A PK-SIM card based end-to-end security framework for SMS

Computer Standards and Interfaces

Volumn 31, Issue 4, 2009, Pages 629-641

  Rongyu, He ^a,b   Guolei, Zhao ^b   Chaowen, Chang ^a,b   Hui, Xie ^b   Xi, Qin ^b   Zheng, Qin ^a  

^a XI'AN JIAOTONG UNIVERSITY   (China)

^b INFORMATION ENGINEERING UNIVERSITY   (China)

Author keywords

End to end security; PK SIM card; Primary key; Public Key Infrastructure (PKI); Session key

Indexed keywords

END-TO-END SECURITY; PK-SIM CARD; PRIMARY KEY; PUBLIC KEY INFRASTRUCTURE (PKI); SESSION KEY;

APPLICATIONS; CELLULAR TELEPHONE SYSTEMS; ELECTRONIC DOCUMENT IDENTIFICATION SYSTEMS; GATEWAYS (COMPUTER NETWORKS); MOBILE COMPUTING; PUBLIC KEY CRYPTOGRAPHY; SECURITY SYSTEMS; STANDARDIZATION; TELECOMMUNICATION EQUIPMENT; TELECOMMUNICATION NETWORKS; WIRELESS TELECOMMUNICATION SYSTEMS;

AUTHENTICATION;

EID: 64249114541     PISSN: 09205489     EISSN: None     Source Type: Journal    
DOI: 10.1016/j.csi.2008.06.011     Document Type: Article

References (29)

1. SMS Forum, Short Message Peer-to-Peer Protocol Specification version 5.0, http://www.smsforum.net.
2. The Monthly Statistics in Communication Industry, http://www.mii.gov.cn/art/2006/12/22 /art_27_27537.htm.
3. Walter T., et al. Secure mobile business applications framework, architecture and implementation. Information Security Technical Report 9, Issue 4 (December 2004) 6-21
4. Shieh S.P., Ho F.S., and Huang Y.L. An efficient authentication protocol for mobile networks. Journal of Information Science and Engineering 15 (1999) 505520
5. Hassinen M. SafeSMS - end-to-end encryption for SMS messages. Proceedings of the 8th International Conference on Telecommunications 2 (June 15-17, 2005) 359-365
6. Hassinen M., and Hypponen K. Strong mobile authentication. 2nd International Symposium on Wireless Communication Systems (Sept. 5-7 2005) 96-100
7. Park C.S. On certificate-based security protocols for wireless mobile communication systems. IEEE Network 11 5 (1997) 50-55
8. Burrows M., Abadi M., and Needham R. A logic of authentication. ACM Transactions on Computer System 8 1 (February 1990)
9. Chanson S., and Cheung T. Design and implementation of a PKI-based end-to-end secure infrastructure for mobile e-commerce. Proceedings of the Second International Conference on Web Information Systems Engineering 1 (Dec. 3-6 2001) 3-7
10. Wangensteen A., Lunde L., Jørstad I., and van Do T. A generic authentication system based on SIM. International Conference on Internet Surveillance and Protection, Cap Esterel, French Riviera (August 27-September 2, 2006)
11. Lee S.-W., Kim H.-S., and Yoo K.-Y. Improvement of Chien et al.'s remote user authentication scheme using smart cards. Computer Standards & Interfaces 27 (2005) 181-183
12. Hsu C.-L. Security of Chien et al.'s remote user authentication scheme using smart cards. Computer Standards & Interfaces 26 (2004) 167-169
13. Chien H.Y., Jan J.K., and Tseng Y.M. An efficient and practical solution to remote authentication: smart card. Computers and Security 21 4 (2002) 372-375
14. Hwang R.-J., and Su F.-F. A new efficient authentication protocol for mobile networks. Computer Standards & Interfaces 28 2 (December 2005) 241-252
15. Juang W.S. Efficient password authenticated key agreement using smart cards. Computers & Security 23 2 (2004) 167-173
16. Scott B.G., and Cronin M.J. Mobile Application Development with SMS and the SIM Toolkit (2002), McGraw-Hill companies, Inc.
17. Sun H.M. An efficient remote user authentication scheme using smart cards. IEEE Transactions on Consumer Electronics 46 4 (2000) 958961
18. Chien H.Y., and Jan J.K. A hybrid authentication protocol for large mobile network. The Journal of Systems and Software 67 (2003) 123130
19. Syverson P., and Cervesato I. The logic of authentication protocols. LNCS 2171 (2001), Springer-Verlag 63-137
20. Grecas C.F., Maniatis S.I., and Venieris I.S. Introduction of the asymmetric cryptography in GSM, GPRS, UMTS, and its public key infrastructure integration. Mobile Networks and Applications 8 2 (2003) 145-150
21. Farrell S. The WAP forum's wireless public key infrastructure. Information Security Technical Report 5, Issue 3 (September 1 2000) 23-31
22. Torres J., Izquierdo A., and Sierra J.M. Advances in network smart cards authentication. Computer Networks 51 9 (June 20 2007) 2249-2261
23. Badra M., and Urien P. Toward SSL integration in SIM SmartCards. IEEE Wireless Communications and Networking Conference, IEEE WCNC, Atlanta, GA, USA (2004). 0-7803-8345-1 (CD-ROM)
24. Das M.L., Saxena A., and Gulati V.P. A security framework for mobile-to-mobile payment network. IEEE International Conference on Personal Wireless Communications (2005). 0-7803-8964-6 420-423
25. Wangensteen A., Lunde L., Jørstad I., and van Do T. Secured enterprise access with strong SIM authentication. The Enterprise Computing Conference (EDOC), Hong Kong (October 16-20 2006)
26. Collesei S., Tria D.P., and Morena G. Short message service based applications in the GSM network. 5th IEEE International Symposium on Personal, Indoor and Mobile Radio Communications, The Hague, Netherlands (1994) 939-943
27. Mobile Payment Forum, Risks and Threats Analysis and Security Best Practices for Mobile 2-Way Messaging Systems. [Online]. Available: http://www.mobilepaymentforum.org/documents/Risk_and_Threats_Analysis_and_Security_Best_%20Practices_%20Mobile_2_Way_Messaging_December_2002.pdf. Accessed on: 10 November 2007.
28. Biryukov A., Shamir A., and Wagner D. Real Time Cryptanalysis of A5/1 on a PC (2000). http://cryptome.org/a51-bsw.htm [Online]. Available: http://cryptome.org/a51-bsw.htm. Accessed on: 13 February 2007
29. J.L.C. Lo et al., SMSSec: An end-to-end protocol for secure SMS, Comput. Secur. (in press), doi:10.1016/j.cose.2008.05.003.