Device Onboarding Using FDO and the Untrusted Installer Model
Abstract
FDO's untrusted model is contrasted with Wi-Fi Easy Connect to illustrate the advantages of each mechanism.
References
[1]
Barker, E. et al. Recommendation for pair-wise key-establishment schemes using discrete logarithm cryptography. NIST, Computer Security Resource Center (Apr. 2018); https://csrc.nist.gov/publications/detail/sp/800-56a/rev-3/final.
[2]
Bormann, C. and Hoffman, P. Concise Binary Object Representation (CBOR), STD 94, RFC 8949. RFC Editor. IETF, 2020; https://www.rfc-editor.org/info/std94.
[3]
Chen, L. Recommendation for key derivation using pseudorandom functions (revised). NIST Technical Series Publications, National Institute of Standards and Technology, 2022; https://bit.ly/3TntdqQ.
[4]
Cheshire, S. and Krochmal, M. DNS-based service discovery, RFC 6763. IETF, 2013; https://www.ietf.org/rfc/rfc6763.txt.
[5]
Cooper, D. et al. X.509 Certificate and Certificate Revocation List (CRL) profile, RFC 5280. IETF, 2008; https://www.ietf.org/rfc/rfc5280.txt.
[6]
Cooper, G. et al. FIDO Device Onboard Specification 1.1. FIDO Alliance, 2022; https://bit.ly/3tqfrZY.
[7]
FIDO Alliance. Home FIDO Alliance Specifications Overview. FIDO Alliance, 2022; https://fidoalliance.org/specifications/.
[8]
Lundblade, L. et al. The Entity Attestation Token (EAT), draft-ietf-rats-eat-24. IETF Datatracker, 2022; https://datatracker.ietf.org/doc/draft-ietf-rats-eat/.
[9]
Nystrom, M. and Kaliski, B. PKCS #10: Certification Request Syntax Specification Version 1.7, RFC 2986. RFC Editor. IETF, 2000; https://www.rfc-editor.org/rfc/rfc2986.
[10]
Schaad, J. and Cellars, A. CBOR Object Signing and Encryption (COSE), RFC 8152. IETF Datatracker. IETF, 2017. https://datatracker.ietf.org/doc/html/rfc8152.
[11]
Sheffer, Y. et al. Summarizing known attacks on Transport Layer Security (TLS) and Datagram TLS (DTLS), RFC 7457. IETF Datatracker, 2015; https://www.rfc-editor.org/rfc/rfc7457.html.
[12]
Wi-Fi Alliance. Wi-Fi Easy Connect specification, 2020; https://www.wi-fi.org/file/wi-fi-easy-connect-specification.
Index Terms
- Device Onboarding Using FDO and the Untrusted Installer Model
Recommendations
Privacy Preservation over Untrusted Mobile Networks
Privacy in Location-Based ApplicationsThe proliferation of mobile devices has given rise to novel user-centric applications and services. In current mobile systems, users gain access to remote servers over mobile network operators. These operators are typically assumed to be trusted and to ...
Comments
Information & Contributors
Information
Published In
April 2024
89 pages
Copyright © 2024 ACM.
Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than the author(s) must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected].
Publisher
Association for Computing Machinery
New York, NY, United States
Publication History
Published: 25 March 2024
Online First: 11 March 2024
Published in CACM Volume 67, Issue 4
Check for updates
Qualifiers
- Research-article
Contributors
Other Metrics
Bibliometrics & Citations
Bibliometrics
Article Metrics
- 0Total Citations
- 486Total Downloads
- Downloads (Last 12 months)486
- Downloads (Last 6 weeks)58
Reflects downloads up to 11 Aug 2024
Other Metrics
Citations
View Options
View options
View or Download as a PDF file.
PDFeReader
View online with eReader.
eReaderDigital Edition
View this article in digital edition.
Digital EditionHTML Format
View this article in HTML Format.
HTML FormatGet Access
Login options
Check if you have access through your login credentials or your institution to get full access on this article.
Sign in