Secure push for mobile airline services

Abstract In this paper, we propose an architecture for secure push services for mobile users that supports common-of-the-shelf (COTS) WLAN base stations. The architecture focuses on the creation of flexible access networks based on easily deployable base stations. The push functionality is realized using client-initiated connections with SIP, and TLS or dTLS for security. The central building block of the distributed system is the edge proxy, which manages and implicitly authenticates all inbound connections, and performs privacy enhancement. The main driving force of our architecture has been airline services, but the system is applicable also for other service domains.

[1]  Mehdi Jazayeri,et al.  Mobile push: delivering content to mobile users , 2002, Proceedings 22nd International Conference on Distributed Computing Systems Workshops.

[2]  Kimmo E. E. Raatikainen,et al.  A framework for seamless service interworking in ad-hoc networks , 2006, Comput. Commun..

[3]  Gonzalo Camarillo,et al.  The 3G IP Multimedia Subsystem : Merging the Internet and the Cellular Worlds , 2004 .

[4]  Lars C. Wolf,et al.  Networked Mobile Gaming for 3G-Networks , 2004, ICEC.

[5]  Yi-Bing Lin,et al.  WGSN: WLAN-based GPRS Support Node with Push Mechanism , 2004, Comput. J..

[6]  Charles E. Perkins,et al.  Service Location Protocol, Version 2 , 1999, RFC.

[7]  Sasu Tarkoma,et al.  On Encrypting and Signing Binary XML Messages in the Wireless Environment , 2006, 2006 IEEE International Conference on Web Services (ICWS'06).

[8]  Eric Rescorla,et al.  SSL and TLS: Designing and Building Secure Systems , 2000 .

[9]  Jason Flinn,et al.  Slingshot: deploying stateful services in wireless hotspots , 2005, MobiSys '05.

[10]  Henning Schulzrinne,et al.  Application-layer mobility using SIP , 2000, MOCO.

[11]  Eric Rescorla,et al.  The Transport Layer Security (TLS) Protocol Version 1.1 , 2006, RFC.

[12]  A. Schülke,et al.  Service delivery platform : Critical enabler to service provider ’ s new revenue stream , .

[13]  Eric Rescorla,et al.  The Design and Implementation of Datagram TLS , 2004, NDSS.

[14]  Randall J. Atkinson,et al.  Security Architecture for the Internet Protocol , 1995, RFC.

[15]  Radia J. Perlman,et al.  Key Exchange in IPSec: Analysis of IKE , 2000, IEEE Internet Comput..

[16]  Pekka Nikander,et al.  Integrating Security, Mobility and Multi-Homing in a HIP Way , 2003, NDSS.

[17]  Victor Fajardo,et al.  Diameter Base Protocol , 2003, RFC.

[18]  Mikko Honkala,et al.  A Java based XML browser for consumer devices , 2002, SAC '02.

[19]  Miguel A. Garcia-Martin,et al.  Diameter Session Initiation Protocol (SIP) Application , 2006, RFC.

[20]  Miguel A. Garcia-Martin,et al.  The 3G IP multimedia subsystem IMS - merging the internet and the cellular worlds (2. ed.) , 2006 .

[21]  Tim Dierks,et al.  The Transport Layer Security (TLS) Protocol Version 1.2 , 2008 .

[22]  Cullen Jennings,et al.  Managing Client-Initiated Connections in the Session Initiation Protocol (SIP) , 2009, RFC.

[23]  Jari Arkko,et al.  Diameter Base Protocol , 2003, RFC.

[24]  John Loughney,et al.  Next Steps in Signaling (NSIS): Framework , 2005, RFC.

[25]  Jon Peterson,et al.  Private Extensions to the Session Initiation Protocol (SIP) for Asserted Identity within Trusted Networks , 2002, RFC.

[26]  Eric Rescorla,et al.  Transport Layer Security over Stream Control Transmission Protocol , 2002, RFC.

[27]  Hugo Krawczyk,et al.  A Security Architecture for the Internet Protocol , 1999, IBM Syst. J..

[28]  Y. Rebahi,et al.  SIP Service Providers and The Spam Problem , 2005 .

[29]  Pablo Vidales,et al.  The IMS service platform: a solution for next-generation network operators to be more than bit pipes , 2006, IEEE Communications Magazine.

[30]  Jon Peterson,et al.  Enhancements for Authenticated Identity Management in the Session Initiation Protocol (SIP) , 2006, RFC.

[31]  Jon Peterson,et al.  A Privacy Mechanism for the Session Initiation Protocol (SIP) , 2002, RFC.

[32]  Eric Rescorla,et al.  Datagram Transport Layer Security , 2006, RFC.

[33]  Dean Willis,et al.  Session Initiation Protocol (SIP) Extension Header Field for Registering Non-Adjacent Contacts , 2002, RFC.