CBC, cascade and HMAC modes. In Advances in Cryptology CRYPT0 2004, LNCS 3152, pages 344--359. Springer-Verlag, 2004.
 
7
K. Finkenzeller. RFID Handbook. John Wiley and Sons, Hoboken, NJ, 2nd edition, 2003.
 
8
Lishoy Francis , William G. Sirett , Keith Mayes , Konstantinos Markantonakis, Countermeasures for attacks on satellite TV cards using open receivers, Proceedings of the 2005 Australasian workshop on Grid computing and e-research, p.153-158, January 01, 2005, Newcastle, New South Wales, Australia
 
9
G. Hancke. A practical relay attack on ISO 14443 proximity cards. Manuscript, February 2005. Available at http://www.cl.cam.ac.uk/gh275/relay.pdf accessed October 2005.
 
10
Gerhard P. Hancke , Markus G. Kuhn, An RFID Distance Bounding Protocol, Proceedings of the First International Conference on Security and Privacy for Emerging Areas in Communications Networks (SECURECOMM'05), p.67-73, September 05-09, 2005  [doi>10.1109/SECURECOMM.2005.56]
 
11
Infineon. Device and method for supplying a data transfer unit with energy. US Patent Application 20050252972, 17 November 2005.
 
12
ISO/IEC. 14443 Identification cards-contactless integrated circuit(s) cards-proximity cards. International Organisation for Standardisation, Geneva, 2001.
 
13
A. Jones and J. McManus. The measurement of group delay using a microwave system analyser. Microwave Journal, 43(8):106--113, 2000.
 
14
Ziv Kfir , Avishai Wool, Picking Virtual Pockets using Relay Attacks on Contactless Smartcard, Proceedings of the First International Conference on Security and Privacy for Emerging Areas in Communications Networks (SECURECOMM'05), p.47-58, September 05-09, 2005  [doi>10.1109/SECURECOMM.2005.32]
 
15
Paul C. Kocher , Joshua Jaffe , Benjamin Jun, Differential Power Analysis, Proceedings of the 19th Annual International Cryptology Conference on Advances in Cryptology, p.388-397, August 15-19, 1999
16
Naveen Sastry , Umesh Shankar , David Wagner, Secure verification of location claims, Proceedings of the 2003 ACM workshop on Wireless security, September 19-19, 2003, San Diego, CA, USA  [doi>10.1145/941311.941313]
 
17
D. Singelee and B. Preneel. Location verification using secure distance bounding protocols. In Proceedings of Second IEEE International Conference on Mobile Ad Hoc and Sensor Systems (MASS'05). IEEE Computer Society, 2005.

CITED BY  5
Gerhard P. Hancke , Markus G. Kuhn, Attacks on time-of-flight distance bounding channels, Proceedings of the first ACM conference on Wireless network security, March 31-April 02, 2008, Alexandria, VA, USA
Marcin Poturalski , Panos Papadimitratos , Jean-Pierre Hubaux, Secure neighbor discovery in wireless networks: formal investigation of possibility, Proceedings of the 2008 ACM symposium on Information, computer and communications security, March 18-20, 2008, Tokyo, Japan
Kasper Bonne Rasmussen , Srdjan Čapkun, Location privacy of distance bounding protocols, Proceedings of the 15th ACM conference on Computer and communications security, October 27-31, 2008, Alexandria, Virginia, USA
Marcin Poturalski , Panos Papadimitratos , Jean-Pierre Hubaux, Towards provable secure neighbor discovery in wireless networks, Proceedings of the 6th ACM workshop on Formal methods in security engineering, p.31-42, October 27-27, 2008, Alexandria, Virginia, USA
Mike Burmester , Tri Van Le , Breno De Medeiros , Gene Tsudik, Universally Composable RFID Identification and Authentication Protocols, ACM Transactions on Information and System Security (TISSEC), v.12 n.4, p.1-33, April 2009

INDEX TERMS

Primary Classification:
  E. Data
  E.4 CODING AND INFORMATION THEORY

Additional Classification:
  C. Computer Systems Organization
  C.3 SPECIAL-PURPOSE AND APPLICATION-BASED SYSTEMS
      Subjects: Signal processing systems; Smartcards

  E. Data
  E.3 DATA ENCRYPTION


General Terms:
Algorithms, Security

Collaborative Colleagues:
Jason Reid: colleagues
Juan M. Gonzalez Nieto: colleagues
Tee Tang: colleagues
Bouchra Senadji: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player