Design and implementation of a terrorist fraud resilient distance bounding system

A. Ranganathan; N.O. Tippenhauer; B. Skoric; D. Singelée; S. Capkun

doi:10.1007/978-3-642-33167-1_24

Design and implementation of a terrorist fraud resilient distance bounding system

A. Ranganathan, N.O. Tippenhauer, B. Skoric, D. Singelée, S. Capkun

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

20 Citations (Scopus)

5 Downloads (Pure)

Abstract

Given the requirements of fast processing and the complexity of RF ranging systems, distance bounding protocols have been challenging to implement so far; only few designs have been proposed and implemented. Currently, the most efficient implementation of distance bounding protocols uses analog processing and enables the prover to receive a message, process it and transmit the reply within 1 ns, two orders of magnitude faster than the most efficient digital implementation. However, even if implementing distance bounding using analog processing clearly provides tighter security guarantees than digital implementations, existing analog implementations do not support resilience against Terrorist Fraud attacks; they protect only against Distance Fraud and Mafia Fraud attacks. We address this problem and propose a new, hybrid digital-analog design that enables the implementation of Terrorist Fraud resilient distance bounding protocols. We introduce a novel attack, which we refer to as the "double read-out" attack and show that our proposed system is also secure against this attack. Our system consists of a prototype prover that provides strong security guarantees: if a dishonest prover performs the Terrorist Fraud attack, it can cheat on its distance bound to the verifier only up to 4.5 m and if it performs Distance Fraud or Mafia Fraud attacks up to 0.41 m. Finally, we show that our system can be used to implement existing (Terrorist Fraud resilient) distance bounding protocols (e.g., the Swiss Knife and Hancke-Kuhn protocol) without requiring protocol modifications. Keywords: Secure Ranging – Distance Bounding – Terrorist Fraud

Original language	English
Title of host publication	Computer Security – ESORICS 2012 (17th European Symposium on Research in Computer Security, Pisa, Italy, September 10-12, 2012. Proceedings)
Editors	S. Foresti, M. Yung, F. Martinelli
Place of Publication	Berlin
Publisher	Springer
Pages	415-432
ISBN (Print)	978-3-642-33166-4
DOIs	https://doi.org/10.1007/978-3-642-33167-1_24
Publication status	Published - 2012
Event	17th European Symposium on Research in Computer Security (ESORICS 2012) - Pisa, Italy Duration: 10 Sept 2012 → 12 Sept 2012 http://www.iit.cnr.it/esorics2012/

Publication series

Name	Lecture Notes in Computer Science
Volume	7459
ISSN (Print)	0302-9743

Conference

Conference	17th European Symposium on Research in Computer Security (ESORICS 2012)
Country/Territory	Italy
City	Pisa
Period	10/09/12 → 12/09/12
Internet address	http://www.iit.cnr.it/esorics2012/

UN SDGs

This output contributes to the following UN Sustainable Development Goals (SDGs)

Access to Document

10.1007/978-3-642-33167-1_24

Cite this

Ranganathan, A., Tippenhauer, N. O., Skoric, B., Singelée, D., & Capkun, S. (2012). Design and implementation of a terrorist fraud resilient distance bounding system. In S. Foresti, M. Yung, & F. Martinelli (Eds.), Computer Security – ESORICS 2012 (17th European Symposium on Research in Computer Security, Pisa, Italy, September 10-12, 2012. Proceedings) (pp. 415-432). (Lecture Notes in Computer Science; Vol. 7459). Springer. https://doi.org/10.1007/978-3-642-33167-1_24

Ranganathan, A. ; Tippenhauer, N.O. ; Skoric, B. et al. / Design and implementation of a terrorist fraud resilient distance bounding system. Computer Security – ESORICS 2012 (17th European Symposium on Research in Computer Security, Pisa, Italy, September 10-12, 2012. Proceedings). editor / S. Foresti ; M. Yung ; F. Martinelli. Berlin : Springer, 2012. pp. 415-432 (Lecture Notes in Computer Science).

@inproceedings{d573532a21f24f2fa67e56aa254f4219,

title = "Design and implementation of a terrorist fraud resilient distance bounding system",

abstract = "Given the requirements of fast processing and the complexity of RF ranging systems, distance bounding protocols have been challenging to implement so far; only few designs have been proposed and implemented. Currently, the most efficient implementation of distance bounding protocols uses analog processing and enables the prover to receive a message, process it and transmit the reply within 1 ns, two orders of magnitude faster than the most efficient digital implementation. However, even if implementing distance bounding using analog processing clearly provides tighter security guarantees than digital implementations, existing analog implementations do not support resilience against Terrorist Fraud attacks; they protect only against Distance Fraud and Mafia Fraud attacks. We address this problem and propose a new, hybrid digital-analog design that enables the implementation of Terrorist Fraud resilient distance bounding protocols. We introduce a novel attack, which we refer to as the {"}double read-out{"} attack and show that our proposed system is also secure against this attack. Our system consists of a prototype prover that provides strong security guarantees: if a dishonest prover performs the Terrorist Fraud attack, it can cheat on its distance bound to the verifier only up to 4.5 m and if it performs Distance Fraud or Mafia Fraud attacks up to 0.41 m. Finally, we show that our system can be used to implement existing (Terrorist Fraud resilient) distance bounding protocols (e.g., the Swiss Knife and Hancke-Kuhn protocol) without requiring protocol modifications. Keywords: Secure Ranging – Distance Bounding – Terrorist Fraud",

author = "A. Ranganathan and N.O. Tippenhauer and B. Skoric and D. Singel{\'e}e and S. Capkun",

year = "2012",

doi = "10.1007/978-3-642-33167-1_24",

language = "English",

isbn = "978-3-642-33166-4",

series = "Lecture Notes in Computer Science",

publisher = "Springer",

pages = "415--432",

editor = "S. Foresti and M. Yung and F. Martinelli",

booktitle = "Computer Security – ESORICS 2012 (17th European Symposium on Research in Computer Security, Pisa, Italy, September 10-12, 2012. Proceedings)",

address = "Germany",

note = "17th European Symposium on Research in Computer Security (ESORICS 2012) ; Conference date: 10-09-2012 Through 12-09-2012",

url = "http://www.iit.cnr.it/esorics2012/",

}

Ranganathan, A, Tippenhauer, NO, Skoric, B, Singelée, D & Capkun, S 2012, Design and implementation of a terrorist fraud resilient distance bounding system. in S Foresti, M Yung & F Martinelli (eds), Computer Security – ESORICS 2012 (17th European Symposium on Research in Computer Security, Pisa, Italy, September 10-12, 2012. Proceedings). Lecture Notes in Computer Science, vol. 7459, Springer, Berlin, pp. 415-432, 17th European Symposium on Research in Computer Security (ESORICS 2012), Pisa, Italy, 10/09/12. https://doi.org/10.1007/978-3-642-33167-1_24

Design and implementation of a terrorist fraud resilient distance bounding system. / Ranganathan, A.; Tippenhauer, N.O.; Skoric, B. et al.

Computer Security – ESORICS 2012 (17th European Symposium on Research in Computer Security, Pisa, Italy, September 10-12, 2012. Proceedings). ed. / S. Foresti; M. Yung; F. Martinelli. Berlin : Springer, 2012. p. 415-432 (Lecture Notes in Computer Science; Vol. 7459).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - Design and implementation of a terrorist fraud resilient distance bounding system

AU - Ranganathan, A.

AU - Tippenhauer, N.O.

AU - Skoric, B.

AU - Singelée, D.

AU - Capkun, S.

PY - 2012

Y1 - 2012

N2 - Given the requirements of fast processing and the complexity of RF ranging systems, distance bounding protocols have been challenging to implement so far; only few designs have been proposed and implemented. Currently, the most efficient implementation of distance bounding protocols uses analog processing and enables the prover to receive a message, process it and transmit the reply within 1 ns, two orders of magnitude faster than the most efficient digital implementation. However, even if implementing distance bounding using analog processing clearly provides tighter security guarantees than digital implementations, existing analog implementations do not support resilience against Terrorist Fraud attacks; they protect only against Distance Fraud and Mafia Fraud attacks. We address this problem and propose a new, hybrid digital-analog design that enables the implementation of Terrorist Fraud resilient distance bounding protocols. We introduce a novel attack, which we refer to as the "double read-out" attack and show that our proposed system is also secure against this attack. Our system consists of a prototype prover that provides strong security guarantees: if a dishonest prover performs the Terrorist Fraud attack, it can cheat on its distance bound to the verifier only up to 4.5 m and if it performs Distance Fraud or Mafia Fraud attacks up to 0.41 m. Finally, we show that our system can be used to implement existing (Terrorist Fraud resilient) distance bounding protocols (e.g., the Swiss Knife and Hancke-Kuhn protocol) without requiring protocol modifications. Keywords: Secure Ranging – Distance Bounding – Terrorist Fraud

AB - Given the requirements of fast processing and the complexity of RF ranging systems, distance bounding protocols have been challenging to implement so far; only few designs have been proposed and implemented. Currently, the most efficient implementation of distance bounding protocols uses analog processing and enables the prover to receive a message, process it and transmit the reply within 1 ns, two orders of magnitude faster than the most efficient digital implementation. However, even if implementing distance bounding using analog processing clearly provides tighter security guarantees than digital implementations, existing analog implementations do not support resilience against Terrorist Fraud attacks; they protect only against Distance Fraud and Mafia Fraud attacks. We address this problem and propose a new, hybrid digital-analog design that enables the implementation of Terrorist Fraud resilient distance bounding protocols. We introduce a novel attack, which we refer to as the "double read-out" attack and show that our proposed system is also secure against this attack. Our system consists of a prototype prover that provides strong security guarantees: if a dishonest prover performs the Terrorist Fraud attack, it can cheat on its distance bound to the verifier only up to 4.5 m and if it performs Distance Fraud or Mafia Fraud attacks up to 0.41 m. Finally, we show that our system can be used to implement existing (Terrorist Fraud resilient) distance bounding protocols (e.g., the Swiss Knife and Hancke-Kuhn protocol) without requiring protocol modifications. Keywords: Secure Ranging – Distance Bounding – Terrorist Fraud

U2 - 10.1007/978-3-642-33167-1_24

DO - 10.1007/978-3-642-33167-1_24

M3 - Conference contribution

SN - 978-3-642-33166-4

T3 - Lecture Notes in Computer Science

SP - 415

EP - 432

BT - Computer Security – ESORICS 2012 (17th European Symposium on Research in Computer Security, Pisa, Italy, September 10-12, 2012. Proceedings)

A2 - Foresti, S.

A2 - Yung, M.

A2 - Martinelli, F.

PB - Springer

CY - Berlin

T2 - 17th European Symposium on Research in Computer Security (ESORICS 2012)

Y2 - 10 September 2012 through 12 September 2012

ER -

Ranganathan A, Tippenhauer NO, Skoric B, Singelée D, Capkun S. Design and implementation of a terrorist fraud resilient distance bounding system. In Foresti S, Yung M, Martinelli F, editors, Computer Security – ESORICS 2012 (17th European Symposium on Research in Computer Security, Pisa, Italy, September 10-12, 2012. Proceedings). Berlin: Springer. 2012. p. 415-432. (Lecture Notes in Computer Science). doi: 10.1007/978-3-642-33167-1_24

Design and implementation of a terrorist fraud resilient distance bounding system

Abstract

Publication series

Conference

UN SDGs

Access to Document

Fingerprint

Cite this