CardioCam: Leveraging Camera on Mobile Devices to Verify Users While Their Heart is Pumping

With the increasing prevalence of mobile and IoT devices (e.g., smartphones, tablets, smart-home appliances), massive private and sensitive information are stored on these devices. To prevent unauthorized access on these devices, existing user verification solutions either rely on the complexity of user-defined secrets (e.g., password) or resort to specialized biometric sensors (e.g., fingerprint reader), but the users may still suffer from various attacks, such as password theft, shoulder surfing, smudge, and forged biometrics attacks. In this paper, we propose, CardioCam, a low-cost, general, hard-to-forge user verification system leveraging the unique cardiac biometrics extracted from the readily available built-in cameras in mobile and IoT devices. We demonstrate that the unique cardiac features can be extracted from the cardiac motion patterns in fingertips, by pressing on the built-in camera. To mitigate the impacts of various ambient lighting conditions and human movements under practical scenarios, CardioCam develops a gradient-based technique to optimize the camera configuration, and dynamically selects the most sensitive pixels in a camera frame to extract reliable cardiac motion patterns. Furthermore, the morphological characteristic analysis is deployed to derive user-specific cardiac features, and a feature transformation scheme grounded on Principle Component Analysis (PCA) is developed to enhance the robustness of cardiac biometrics for effective user verification. With the prototyped system, extensive experiments involving 25 subjects are conducted to demonstrate that CardioCam can achieve effective and reliable user verification with over 99% average true positive rate (TPR) while maintaining the false positive rate (FPR) as low as 4%

Survey and Systematization of Secure Device Pairing

Secure Device Pairing (SDP) schemes have been developed to facilitate secure communications among smart devices, both personal mobile devices and Internet of Things (IoT) devices. Comparison and assessment of SDP schemes is troublesome, because each scheme makes different assumptions about out-of-band channels and adversary models, and are driven by their particular use-cases. A conceptual model that facilitates meaningful comparison among SDP schemes is missing. We provide such a model. In this article, we survey and analyze a wide range of SDP schemes that are described in the literature, including a number that have been adopted as standards. A system model and consistent terminology for SDP schemes are built on the foundation of this survey, which are then used to classify existing SDP schemes into a taxonomy that, for the first time, enables their meaningful comparison and analysis.The existing SDP schemes are analyzed using this model, revealing common systemic security weaknesses among the surveyed SDP schemes that should become priority areas for future SDP research, such as improving the integration of privacy requirements into the design of SDP schemes. Our results allow SDP scheme designers to create schemes that are more easily comparable with one another, and to assist the prevention of persisting the weaknesses common to the current generation of SDP schemes.Comment: 34 pages, 5 figures, 3 tables, accepted at IEEE Communications Surveys & Tutorials 2017 (Volume: PP, Issue: 99

Photo filter apps: understanding analogue nostalgia in the new media ecology

As digital media have become more pervasive and entrenched in our daily routines, a nostalgic countertrend has increasingly valued the physical and tactile nature of the analogue image. In the past few years, technologically obsolete devices, such as lo-fi cameras and vinyl records, have not faded out of sight completely but are instead experiencing a comeback. At the same time, digital media capitalise on the nostalgia for the analogue and fetishise the retro aesthetics of old technologies. This article explores the emergence of photo filter and effect applications which allow users to modify digital photos, adding signifiers of age such as washed-out colours, scratches and torn borders. It is argued that these new technologies, with programs such as Instagram, Hipstamatic and Camera 360, bring back the illusory physicality of picture-taking through digital skeuomorphism. Drawing on media archaeology practice, this article interrogates the limits of the retro sensibility and the fetishisation of the past in the context of digital media, in particular by focusing on the case study of the start-up Instagram. This photo filter application neither merely stresses the twilight nature of photography nor represents the straightforward digital evolution of previous analogue features. Rather, it responds to the necessity to feel connected to the past by clear and valued signs of age, mimicking a perceived sense of loss. Faced with the persistent hipster culture and the newness of digital media, photo filter apps create comfortable memories, ageing pictures and adding personal value. As such, it will be argued that this phenomenon of nostalgia for analogue photography can be linked to the concepts of ritual and totem. By providing a critical history of Instagram as a photo-sharing social network, this article aims to explain new directions in the rapidly changing system of connective media