Farinaz Koushanfar

Physical proof-based protocols for the IoT era: Securing medical devices case study

Download the presentation

 

Securing Internet of things (IoT) is a grand challenge for emerging applications. On the one hand, the small device form factors, resources and constraints, prohibit running intensive security and cryptography algorithms on these devices. On the other hand, physical accessibility of the devices introduces a wide attack surface on the security protocol and the keys, ranging from remote attacks on the wireless interface, to side-channels and physical attacks, as well as new sensor-based vulnerabilities.

In this talk I argue that by bootstrapping physical aspects of the IoT, one can address one of the most critical aspects of IoT security, namely key management (including but not limited to key generation, storage and exchange). For example, variations in the physical substance can be used as unique unclonable keys for the devices, while the randomness in transient connections in the physical layer and multi-factor authentications based on the location and time can be leveraged for key agreement without a prior trust establishment. Proof-of-concept implementation of such proofs of physical presence are given on a physics-based transient secure key agreement protocol that we have devised for protecting implantable medical devices without changing the hardware.

 

About the panel speaker:

Farinaz Koushanfar is a professor and Henry Booker Faculty Scholar of Electrical and Computer Engineering (ECE) in University of California, San Diego (UCSD) where she directs the Adaptive Computing and Embedded Systems (ACES) Lab. Dr. Koushanfar’s research interests include embedded and cyber-physical systems security, design and optimization of embedded systems, design automation (DA), and in particular DA of domain-specific/mobile computing and machine learning applications. Professor Koushanfar serves as an associate partner of the Intel Collaborative Research Institute for Secure Computing to aid developing solutions for the next generation of embedded secure devices; she is the founder of Women ExCEl and a co-founder of the Trust-Hub.