PCAS logo

PCAS aims at providing an innovative, trustworthy, handheld device. The Secured Personal Device (SPD) will allow users to securely store their data, to share it with trusted applications, and to easily and securely authenticate him. The SPD will recognize its user using multiple biometric sensors, including a stress level sensor to detect coercion. Using the same biometric authentication, the SPD will be able to enforce secure communication with servers in the cloud, relieving the user from memorizing passwords.

The SPD will take the form of a smartphone add-on that draws power from the smartphone and uses its communication services. The security and authentication mechanisms will use software components running on the SPD, on the smartphone, and in the cloud. These software components will enable the use of biometric sensors to perform authentication on the smartphone and on the cloud, authorize access to the stored data on the SPD, and securely transfer data from/to remote devices: USB or NFC connected computers or remote web services. The project will develop a full environment composed of programming APIs (needed to develop trusted applications) and modules that allow the easy integration of PCAS with existing web services. The benefits of the project will be demonstrated with two use cases: electronic health and university campus access control.

The goal of PCAS is to create a fully functional trustworthy infrastructure where the SPD and smartphone can operate safely in both offline and online modes. In order to achieve this goal, PCAS will produce the following results: 1) a portable, personal and biometrically secured storage device, 2) the integration of biometrical authentication on mobile devices (access to local files and remote services), 3) secured communication architecture between the SPD, a smartphone, and the service providers, and 4) and overall increase of security on the access and storage of data (local and online).

PCAS will be integrated and validated in two different scenarios: university campus (authentication and access to physical and remote services) and eHealth (storage, update, and access to private health records).

PCAS is expected to have a high impact in security and privacy in mobile devices. The project will enable a trustworthy ICT ecosystem, removing citizens’ psychological barriers to the adoption of eHeath and other novel ICT applications.

The project will also foster novel market segments that will exploit these applications.