Personal security environment on Palm PDA
ACSAC '00 Proceedings of the 16th Annual Computer Security Applications Conference
Designing mobile commerce applications
Communications of the ACM - Mobile computing opportunities and challenges
Communications of the ACM - New architectures for financial services
Security in embedded systems: Design challenges
ACM Transactions on Embedded Computing Systems (TECS)
The value of mobile applications: a utility company study
Communications of the ACM - Medical image modeling
Proceedings of the 1st annual conference on Information security curriculum development
Two experiences designing for effective security
SOUPS '05 Proceedings of the 2005 symposium on Usable privacy and security
Case Study: Online Banking Security
IEEE Security and Privacy
Hi-index | 0.00 |
Mobile devices are now used not only for communication but also as working units. As more sensitive information is stored on and transmitted through these devices, security is becoming a growing concern. This is especially true for SMS messages which do not integrate any security mechanism. This is why we propose a simple-to-use but cryptographically strong API for message encryption and authentication that was designed with the limited memory and processing power of a mobile device in mind; and a protocol that will ensure their confidentiality and integrity. This strategy is embodied in the cryptography framework called Linca and the SMS security protocol called SMSSec. The framework and protocol are tested through the design and implementation of an SMS banking application called SecureBanking. The application was written for the .NET Compact Framework (.NET for mobile devices) and was based on a previous version done for Java 2 Micro Edition (J2ME). Finally, a performance analysis is presented to show that the encryption time on the mobile device is negligible compared to the duration of the transmission.