Enhancing Security and Privacy in Augmented Collective Beings
PI: 蕭旭君老師
計畫簡介:
為打造便利生活,許多雲端平台提供串接服務,讓使用者能自定義自動化規則連接各種物聯網裝置和網路應用。然而,這樣的便利性也造成資安上的隱憂:一則是隨著物聯網裝置和自動化規則數量的增加,有心人士能利用規則之間的複雜的連鎖反應,獲取過多的存取權限或隱私資訊。另一個隱憂是為了提供串接服務,這些集中式的平台能看到使用者的大量隱私資訊,包括地理位置、財務狀況、健康狀況、興趣等。透過弱點分析技術和密碼學協定,我們開發資安檢測工具以及提出保障隱私的機制,帶給民眾更便利但風險更少的物聯網生活。
Members
Publications
W. Chu et al., "On Using Camera-based Visible Light Communication for Security Protocols", in 2020 IEEE Security and Privacy Workshops (SPW), pp. 110-117.
K. Hsu, Y. Chiang and H. Hsiao, "SafeChain: Securing Trigger-Action Programming From Attack Chains", IEEE Transactions on Information Forensics and Security, vol. 14, no. 10, 2019, pp. 2607-2622.
L. Chang et al., "Security Implications of Redirection Trail in Popular Websites Worldwide", in Proceedings of the 26th International Conference on World Wide Web, Republic and Canton of Geneva, CHE: International World Wide Web Conferences Steering Committee, 2017, pp. 1491–1500.
Y. Chen et al., "Poster: VLC-based Authenticated Key Exchange", 2016.
國立臺灣大學
