A Generic Authentication System based on SIM

Authors:
Audun Wangensteen;Lars Lunde;Ivar Jorstad;Do van Thanh
Affiliations:
Norwegian University of Science and Technology, Norway;Norwegian University of Science and Technology, Norway;Norwegian University of Science and Technology, Norway;Telenor R&D
Venue:
ICISP '06 Proceedings of the International Conference on Internet Surveillance and Protection
Year:
2006

Citing 0
Cited 3

A PK-SIM card based end-to-end security framework for SMS

Computer Standards & Interfaces
Security Attack Safe Mobile and Cloud-based One-time Password Tokens Using Rubbing Encryption Algorithm

Mobile Networks and Applications
WebCallerID: Leveraging cellular networks for Web authentication

Journal of Computer Security

Quantified Score

Hi-index	0.00

Visualization

Abstract

Today the Internet is mostly used for services that require low or none security. The commercial and governmental applications have started to emerge but met problems since they require strong authentication, which is both difficult and costly to realize. The SIM card used in mobile phones is a tamper resistant device that contains strong authentication mechanisms, and if Internet services could use the strong authentications of the SIM card it would be very convenient and costefficient. This paper presents an analysis and a design of a generic authentication system based on SIM. The proposed system supports different types of authentication methods to target the various security requirements of the services; OTP authentication, GSM/UMTS authentication, and PKI authentication. Another feature of the proposed system is that it can easily be extended as the authentication mechanism used in a Single Sign-On system.