Schaefer, Robbie; Mueller, Wolfgang; Marín-López, Andrés; Díaz-Sánchez, Daniel Using smart cards for secure and device independent user interfaces Proceedings Article In: Mobility '07: Proceedings of the 4th international conference on mobile technology, applications, and systems and the 1st international symposium on Computer human interaction in mobile technology, pp. 743 - 750, 2007, ISBN: 978-1-59593-819-0. Abstract | Links | BibTeX | Tags: abstract user interface, device independence, MEDEA+ A306, Security, Smart Card Marín-López, Andrés; Díaz-Sánchez, Daniel; Almenárez, Florina; García-Rubio, Carlos; Campo, Celeste Smart card-based agents for fair non-repudiation Journal Article In: COMPUTER NETWORKS-THE INTERNATIONAL JOURNAL OF COMPUTER AND TELECOMMUNICATIONS NETWORKING, vol. 51, iss. 9, pp. 2288-2298, 2007, ISSN: 0346-251X. Abstract | Links | BibTeX | Tags: Ad hoc mode, Electronic transactions, everyware, Fairness, Non-repudiation protocol, Smart Card, Unreliable channels Díaz-Sánchez, Daniel; Marín-Lopez, Andrés; Almenárez-Mendoza, Florina A Smart Card Solution for Access Control and Trust Management for Nomadic Users Proceedings Article In: Smart Card Research and Advanced Applications, pp. 62 - 77, 2006, ISSN: 0302-9743. Abstract | Links | BibTeX | Tags: Access control, cryptographic operation, MEDEA+ A306, physical store, Smart Card, Trust management Sánchez-Sánchez, Juan; Díaz-Sánchez, Daniel; Vigo-Segura, José; Martínez-Madrid, Natividad; Seepold, Ralf Smart Cards and Residential Gateways: Improving OSGi Services with Java Cards Book Chapter In: Smart Card Research and Advanced Applications, vol. 3928, pp. 78 - 90, Springer Berlin Heidelberg, 2006, ISBN: 978-3-540-33311-1. Abstract | Links | BibTeX | Tags: automation network, java virtual machine, MEDEA+ A306, open service gateway initiative, service platform, Smart Card Díaz-Sánchez, Daniel; Marín-Lopez, Andrés; Almenárez-Mendoza, Florina A Smart Card Solution for Access Control and Trust Management for Nomadic Users Book Chapter In: Smart Card Research and Advanced Applications, vol. 3928, pp. 62 - 77, Springer Berlin Heidelberg, 2006, ISBN: 978-3-540-33311-1. Abstract | Links | BibTeX | Tags: Access control, cryptographic operation, physical store, Smart Card, Trust management Almenarez, Florina; Díaz, Daniel; Marín, Andrés Secure Ad-Hoc mBusiness: Enhancing WindowsCE Security Journal Article In: Lecture Notes In Computer Sciences, vol. 3184, pp. 90-99, 2004, ISSN: 0302-9743. Abstract | Links | BibTeX | Tags: EasyWireless, everyware, Mutual Authentication, Smart Card, Trust Degree, Trust Relationship, Trusted Third Party, Ubisec2007
@inproceedings{pa046,
title = {Using smart cards for secure and device independent user interfaces},
author = {Robbie Schaefer and Wolfgang Mueller and Andrés Marín-López and Daniel Díaz-Sánchez
},
url = {https://dl.acm.org/doi/10.1145/1378063.1378189},
doi = {https://doi.org/10.1145/1378063.1378189},
isbn = {978-1-59593-819-0},
year = {2007},
date = {2007-09-10},
urldate = {2007-09-10},
booktitle = {Mobility '07: Proceedings of the 4th international conference on mobile technology, applications, and systems and the 1st international symposium on Computer human interaction in mobile technology},
pages = {743 - 750},
abstract = {Smart Cards are becoming a ubiquitous means for securing a wide range of interactive applications. However in many cases its use is limited for authentication purposes only. In this paper we extend the use of smart cards for carrying abstract user interface descriptions which can be rendered on different and potentially remote clients that in addition can support varying interaction modalities. This adds on the one hand to the security since a backend application cannot be used without the UI description, and on the other hand to the versatility of applications, since all devices with a respective renderer for certain modalities can be utilized.},
keywords = {abstract user interface, device independence, MEDEA+ A306, Security, Smart Card},
pubstate = {published},
tppubtype = {inproceedings}
}
@article{marin003,
title = {Smart card-based agents for fair non-repudiation},
author = {Andrés Marín-López and Daniel Díaz-Sánchez and Florina Almenárez and Carlos García-Rubio and Celeste Campo},
url = {https://www.sciencedirect.com/science/article/pii/S1389128607000278?via%3Dihub
https://www.sciencedirect.com/science/article/pii/S1389128607000278/pdfft?md5=96ecfc2c235f0f03fd85b40c499ffdad&pid=1-s2.0-S1389128607000278-main.pdf},
doi = {https://doi.org/10.1016/j.comnet.2007.01.014},
issn = {0346-251X},
year = {2007},
date = {2007-01-31},
urldate = {2007-01-31},
journal = {COMPUTER NETWORKS-THE INTERNATIONAL JOURNAL OF COMPUTER AND TELECOMMUNICATIONS NETWORKING},
volume = {51},
issue = {9},
pages = {2288-2298},
abstract = {Non-repudiation protocols are of great importance for electronic interactions. Different protocols have been proposed in this field, progressively relaxing the requirements on the computing power of both parties, and on the load and involvement of a trusted third party (TTP). Besides, there is a need to provide mobile users with a protocol adequate for ad hoc scenarios, where only unreliable channels can be guaranteed, and where the CA may not be reachable. In this paper we propose a new version of the fair non-repudiation protocol proposed by Gürgens et al. in [Sigrid Gürgens, Carsten Rudolph, Holger Vogt, On the security of fair non-repudiation protocols, in: Colin Boyd, Wenbo Mao (Eds.), ISC, Lecture Notes in Computer Science, vol. 2851, Springer, 2003, pp. 193–207]. We show unfair scenarios that can appear if one party controls the communication among the TTP and the other party. We introduce notary agents, which play the TTP role, and run our fair non-repudiation protocol. Notary agents execute inside the smart card, and sign the protocol messages with the user’s private key on his behalf. Our approach enables the protocol to run on unreliable channels, disconnected from the CA.},
keywords = {Ad hoc mode, Electronic transactions, everyware, Fairness, Non-repudiation protocol, Smart Card, Unreliable channels},
pubstate = {published},
tppubtype = {article}
}
2006
@inproceedings{pa049,
title = {A Smart Card Solution for Access Control and Trust Management for Nomadic Users},
author = {Daniel Díaz-Sánchez and Andrés Marín-Lopez and Florina Almenárez-Mendoza },
url = {https://link.springer.com/chapter/10.1007/11733447_5},
doi = {https://doi.org/10.1007/11733447_5},
issn = {0302-9743},
year = {2006},
date = {2006-04-28},
urldate = {2006-04-28},
booktitle = {Smart Card Research and Advanced Applications},
volume = {3928},
pages = {62 - 77},
abstract = {Increasing efforts are placed on security solutions for nomadic users. Solutions based on smart cards offer physical and logical portability, robustness, low cost, and high security. Nevertheless, such solutions concentrate only on offering the cryptographical capabilities of the smart card, together with key and user certificate storage. Advanced trust management and access control are not addressed. In this article, we propose a scheme to include trust management and attribute certificates for authorization in two widely used cryptographic APIs: Microsoft CryptoAPI and RSA labs PKCS#11.},
keywords = {Access control, cryptographic operation, MEDEA+ A306, physical store, Smart Card, Trust management},
pubstate = {published},
tppubtype = {inproceedings}
}
@inbook{bc010,
title = {Smart Cards and Residential Gateways: Improving OSGi Services with Java Cards},
author = {Juan Sánchez-Sánchez and Daniel Díaz-Sánchez and José Vigo-Segura and Natividad Martínez-Madrid and Ralf Seepold },
url = {https://link.springer.com/chapter/10.1007/11733447_6
https://link.springer.com/content/pdf/10.1007/11733447.pdf},
doi = {https://doi.org/10.1007/11733447_6},
isbn = {978-3-540-33311-1},
year = {2006},
date = {2006-01-11},
urldate = {2006-01-11},
booktitle = {Smart Card Research and Advanced Applications},
volume = {3928},
pages = {78 - 90},
publisher = {Springer Berlin Heidelberg},
abstract = {This article proposes an integration of Smart Cards into an environment controlled by a Residential Gateway. In a common scenario, the Residential Gateway offers services with different characteristics. Some services belong to profiles of a user and thus these services have a mobile behavior. As a consequence, these profile-related and thus user-specific services are configured via a Smart Card. The Smart Card serves as a medium easy to transport but it added more features to the scenario like the possibility of cryptographic services, secure payments for example for pay-per-view or environment’s customization. The core of this work has been carried out in order to achieve an integration between two existing technologies: OSGi (Open Service Gateway Initiative) and Java Card.
},
keywords = {automation network, java virtual machine, MEDEA+ A306, open service gateway initiative, service platform, Smart Card},
pubstate = {published},
tppubtype = {inbook}
}
@inbook{bc008,
title = {A Smart Card Solution for Access Control and Trust Management for Nomadic Users},
author = {Daniel Díaz-Sánchez and Andrés Marín-Lopez and Florina Almenárez-Mendoza },
url = {https://link.springer.com/chapter/10.1007/11733447_5
https://link.springer.com/content/pdf/10.1007/11733447.pdf},
doi = {https://doi.org/10.1007/11733447_5},
isbn = {978-3-540-33311-1},
year = {2006},
date = {2006-01-05},
urldate = {2006-01-05},
booktitle = {Smart Card Research and Advanced Applications},
volume = {3928},
pages = {62 - 77},
publisher = {Springer Berlin Heidelberg},
abstract = {Increasing efforts are placed on security solutions for nomadic users. Solutions based on smart cards offer physical and logical portability, robustness, low cost, and high security. Nevertheless, such solutions concentrate only on offering the cryptographical capabilities of the smart card, together with key and user certificate storage. Advanced trust management and access control are not addressed. In this article, we propose a scheme to include trust management and attribute certificates for authorization in two widely used cryptographic APIs: Microsoft CryptoAPI and RSA labs PKCS#11.},
keywords = {Access control, cryptographic operation, physical store, Smart Card, Trust management},
pubstate = {published},
tppubtype = {inbook}
}
2004
@article{10.1007/978-3-540-30079-3_10,
title = {Secure Ad-Hoc mBusiness: Enhancing WindowsCE Security},
author = {Florina Almenarez and Daniel Díaz and Andrés Marín},
editor = {Sokratis Katsikas and Javier Lopez and Günther Pernul},
url = {https://link.springer.com/chapter/10.1007/978-3-540-30079-3_10
https://doi.org/10.1007/978-3-540-30079-3_10},
doi = {10.1007/978-3-540-30079-3_10},
issn = {0302-9743},
year = {2004},
date = {2004-01-01},
urldate = {2004-01-01},
journal = {Lecture Notes In Computer Sciences},
volume = {3184},
pages = {90-99},
publisher = {Springer Berlin Heidelberg},
address = {Berlin, Heidelberg},
abstract = {Nowadays we can perform business transactions with remote servers interconnected to Internet using our personal devices. These transactions can also be possible without any infrastructure in pure ad-hoc networks. In both cases, interacting parts are often unknown, therefore, they require some mechanism to establish ad-hoc trust relationships and perform secure transactions. Operating systems for mobile platforms support secure communication and authentication, but this support is based on hierarchical PKI. For wireless communications, they use the (in)secure protocol WEP. This paper presents a WCE security enhanced architecture allowing secure transactions, mutual authentication, and access control based on dynamic management of the trusted certificate list. We have successfully implemented our own CSP to support the new certificate management and data ciphering.},
keywords = {EasyWireless, everyware, Mutual Authentication, Smart Card, Trust Degree, Trust Relationship, Trusted Third Party, Ubisec},
pubstate = {published},
tppubtype = {article}
}
Publications
Using smart cards for secure and device independent user interfaces Proceedings Article In: Mobility '07: Proceedings of the 4th international conference on mobile technology, applications, and systems and the 1st international symposium on Computer human interaction in mobile technology, pp. 743 - 750, 2007, ISBN: 978-1-59593-819-0. Smart card-based agents for fair non-repudiation Journal Article In: COMPUTER NETWORKS-THE INTERNATIONAL JOURNAL OF COMPUTER AND TELECOMMUNICATIONS NETWORKING, vol. 51, iss. 9, pp. 2288-2298, 2007, ISSN: 0346-251X. A Smart Card Solution for Access Control and Trust Management for Nomadic Users Proceedings Article In: Smart Card Research and Advanced Applications, pp. 62 - 77, 2006, ISSN: 0302-9743. Smart Cards and Residential Gateways: Improving OSGi Services with Java Cards Book Chapter In: Smart Card Research and Advanced Applications, vol. 3928, pp. 78 - 90, Springer Berlin Heidelberg, 2006, ISBN: 978-3-540-33311-1. A Smart Card Solution for Access Control and Trust Management for Nomadic Users Book Chapter In: Smart Card Research and Advanced Applications, vol. 3928, pp. 62 - 77, Springer Berlin Heidelberg, 2006, ISBN: 978-3-540-33311-1. Secure Ad-Hoc mBusiness: Enhancing WindowsCE Security Journal Article In: Lecture Notes In Computer Sciences, vol. 3184, pp. 90-99, 2004, ISSN: 0302-9743.2007
2006
2004