Introducing Sim-Based Security Tokens as Enabling Technology for Mobile Real-Time Services

Roßnagel, Heiko; Muntermann, Jan

doi:10.1007/978-3-642-04766-4_12

Cited by 4 publications

(5 citation statements)

References 31 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Furthermore, they can be used to provide other security and trust management services such as multiple identities, exchange of keys, mobile real-time services, etc. (Kalman and Noll, 2007;Mayes and Markantonakis, 2008;Roßnagel and Muntermann, 2009;Rust et al, 2008).…”

Section: Introductionmentioning

confidence: 91%

“…A deeper analysis on qualified signatures can be found in (Rossnagel, 2004;Rossnagel and Royer, 2005). SIMs/USIMs, under EAL 4+ specification, have been considered SSCD because they are tamper-resistant devices that can be used as a trusted storage for the private key (where the key never leaves it) as well as other security-related information (Kalman and Noll, 2007;Mayes and Markantonakis, 2008;Roßnagel and Muntermann, 2009). Furthermore, they can be used to provide other security and trust management services such as multiple identities, exchange of keys, mobile real-time services, etc.…”

Section: Introductionmentioning

confidence: 98%

See 1 more Smart Citation

A mobile network operator-independent mobile signature service

Ruiz‐Martínez

Sánchez-Montesinos

Sánchez-Martínez

2011

Journal of Network and Computer Applications

View full text Add to dashboard Cite

Section: Introductionmentioning

confidence: 91%

Section: Introductionmentioning

confidence: 98%

A mobile network operator-independent mobile signature service

Ruiz‐Martínez

Sánchez-Montesinos

Sánchez-Martínez

2011

Journal of Network and Computer Applications

View full text Add to dashboard Cite

“…Roßnagel and Muntermann [2] suggested the use of a SIM card as a security module in mobile devices to ensure accountability, confidentiality and integrity in real-time services (information and transaction services). Pohlmann et al [3], and Hassinen et al [4] also proposed to use a PKI-enabled SIM card based on a public key infrastructure.…”

Section: Related Workmentioning

confidence: 99%

A security mechanism to increase confidence in m-transactions

Pequegnot¹,

Cart-Lamy²,

Thomas³

et al. 2011

2011 6th International Conference on Risks and Security of Internet and Systems (CRiSIS)

View full text Add to dashboard Cite

International audienceCurrently, NFC phones are coming in the handheld market, providing facilities to perform m-transactions. Obviously, this type of operation requires special security precautions. Indeed, a malicious code could intercept and hijack the system, even if there is a smart card. For example, the amount of the payment displayed in the terminal can be hijacked by an attacker to fool the user, or user's credential can be stolen thanks to a keylogger (and thus malicious codes can perform unwanted m-transactions automatically). This paper describes a security mechanism based on a graphical Turing test to prevent m-transactions submission by malwares. Firstly it introduces current m-transactions solutions. Then it explains the security mechanism that we propose to tackle the problem of untrusted handheld devices. It also underlines a proof of concept we implemented, to test its feasibility on a SIM card. Finally, it gives information on performances corresponding to the implementation that we made

show abstract

“…Perangkat ajar yang digunakan sebaiknya bersifat mobile karena piranti mobile memiliki kemampuan untuk bergerak dan mampu memenuhi kebutuhan pengguna tanpa harus terikat pada satu tempat atau sumber daya [3].…”

unclassified