Secure Physical Access with NFC-enabled Smartphones

dc.accessRightsAnonymous
dc.audiencePraxis
dc.contributor.authorArnosti, Christof
dc.contributor.authorGruntz, Dominik
dc.contributor.authorHauri, Marco
dc.date.accessioned2016-05-23T13:16:55Z
dc.date.available2016-05-23T13:16:55Z
dc.date.issued2015-12
dc.description.abstractThis paper presents a smartphone-based physical access control system in which the access points are not directly connected to a central authorization server. The access points ask the mobile phone whether a particular user has access or not. The mobile phone then relays such a request to the access server. The authentication of the smartphone is based on public-key cryptography. This requires that the private key is stored in a secure element or in a trusted execution environment to prevent identity theft. In our solution we use the following secure element archiectures: Host Card Emulation (HCE) and a microSD-based secure element. We show that the HCE approach cannot solve the relay attack under conservative security assumptions and we present and discuss an implementation based on a microSD secure element that still allows the access points to connect to the authorization server upon every access albeit the access points are not connected with it.
dc.description.urihttp://www.fhnw.ch/technik/imvs/publikationen/artikel-2015/fokusreport-gruntz
dc.identifier.issn2296-4169
dc.identifier.issn1662-2014
dc.identifier.urihttp://hdl.handle.net/11654/17871
dc.identifier.urihttps://doi.org/10.26041/fhnw-635
dc.language.isoen
dc.relation.ispartofIMVS Fokus Reporten_US
dc.subjectNFC
dc.subjectsecurity
dc.subjectphysical access control system
dc.subjectmobile device
dc.subjectpublic-key cryptography
dc.subjectHost Card Emulation
dc.subjectmicroSD secure element
dc.subjectrelay attack
dc.subject.ddc005 - Computer Programmierung, Programme und Datende
dc.subject.ddc004 - Computer Wissenschaften, Internetde
dc.subject.ddc631 - Technologie, Ausrüstung, Materialiende
dc.titleSecure Physical Access with NFC-enabled Smartphones
dc.type01B - Beitrag in Magazin oder Zeitung
dc.volume9
dspace.entity.typePublication
fhnw.InventedHereYes
fhnw.IsStudentsWorkno
fhnw.PublishedSwitzerlandYes
fhnw.ReviewTypeLectoring (ex ante)
fhnw.affiliation.hochschuleHochschule für Informatik FHNWde_CH
fhnw.affiliation.institutInstitut für Mobile und Verteilte Systemede_CH
fhnw.pagination14-22
fhnw.publicationOnlineJa
fhnw.publicationStatePublished
relation.isAuthorOfPublication755e3e7b-10ac-4e21-8501-b16ffd376741
relation.isAuthorOfPublication.latestForDiscovery755e3e7b-10ac-4e21-8501-b16ffd376741
Dateien

Originalbündel

Gerade angezeigt 1 - 1 von 1
Vorschaubild
Name:
Fokusreport_gruntz.pdf
Größe:
657.38 KB
Format:
Adobe Portable Document Format
Beschreibung:

Lizenzbündel

Gerade angezeigt 1 - 1 von 1
Kein Vorschaubild vorhanden
Name:
license.txt
Größe:
2.94 KB
Format:
Item-specific license agreed upon to submission
Beschreibung: