Toward a Secure Crowdsourced Location Tracking System

Chinmay Garg; Aravind Machiry; Andrea Continella; Christopher Kruegel; Giovanni Vigna

doi:10.1145/3448300.3467821

Toward a Secure Crowdsourced Location Tracking System

Chinmay Garg, Aravind Machiry, Andrea Continella, Christopher Kruegel, Giovanni Vigna

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

3 Citations (Scopus)

72 Downloads (Pure)

Abstract

Low-energy Bluetooth devices have become ubiquitous and widely used for different applications. Among these, Bluetooth trackers are becoming popular as they allow users to track the location of their physical objects. To do so, Bluetooth trackers are often built-in within other commercial products connected to a larger crowdsourced tracking system. Such a system, however, can pose a threat to the security and privacy of the users, for instance, by revealing the location of a user's valuable object. In this paper, we introduce a set of security properties and investigate the state of commercial crowdsourced tracking systems, which present common design flaws that make them insecure. Leveraging the results of our investigation, we propose a new design for a secure crowdsourced tracking system (SECrow), which allows devices to leverage the benefits of the crowdsourced model without sacrificing security and privacy. Our preliminary evaluation shows that SECrow is a practical, secure, and effective crowdsourced tracking solution

Original language	English
Title of host publication	14th ACM Conference on Security and Privacy in Wireless and Mobile Networks (WiSec)
Pages	311-322
Number of pages	12
ISBN (Electronic)	9781450383493
DOIs	https://doi.org/10.1145/3448300.3467821
Publication status	Published - 28 Jun 2021
Event	14th ACM Conference on Security and Privacy in Wireless and Mobile Networks - Vitual Event Duration: 28 Jun 2021 → 2 Jul 2021 Conference number: 14 https://sites.nyuad.nyu.edu/wisec21/

Conference

Conference	14th ACM Conference on Security and Privacy in Wireless and Mobile Networks
Abbreviated title	WiSec 2021
City	Vitual Event
Period	28/06/21 → 2/07/21
Internet address	https://sites.nyuad.nyu.edu/wisec21/

Keywords

Cybersecurity

Access to Document

10.1145/3448300.3467821Licence: CC BY

3448300.3467821Final published version, 890 KBLicence: CC BY

3 Citations
1 Preprint

Toward a Secure Crowdsourced Location Tracking System
Garg, C., Machiry, A., Continella, A., Kruegel, C. & Vigna, G., 1 Jun 2021, ArXiv.org.
Research output: Working paper › Preprint › Academic

Open Access
File
2 Downloads (Pure)

Cite this

@inproceedings{59ba3fbdfb9b4f0cbb4862e539fdcbab,

title = "Toward a Secure Crowdsourced Location Tracking System",

abstract = "Low-energy Bluetooth devices have become ubiquitous and widely used for different applications. Among these, Bluetooth trackers are becoming popular as they allow users to track the location of their physical objects. To do so, Bluetooth trackers are often built-in within other commercial products connected to a larger crowdsourced tracking system. Such a system, however, can pose a threat to the security and privacy of the users, for instance, by revealing the location of a user's valuable object. In this paper, we introduce a set of security properties and investigate the state of commercial crowdsourced tracking systems, which present common design flaws that make them insecure. Leveraging the results of our investigation, we propose a new design for a secure crowdsourced tracking system (SECrow), which allows devices to leverage the benefits of the crowdsourced model without sacrificing security and privacy. Our preliminary evaluation shows that SECrow is a practical, secure, and effective crowdsourced tracking solution",

keywords = "Cybersecurity",

author = "Chinmay Garg and Aravind Machiry and Andrea Continella and Christopher Kruegel and Giovanni Vigna",

note = "Funding Information: This material is based upon work supported by the Department of Homeland Security (DHS) (Award No. FA8750-19-2-0005) and by the Office of Naval Research (ONR) under award number N00014-17-1-2011 and N00014-20-1-2632. Any opinions, findings, and conclusions or recommendations expressed in this publication are those of the author(s) and do not necessarily reflect the views of the ONR or DHS. Part of this work is supported by the Dutch Research Council (NWO) in the context of the INTERSECT research program (NWA.1160.18.301). Publisher Copyright: {\textcopyright} 2021 Owner/Author.; 14th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2021 ; Conference date: 28-06-2021 Through 02-07-2021",

year = "2021",

month = jun,

day = "28",

doi = "10.1145/3448300.3467821",

language = "English",

isbn = "9781450383493",

pages = "311--322",

booktitle = "14th ACM Conference on Security and Privacy in Wireless and Mobile Networks (WiSec)",

url = "https://sites.nyuad.nyu.edu/wisec21/",

}

Garg, C, Machiry, A, Continella, A, Kruegel, C & Vigna, G 2021, Toward a Secure Crowdsourced Location Tracking System. in 14th ACM Conference on Security and Privacy in Wireless and Mobile Networks (WiSec)., 3467821, pp. 311-322, 14th ACM Conference on Security and Privacy in Wireless and Mobile Networks, Vitual Event, 28/06/21. https://doi.org/10.1145/3448300.3467821

TY - GEN

T1 - Toward a Secure Crowdsourced Location Tracking System

AU - Garg, Chinmay

AU - Machiry, Aravind

AU - Continella, Andrea

AU - Kruegel, Christopher

AU - Vigna, Giovanni

N1 - Conference code: 14

PY - 2021/6/28

Y1 - 2021/6/28

N2 - Low-energy Bluetooth devices have become ubiquitous and widely used for different applications. Among these, Bluetooth trackers are becoming popular as they allow users to track the location of their physical objects. To do so, Bluetooth trackers are often built-in within other commercial products connected to a larger crowdsourced tracking system. Such a system, however, can pose a threat to the security and privacy of the users, for instance, by revealing the location of a user's valuable object. In this paper, we introduce a set of security properties and investigate the state of commercial crowdsourced tracking systems, which present common design flaws that make them insecure. Leveraging the results of our investigation, we propose a new design for a secure crowdsourced tracking system (SECrow), which allows devices to leverage the benefits of the crowdsourced model without sacrificing security and privacy. Our preliminary evaluation shows that SECrow is a practical, secure, and effective crowdsourced tracking solution

AB - Low-energy Bluetooth devices have become ubiquitous and widely used for different applications. Among these, Bluetooth trackers are becoming popular as they allow users to track the location of their physical objects. To do so, Bluetooth trackers are often built-in within other commercial products connected to a larger crowdsourced tracking system. Such a system, however, can pose a threat to the security and privacy of the users, for instance, by revealing the location of a user's valuable object. In this paper, we introduce a set of security properties and investigate the state of commercial crowdsourced tracking systems, which present common design flaws that make them insecure. Leveraging the results of our investigation, we propose a new design for a secure crowdsourced tracking system (SECrow), which allows devices to leverage the benefits of the crowdsourced model without sacrificing security and privacy. Our preliminary evaluation shows that SECrow is a practical, secure, and effective crowdsourced tracking solution

KW - Cybersecurity

U2 - 10.1145/3448300.3467821

DO - 10.1145/3448300.3467821

M3 - Conference contribution

SN - 9781450383493

SP - 311

EP - 322

BT - 14th ACM Conference on Security and Privacy in Wireless and Mobile Networks (WiSec)

T2 - 14th ACM Conference on Security and Privacy in Wireless and Mobile Networks

Y2 - 28 June 2021 through 2 July 2021

ER -

Toward a Secure Crowdsourced Location Tracking System

Abstract

Conference

Keywords

Access to Document

Fingerprint

Research output

Toward a Secure Crowdsourced Location Tracking System

Cite this