论文信息 - Design of a Secure Mobile Business Communication Platform Utilizing Next Generation Web Technologies

Design of a Secure Mobile Business Communication Platform Utilizing Next Generation Web Technologies

We describe the client-server architecture and browser-to-browser groupware functionality of a secure mobile business communication platform that utilizes advanced web technologies by means of HTML5 and powerful JavaScript frameworks. The design is based on a real-time, peer-to-peer multimedia communication paradigm and adopts WebRTC as basic software architecture of the communication layer. To guarantee confidentiality, integrity, and authenticity of the communication processes and to avoid the strict dependence on existing, purely TLS based solutions, it integrates a newly designed, client-centric security concept with a strict end-to-end encryption of all data flows. We elaborate on the multi-layer architecture of this new software platform that can be applied to support a variety of e-business services in a cloud environment including a heterogeneous population of mobile clients.

Udo R. Krieger | Marcel Großmann | Hannes Stadler

[1] Matthew Green,et al. Imperfect Forward Secrecy: How Diffie-Hellman Fails in Practice , 2015, CCS.

[2] Steve Vinoski,et al. Node.js: Using JavaScript to Build High-Performance Network Programs , 2010, IEEE Internet Comput..

[3] Dan Boneh,et al. Symmetric Cryptography in Javascript , 2009, 2009 Annual Computer Security Applications Conference.

[4] Jörg Schwenk. Sicherheit und Kryptographie im Internet , 2002 .

[5] Dirk Fox. Perfect Forward Secrecy (PFS) , 2013, Datenschutz und Datensicherheit - DuD.

[6] Joachim Goll. Methoden und Architekturen der Softwaretechnik , 2011 .

[7] Henry Mintzberg. The rise and fall of strategic planning , 1993 .

[8] Jonathan D. Rosenberg,et al. Interactive Connectivity Establishment (ICE): A Protocol for Network Address Translator (NAT) Traversal for Offer/Answer Protocols , 2010, RFC.