دانلود رایگان مقاله انگلیسی آریا: پشتیبانی سیستم عامل برای واقعیت افزوده ایمن - IEEE 2018

Augmented reality (AR) technologies enable users to interact with virtual content in fundamentally new ways. AR applications capture input from a user’s surroundings, such as video, depth sensor data, or audio, and they overlay output (for instance, visual, audio, or haptic feedback) directly on the user’s perception of the real world, through devices like smartphones, head-mounted displays (HMDs), or automotive windshields. While the vision of AR is decades old,1 AR technologies are only now on the cusp of commercial viability and beginning to capture the attention of users worldwide. From the wildly popular mobile AR app Pokémon Go to powerful HMDs like Microsoft’s HoloLens and Meta’s Meta2, as well as AR-enabled car windshields2 and military applications,3 interest in AR technologies across diverse industry sectors is increasing. Figure 1 shows two examples. Although AR technologies promise great potential benefits, they also raise new and serious computer security and privacy risks. For example, AR applications’ need for rich, continuous sensor data (such as video and audio feeds) raises privacy concerns for both users and bystanders. The ability for AR applications to generate virtual (visual, audio, or haptic) content that modifies a user’s perception of the physical world also raises new security and safety risks. For example, consider a buggy or malicious AR windshield application that obscures real-world pedestrians, overlays misleading information on real-world road signs, startles the user while driving, or strategically obstructs virtual content from another, simultaneously running AR application. Addressing AR output risks is particularly critical for fully immersive AR systems, such as HMDs and car windshields, where users cannot easily disengage from their devices if output security issues arise. Figure 2 shows an abstract architecture of an AR platform, with sensor input coming in and virtual content produced as output.

Discussion

Designing a full-fledged operating system for AR platforms that supports strong security, privacy, and safety properties while enabling rich application functionality is challenging. Prior work addresses many input privacy challenges for AR, and in this work, we make significant strides toward securely handling visual output. However, many challenges and open questions remain. For example:

■ Handling noisy input sensing. While our prototype used simulated AR environments to enable controlled output-related experiments, real AR systems will need to handle potentially noisy sensor inputs, which may confound output policy management (for instance, if a recognizer fails to detect a person).

■ More complex policies. By supporting policy mechanisms that compose by design, Arya avoids challenges raised by potentially conflicting or flip-flopping policies. However, this design choice excludes some policy mechanisms, particularly those that move AR objects (because they might move objects to locations where they violate other policies). Future work should consider whether it is possible to design a more complex policy framework that supports policies that may conflict, for example, by employing constraint-solving approaches.