Title :
Towards Trustworthy and Secure Kiosk Computing for Mobile Users
Author :
Zhou, Dong ; Inamura, Hiroshi
Author_Institution :
DoCoMo USA Labs., Palo Alto, CA
Abstract :
A mobile device that a user carries around usually contains data private to the user but has restricted human-device interaction capabilities. There is, however, no lack of stationary computers, or kiosks, with rich computing and user interaction resources in a userpsilas typical surrounding environment. Security is a concern when integrating a mobile device with an environment kiosk. In particular, the mobile user needs to be assured that the environment kiosk that he is using does not contain malicious code that may exploit his sensitive data on device, and that such sensitive data will not be left on the kiosk for attackers to exploit. In this paper, we present an OS-agnostic approach for trustworthy and secure kiosk computing. Our approach supports secure user session initiation, strong session isolation and quick session startup, and mitigates a number of security threats such as man-in-the-middle attack, session stealing attack, and keyboard tampering attack.
Keywords :
mobile computing; operating systems (computers); security of data; user interfaces; OS-agnostic approach; keyboard tampering attack; malicious code; man-in-the-middle attack; mobile device; secure kiosk computing; secure mobile user session initiation; security threat; session isolation; session stealing attack; trustworthy computing; user interaction; Computer displays; Data security; Keyboards; Mobile computing; Monitoring; Pervasive computing; Protocols; Software measurement; USA Councils; Ubiquitous computing;
Conference_Titel :
Embedded and Ubiquitous Computing, 2008. EUC '08. IEEE/IFIP International Conference on
Conference_Location :
Shanghai
Print_ISBN :
978-0-7695-3492-3
DOI :
10.1109/EUC.2008.170