Author:
Owoh Nsikak P.,Singh M. Mahinderjit
Abstract
The proliferation of mobile phones with integrated sensors makes large scale sensing possible at low cost. During mobile sensing, data mostly contain sensitive information of users such as their real-time location. When such information are not effectively secured, users’ privacy can be violated due to eavesdropping and information disclosure. In this paper, we demonstrated the possibility of unauthorized access to location information of a user during sensing due to the ineffective security mechanisms in most sensing applications. We analyzed 40 apps downloaded from Google Play Store and results showed a 100% success rate in traffic interception and disclosure of sensitive information of users. As a countermeasure, a security scheme which ensures encryption and authentication of sensed data using Advanced Encryption Standard 256-Galois Counter Mode was proposed. End-to-end security of location and motion data from smartphone sensors are ensured using the proposed security scheme. Security analysis of the proposed scheme showed it to be effective in protecting Android based sensor data against eavesdropping, information disclosure and data modification.
Subject
Computer Science Applications,Information Systems,Software
Reference43 articles.
1. From participatory sensing to mobile crowd sensing,2014
2. Anchor-assisted and vote-based trustworthiness assurance in smart city crowdsensing;IEEE Access,2016
3. Visualization of health monitoring data acquired from distributed sensors for multiple patients,2015
4. Quantifying user reputation scores, data trustworthiness, and user incentives in mobile crowd-sensing;IEEE Access,2017
Cited by
8 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献