[UCI-Calit2] CS Seminar: Ee-Chien Ghang, Friday, October 1, 2010

Shellie Nazarenus snaz at calit2.uci.edu
Mon Sep 27 10:26:02 PDT 2010


DEPARTMENT OF CS DISTINGUISHED LECTURER SEMINAR SERIES
Co-Sponsored by Networked Systems

NAME
Prof. Ee-Chien Chang, School of Computing, National University of
Singapore

TITLE
Securing Interactive Session using Visual Channel and Visual Inspection

DATE/TIME
Friday, October 1, 2010; 11am - Noon

LOCATION
Donald Bren Hall 6011

ABSTRACT
Securing interactive session with a server through an untrusted network
terminal is challenging even if the user has an additional factor for
authentication like a mobile phone. One of the hurdles is the difficulty
in jointly verifying and presenting information in a user-friendly
manner. In this talk, we will discuss how visual channel can be
exploited to secure interactive sessions. A visual channel is a
communication channel established from a display to a device's camera,
and is known to be helpful in securing key exchange protocol. Here, we
consider the interactive session after a session key has been securely
established. In a typical session, the server has large amount of
information to be presented, whereas a user may only want to view
selected regions-of-interests. The visual channel has the limitation
that a camera can only capture and display a small region, and thus can
only authenticate a selected region at one time.  Such limitation leads
to a form of replay attack, which renders some straightforward
implementations either insecure or cumbersome to use. We will describe a
scheme that embeds visual cue into 2D barcodes, so that the authenticity
of the barcodes can be verified through visual inspection and decoding
carried out in the mobile device. This talk is based on a paper to be
presented in ACSAC 2010.

BIO
Ee-Chien Chang is an associate professor in the School of Computing,
National University of Singapore (NUS).  He obtained his BSc and MSc
from NUS, and PhD in May 1998 from the Department of Computer Science,
New York University. He was a post-doc in DIMACS and NEC Research
Institute from July 1999 to July 2000. His research interests include
information security, multimedia and biometric security. Dr Chang is
currently in UCI for his 10-months sabbatical leave starting from Sep
2010.



More information about the UCI-Calit2 mailing list