Abstract
COVID-19 pandemic and lockdowns forced employees across the world to work from home. Remote working has become a necessity rather than a choice. However, in order to meet this increasing demand, the most pressing security concerns of organizations should be addressed. In this paper, we present the design and implementation of ProGun, an end-point device (a USB dongle) for remote working. We present the hardware/software co-design of ProGun, by which most security risks due to lack of physical protection could be mitigated. We also discuss choices we made among many alternatives for user authentication and their security and usability implications in a remote working environment.
Original language | English |
---|---|
Title of host publication | 14th International Conference on Information Security and Cryptology, ISCTURKEY 2021 - Proceedings |
Editors | Seref Sagiroglu, Sedat Akleylek, Mustafa Alkan, Ferruh Ozbudak, Yavuz Canbay, Ertugrul Karacuha, Ali Aydin Selcuk |
Publisher | Institute of Electrical and Electronics Engineers Inc. |
Pages | 28-33 |
Number of pages | 6 |
ISBN (Electronic) | 9781665407762 |
DOIs | |
Publication status | Published - 2021 |
Event | 14th International Conference on Information Security and Cryptology, ISCTURKEY 2021 - Ankara, Turkey Duration: 2 Dec 2021 → 3 Dec 2021 |
Publication series
Name | 14th International Conference on Information Security and Cryptology, ISCTURKEY 2021 - Proceedings |
---|
Conference
Conference | 14th International Conference on Information Security and Cryptology, ISCTURKEY 2021 |
---|---|
Country/Territory | Turkey |
City | Ankara |
Period | 2/12/21 → 3/12/21 |
Bibliographical note
Publisher Copyright:© 2021 IEEE.
Funding
This research is funded by TUBITAK (The Scientific and Technological Research Council of Turkey) under the grant No: 3200964.
Funders | Funder number |
---|---|
TUBITAK | |
Türkiye Bilimsel ve Teknolojik Araştirma Kurumu | 3200964 |
Keywords
- authentication
- remote working
- risk based authentication
- security
- security device
- two-factor authentication
- zero trust