CardioID: Secure ECG-BCG Agnostic Interaction-Free Device Pairing

Loading...
Thumbnail Image

Access rights

openAccess

URL

Journal Title

Journal ISSN

Volume Title

A1 Alkuperäisartikkeli tieteellisessä aikakauslehdessä

Date

2022-12-02

Major/Subject

Mcode

Degree programme

Language

en

Pages

15

Series

IEEE Access, Volume 10

Abstract

Usably secure ad-hoc device pairing fosters connectivity with hardware which is difficult to access (e.g., implanted) and grants convenience for ad-hoc short-term on-off pairing patterns (e.g. shared public domain). Examples are medical devices or fitness equipment. We present CardioID, an approach to extract features from heart rate variability for secure pairing keys that change with the randomness inherited in heart operation. Our processing chain is compatible with electrocardiogram (ECG, voltage), as well as ballistocardiogram (BCG, acceleration) type signals. Dissimilarities in locally generated sequences are accounted for using fuzzy cryptography exploiting Bose–Chaudhuri-Hocquenghem (BCH) codes. We propose a quantization to derive secure keys for cross BCG-ECG device pairing from heart-rate variability and analyze the performance in (inter- and intra-subject) BCG-to-ECG pairing. A secure communication protocol for Body Area Networks (BAN) is discussed. The attack surface of the protocol is analyzed, and we conduct a video-based attack study. In addition, two case studies with 5 (laboratory) and 20 (controlled in-field) subjects were conducted.

Description

Keywords

Other note

Citation

Zuo, S, Sigg, S, Nguyen, L, Beck, N, Jähne-Raden, N & Wolf, M C 2022, ' CardioID: Secure ECG-BCG Agnostic Interaction-Free Device Pairing ', IEEE Access, vol. 10, pp. 128682-128696 . https://doi.org/10.1109/ACCESS.2022.3226503