CrazyEngineers Archive
Old, but evergreen and popular discussions on CrazyEngineers, presented to you in read-only mode.
@Ankita Katdare • 05 Jun, 2014 • 2 likes
Moving beyond passwords for authentication when logging in to a system, an app, an online service was a long-time calling. Largely because of the increase in incidents of passwords getting hacked or stolen, getting rid of passwords and coming up with an even more effective and secure solution has been a challenge for the University of Alabama at Birmingham (UAB) has come up with a new mechanism called " zero-interaction authentication" that eliminates the need of passwords, is easy-to-use and provides secure login protection. Nitesh Saxena, Ph.D., associate professor in the Department of Computer and Information Science, who leads this research is working in collaboration with the University of Helsinki and Aalto University in Finland on this project.

The new method of zero-interaction authentication works a lot like the passive 'keyless entry' system that is becoming popular in cars. It lets user access a PC, tablet or a car without interacting with it. Using wireless channels such as Bluetooth, the system detects the user’s security token such as a mobile phone and then depending on it, verifies and grants access to the user. This works the same way as the BlueProximity app - that can be used for automatically locking and unlocking the screen when you and your phone leave/enter the desk.


Before we go on to label this new mechanism as a plain proximity detector, we have to consider the fact that the zero-interaction authentication in use today are vulnerable to relay attacks (also called "ghost-and-leech attacks"). These attacks normally have a hacker or ghost who authenticates to the terminal on behalf of the user by colluding with another hacker or leech, who is close to the user at another location.

To counter such attacks, the UAB research team studied two types of sensor modalities - First included four sensor modalities that are commonly present on devices: Wi-Fi, Bluetooth, GPS and audio and Second involved the capabilities of using ambient physical sensors as a proximity-detection mechanism and focused on four: ambient temperature, precision gas, humidity and altitude. The second method was clearly a winner. By employing multiple modality combinations, the researchers were successful in delivering a robust relay-attack defense as well as good usability.

What are your thoughts on zero-interaction authentication mechanism? Share with us in comments below.
Source: UAB Research
@awasthi.nishant01 • 05 Jun, 2014 Idea is awesome but second approach doesn't seem to be explained much. If you can provide any link where the details of second approach can be found.
@Ankita Katdare • 05 Jun, 2014 @awasthi.nishant01 Sure. You can study these two papers published by the UAB researchers -

Comparing and Fusing Different Sensor Modalities for Relay Attack Resistance in Zero-Interaction Authentication

Drone to the Rescue: Relay-Resilient Authentication using Ambient Multi-Sensing
@Satya Swaroop Dash • 06 Jun, 2014 The authentication method too many parameters to make sure it is foolproof but this also means investing more money for hardware. So is the cost of the hardware for this system worth the money ?
To answer this question we have to find out what will its commercial equivalent cost ?.

Related Posts

@dayaa · Aug 19, 2013

I am pursuing my engineering degree under Vishveswarayya technological university(VTU). so please suggest me some effective books in NETWORK ANALYSIS.

@dinesh4260 · Mar 7, 2009

hi guys i am dinesh.....iam an electrical engineering student.iam going to write jto exam this year. i had download some previous year question papers. but i need some books to...

@prakash.athani · Oct 16, 2008

0x80000000 (-2147483648) represents minimum value for signed integers for 32-bit machines.

@Kaustubh Katdare · Mar 15, 2008

Let's see what our CEans have to say about this. Many colleges and corporates have a dress-code policy. Some of the colleges have their own uniform and some of the...

@Ankita Katdare · Sep 30, 2014

Lenovo India has come up with a new 6-inch smartphone called Lenovo Vibe Z2 Pro running Android 4.4 KitKat operating system and a Qualcomm Snapdragon 2.5 GHz Quad-Core processor. This...