towards user-friendly credential transfer on open ... · 1 kari kostiainen, n. asokan nokia...
TRANSCRIPT
![Page 1: Towards User-Friendly Credential Transfer on Open ... · 1 Kari Kostiainen, N. Asokan Nokia Research Center Alexandra Afanasyeva SUAI ACNS 2011 Towards User-Friendly Credential Transfer](https://reader031.vdocument.in/reader031/viewer/2022041310/5e152fcfec2c453bb468ec6b/html5/thumbnails/1.jpg)
1
Kari Kostiainen, N. Asokan Nokia Research Center
Alexandra Afanasyeva SUAI
ACNS 2011
Towards User-Friendly Credential Transfer on Open Credential Platforms
© 2011 Nokia Research Center
![Page 2: Towards User-Friendly Credential Transfer on Open ... · 1 Kari Kostiainen, N. Asokan Nokia Research Center Alexandra Afanasyeva SUAI ACNS 2011 Towards User-Friendly Credential Transfer](https://reader031.vdocument.in/reader031/viewer/2022041310/5e152fcfec2c453bb468ec6b/html5/thumbnails/2.jpg)
© 2011 Nokia Research Center 2
![Page 3: Towards User-Friendly Credential Transfer on Open ... · 1 Kari Kostiainen, N. Asokan Nokia Research Center Alexandra Afanasyeva SUAI ACNS 2011 Towards User-Friendly Credential Transfer](https://reader031.vdocument.in/reader031/viewer/2022041310/5e152fcfec2c453bb468ec6b/html5/thumbnails/3.jpg)
3
Trusted execution environment (TrEE)
© 2011 Nokia Research Center 3
![Page 4: Towards User-Friendly Credential Transfer on Open ... · 1 Kari Kostiainen, N. Asokan Nokia Research Center Alexandra Afanasyeva SUAI ACNS 2011 Towards User-Friendly Credential Transfer](https://reader031.vdocument.in/reader031/viewer/2022041310/5e152fcfec2c453bb468ec6b/html5/thumbnails/4.jpg)
4
Credential transfer
© 2011 Nokia Research Center
![Page 5: Towards User-Friendly Credential Transfer on Open ... · 1 Kari Kostiainen, N. Asokan Nokia Research Center Alexandra Afanasyeva SUAI ACNS 2011 Towards User-Friendly Credential Transfer](https://reader031.vdocument.in/reader031/viewer/2022041310/5e152fcfec2c453bb468ec6b/html5/thumbnails/5.jpg)
Outline
1. Credential transfer problem
2. Credential transfer protocol
3. Analysis
5 © 2011 Nokia Research Center
![Page 6: Towards User-Friendly Credential Transfer on Open ... · 1 Kari Kostiainen, N. Asokan Nokia Research Center Alexandra Afanasyeva SUAI ACNS 2011 Towards User-Friendly Credential Transfer](https://reader031.vdocument.in/reader031/viewer/2022041310/5e152fcfec2c453bb468ec6b/html5/thumbnails/6.jpg)
6
Credential transfer problem
© 2011 Nokia Research Center
![Page 7: Towards User-Friendly Credential Transfer on Open ... · 1 Kari Kostiainen, N. Asokan Nokia Research Center Alexandra Afanasyeva SUAI ACNS 2011 Towards User-Friendly Credential Transfer](https://reader031.vdocument.in/reader031/viewer/2022041310/5e152fcfec2c453bb468ec6b/html5/thumbnails/7.jpg)
7
Closed provisioning
© 2011 Nokia Research Center
Control point
Service provider Service provider Service provider
![Page 8: Towards User-Friendly Credential Transfer on Open ... · 1 Kari Kostiainen, N. Asokan Nokia Research Center Alexandra Afanasyeva SUAI ACNS 2011 Towards User-Friendly Credential Transfer](https://reader031.vdocument.in/reader031/viewer/2022041310/5e152fcfec2c453bb468ec6b/html5/thumbnails/8.jpg)
8
Open provisioning
© 2011 Nokia Research Center
User authentication
User authentication
User authentication
Copyable Non-transferable Non-transferable
![Page 9: Towards User-Friendly Credential Transfer on Open ... · 1 Kari Kostiainen, N. Asokan Nokia Research Center Alexandra Afanasyeva SUAI ACNS 2011 Towards User-Friendly Credential Transfer](https://reader031.vdocument.in/reader031/viewer/2022041310/5e152fcfec2c453bb468ec6b/html5/thumbnails/9.jpg)
9
Late user binding
© 2011 Nokia Research Center
Device certificate
Enc(credentials)
User binding User binding
![Page 10: Towards User-Friendly Credential Transfer on Open ... · 1 Kari Kostiainen, N. Asokan Nokia Research Center Alexandra Afanasyeva SUAI ACNS 2011 Towards User-Friendly Credential Transfer](https://reader031.vdocument.in/reader031/viewer/2022041310/5e152fcfec2c453bb468ec6b/html5/thumbnails/10.jpg)
10
Temporal disconnection
© 2011 Nokia Research Center
![Page 11: Towards User-Friendly Credential Transfer on Open ... · 1 Kari Kostiainen, N. Asokan Nokia Research Center Alexandra Afanasyeva SUAI ACNS 2011 Towards User-Friendly Credential Transfer](https://reader031.vdocument.in/reader031/viewer/2022041310/5e152fcfec2c453bb468ec6b/html5/thumbnails/11.jpg)
Requirements
• Usability −No additional user interaction
• Security −Credential secrecy
−“Credential fidelity”
11 © 2011 Nokia Research Center
![Page 12: Towards User-Friendly Credential Transfer on Open ... · 1 Kari Kostiainen, N. Asokan Nokia Research Center Alexandra Afanasyeva SUAI ACNS 2011 Towards User-Friendly Credential Transfer](https://reader031.vdocument.in/reader031/viewer/2022041310/5e152fcfec2c453bb468ec6b/html5/thumbnails/12.jpg)
12
Credential transfer protocol
© 2011 Nokia Research Center
![Page 13: Towards User-Friendly Credential Transfer on Open ... · 1 Kari Kostiainen, N. Asokan Nokia Research Center Alexandra Afanasyeva SUAI ACNS 2011 Towards User-Friendly Credential Transfer](https://reader031.vdocument.in/reader031/viewer/2022041310/5e152fcfec2c453bb468ec6b/html5/thumbnails/13.jpg)
13
Protocol overview
© 2011 Nokia Research Center
HSM Provisioner (P)
Source device (S)
OS
TrEE
Target device (T)
OS
TrEE
PKTS/SKTS, CertTS
PKT/SKT, CertT
PKS/SKS, CertS
Trusted Server (TS)
OS
1. User identity installation
2. Provisioning and user binding
3. Credential backup and “identity verification delegation”
4. User identity installation
5. Identity verification, credential recovery and “provisioning delegation”
6. Automatic re-provisioning
![Page 14: Towards User-Friendly Credential Transfer on Open ... · 1 Kari Kostiainen, N. Asokan Nokia Research Center Alexandra Afanasyeva SUAI ACNS 2011 Towards User-Friendly Credential Transfer](https://reader031.vdocument.in/reader031/viewer/2022041310/5e152fcfec2c453bb468ec6b/html5/thumbnails/14.jpg)
14
1. User identity installation
© 2011 Nokia Research Center
PwdS
SealedPwdS
SealedPwdS Seal(PwdS)
PwdS
Store SealedPwdS
User Source OS Source TrEE
1. Trust on first use 2. Typical device login
![Page 15: Towards User-Friendly Credential Transfer on Open ... · 1 Kari Kostiainen, N. Asokan Nokia Research Center Alexandra Afanasyeva SUAI ACNS 2011 Towards User-Friendly Credential Transfer](https://reader031.vdocument.in/reader031/viewer/2022041310/5e152fcfec2c453bb468ec6b/html5/thumbnails/15.jpg)
ProvCred, SealedPwdS
15
2. Credential provisioning
© 2011 Nokia Research Center
ProvCred
CertS + user auth.
SealedCred
Verify CertS and extract PKS
Map Cred to PKS
ProvCred Enc(PKS, Cred || policy)
Cred || policy Dec(SK, ProvCred) PwdS Unseal(SealedPwdS) SealedCred Seal(Cred || policy || PwdS)
Store SealedCred
Provisioner Source OS Source TrEE
![Page 16: Towards User-Friendly Credential Transfer on Open ... · 1 Kari Kostiainen, N. Asokan Nokia Research Center Alexandra Afanasyeva SUAI ACNS 2011 Towards User-Friendly Credential Transfer](https://reader031.vdocument.in/reader031/viewer/2022041310/5e152fcfec2c453bb468ec6b/html5/thumbnails/16.jpg)
16
3. Credential backup to server
© 2011 Nokia Research Center
Source OS Source TrEE Trusted Server (TS)
CertS, EncCred / SDT
EncCred / SDT
CertTS, SealedCred
Verify CertTS and extract PKTS Cred || policy || PwdS Unseal(SealedCred)
Copyable: EncCred Enc(PKTS, Cred || PwdS) Non-transferable: SDT Sign(SKS, PKTS) || Enc(PKTS, PwdS)
CertTS
Store CertS and EncCred / SDT
![Page 17: Towards User-Friendly Credential Transfer on Open ... · 1 Kari Kostiainen, N. Asokan Nokia Research Center Alexandra Afanasyeva SUAI ACNS 2011 Towards User-Friendly Credential Transfer](https://reader031.vdocument.in/reader031/viewer/2022041310/5e152fcfec2c453bb468ec6b/html5/thumbnails/17.jpg)
CertS, EncCred / DT EncCred
SealedPwdT
17
5. Credential recovery
© 2011 Nokia Research Center
Trusted Server (TS) Target TrEE Target OS
PwdToken PwdToken, CertT
Verify CertT and extract PKT
PwdT Dec(SKTS, PwdToken) Copyable: Cred || PwdS Dec(SKTS, EncCred) Verify PwdT = PwdS
EncCred End(PKT, Cred || PwdT) Non-transferable: Extract PwdS from SDT Verify PwdT = PwdS
DT Sign(SKTS, PKT) || Sign(SKS, PKTS)
PwdT Unseal(SealedPwdT) PwdToken Enc(PKTS, PwdT)
Install EncCred
User identity installation
![Page 18: Towards User-Friendly Credential Transfer on Open ... · 1 Kari Kostiainen, N. Asokan Nokia Research Center Alexandra Afanasyeva SUAI ACNS 2011 Towards User-Friendly Credential Transfer](https://reader031.vdocument.in/reader031/viewer/2022041310/5e152fcfec2c453bb468ec6b/html5/thumbnails/18.jpg)
18
6. Credential re-provisioning
© 2011 Nokia Research Center
Target TrEE Target OS Provisioner
CertT, CertS, CertTS, DT
Verify Certs Verify signatures on DT
Find Cred for PKS
ProvCred Enc(PKT, Cred || policy)
ProvCred
ProvCred
Install ProvCred
![Page 19: Towards User-Friendly Credential Transfer on Open ... · 1 Kari Kostiainen, N. Asokan Nokia Research Center Alexandra Afanasyeva SUAI ACNS 2011 Towards User-Friendly Credential Transfer](https://reader031.vdocument.in/reader031/viewer/2022041310/5e152fcfec2c453bb468ec6b/html5/thumbnails/19.jpg)
19
Analysis
© 2011 Nokia Research Center
![Page 20: Towards User-Friendly Credential Transfer on Open ... · 1 Kari Kostiainen, N. Asokan Nokia Research Center Alexandra Afanasyeva SUAI ACNS 2011 Towards User-Friendly Credential Transfer](https://reader031.vdocument.in/reader031/viewer/2022041310/5e152fcfec2c453bb468ec6b/html5/thumbnails/20.jpg)
Analysis
• Usability −Reusing typical device login
• Credential secrecy −Common public key mechanism
−Trusted server (HSM)
• Credential fidelity −User identity password
−Brute force (throttling)
−Phishing (separate password)
−Password change (“trusted UI” or secure connection to server)
• Protocol validated with AVISPA tool 20 © 2011 Nokia Research Center
![Page 21: Towards User-Friendly Credential Transfer on Open ... · 1 Kari Kostiainen, N. Asokan Nokia Research Center Alexandra Afanasyeva SUAI ACNS 2011 Towards User-Friendly Credential Transfer](https://reader031.vdocument.in/reader031/viewer/2022041310/5e152fcfec2c453bb468ec6b/html5/thumbnails/21.jpg)
Summary
• Credential transfer challenging −Open provisioning
−Late user identity binding
−Temporal disconnection
• Server-assisted credential transfer protocol −Can be implemented using existing devices
21 © 2011 Nokia Research Center