The TIGER project (Trusted Innovative GNSS rEceiveR), funded by the European GNSS Supervisory Authority under FP7 program, aims to develop a technology that will permit access control and encryption of data based on a person’s position obtained by GPS and future GALILEO.
Security systems can be classified by factors: the number of information that a user need to provide to the system before being authenticated. Traditional three factors authentication are the knowledge of a password/code, the possession of a token/smart card and a physical attribute of the person such as a fingerprint. The TIGER technology introduces a new factor in the security domain, the position of a user, that can be used to enhance the security systems. It is envisaged that the technology will consist of a GPS-enabled USB token that can operate indoors with supporting software to enable a myriad of security-enabled applications including virtual private networks (VPNs), limiting access to predetermined areas, encryption and ecryption of data at predetermined locations and access to a web portals limited to the company headquarter or home.
Furthermore, location information can be securely provided to facilitate better auditing, within the context of policies that manage privacy issues. Location privacy is maintained within the security protocols used for access control.
The TIGER technology could be applied to new or existing security applications, enhancing security with features that range from:
- Location based Access Control: a security scheme that grants permissions to an entity (e.g. access and manipulate information) based on the physical location of the entity;
- Geoencryption: a security feature that provides encryption and decryption of data based on location and time. Information can be accessed (decrypted) only in authorized areas;
- Attestation: a proof of the position, time and location acquisition context of a given person or entity.
More information on www.tiger-project.eu