Security in Pervasive Computing

This volume contains the papers presented at the Third International Conference on Security in Pervasive Computing (SPC 2006), held April 1921, 2006 in York, UK. The conference focused on methods, tools, principles, and practices for assessing and achievingsecurityinapervasiveenvironment.Newsecurityconceptswerediscussed,in domains and applications such as handheld devices, mobile phones, smartcards, RFID chips, and smart labels, as well as new, emerging technological spaces. The conf- ence also presented work on fundamental themes such as risk identi?cation and mi- gation,security policies for pervasiveenvironments,privacymeasures (especially cr- tographic protocols), and mobility and location-aware services. Submissions included work on biometrics, ambient intelligence, Web services, security requirements, and many other topics. We received 56 submissions, and accepted 16 full papers for presentation. Each submission was reviewed by the international Programme Committee. We are grateful to the Programme Committee members, and the additional reviewers, for their timely completion of the reviewing process, and for the quality and detail of their reviews and discussion. Our thanks go to all members of the ProgrammeCommittee for their efforts; the - ditional reviewers; the authors, for submitting their papers; the keynote speaker, Frank Stajano; the invited speaker, Howard Chivers; and the Department of Computer S- ence, University of York, for supporting the event. April 2006 John A. Clark (Program Chair) Richard F. Paige Fiona A.C. Polack Phillip J. Brooke Organization SPC 2006 was organized by the Department of Computer Science, University of York.

Klappentext

This book constitutes the refereed proceedings of the Third International Conference on Security in Pervasive Computing, SPC 2006, held in York, UK, in April 2006. The 16 revised papers presented together with the extended abstract of 1 invited talk were carefully reviewed and selected from 56 submissions. The papers are organized in topical sections on protocols, mechanisms, integrity, privacy and security, information flow and access control, and authentication.

Inhalt
Invited Talk.- Trust Without Identification.- Protocols.- Constant-Round Password-Based Group Key Generation for Multi-layer Ad-Hoc Networks.- Enabling Secure Discovery in a Pervasive Environment.- Forward Secure Communication in Wireless Sensor Networks.- Mechanisms.- Low Rate DoS Attack to Monoprocess Servers.- Delegating Secure Logging in Pervasive Computing Systems.- Implementing Minimized Multivariate PKC on Low-Resource Embedded Systems.- Integrity.- Higher Dependability and Security for Mobile Applications.- Tampering with Motes: Real-World Physical Attacks on Wireless Sensor Networks.- Privacy and Security.- The Brave New World of Ambient Intelligence: An Analysis of Scenarios Regarding Privacy, Identity and Security Issues.- Profiles and Context Awareness for Mobile Users A Middleware Approach Supporting Personal Security.- Privacy Sensitive Location Information Systems in Smart Buildings.- Silent Cascade: Enhancing Location Privacy Without Communication QoS Degradation.- Information Flow and Access Control.- Securing Information Gateways with Derivation-Constrained Access Control.- Information Flow Control to Secure Dynamic Web Service Composition.- Authentication.- Analysing a Biometric Authentication Protocol for 3G Mobile Systems Using CSP and Rank Functions.- Attribute-Based Authentication Model for Dynamic Mobile Environments.