论文信息 - Secure mobile business applications - framework, architecture and implementation

Secure mobile business applications - framework, architecture and implementation

Emerging mobile technologies such as PDAs, laptops and smart phones together with wireless networking technologies such as WLAN and UMTS promise to empower mobile employees to become better integrated into their companies' business processes. However, the actual uptake of these technologies is still to come; one hindrance is security of mobile devices and applications. In this contribution we present an in-depth analysis of the current situation enterprises are faced with in the mobile arena, both from a security and a management perspective. We argue that the currently predominant model of perimeter security will not scale for future mobile business applications that will require appropriate application-level security mechanisms to be in place. We present a framework offering solutions for the development of secure mobile business applications that takes into account the need for strong security credentials, e.g. based on smart cards. This framework consists of software and abstractions that allow for the separation of the core business logic from the security logic in applications. Security management instruments in the form of enforceable enterprise policies are defined which target the security and trust-related deployment and configuration of mobile devices and business applications. The presented architecture is open, in the sense that the actual mobile business application can span over heterogeneous client devices, forming a so-called federation.

[1] W. Richard Stevens,et al. Unix network programming , 1990, CCRV.

[2] Bernhard H. Walke. Mobile Radio Networks: Networking, Protocols and Traffic Performance, 2nd Edition , 2001 .

[3] Scott Oaks,et al. JXTA in a Nutshell , 2002 .

[4] William Stallings,et al. Cryptography and Network Security: Principles and Practice , 1998 .

[5] Cristina V. Lopes,et al. Aspect-oriented programming , 1999, ECOOP Workshops.

[6] Bernhard Walke. Mobile Radio Networks: Networking and Protocols , 1999 .

[7] Bennet S. Yee,et al. Using Secure Coprocessors , 1994 .

[8] Ravi S. Sandhu,et al. Role-Based Access Control Models , 1996, Computer.

[9] Bernhard Walke,et al. Mobile Radio Networks , 1999 .

[10] Nokia,et al. Network Working Group Extensible Authentication Protocol Method for Gsm Subscriber Identity Modules (eap-sim) , 2004 .

[11] Philip Robinson,et al. Security and trust issues in ubiquitous environments - the business-to-employee dimension , 2004, 2004 International Symposium on Applications and the Internet Workshops. 2004 Workshops..

[12] Henry Haverinen,et al. Extensible Authentication Protocol Method for Global System for Mobile Communications (GSM) Subscriber Identity Modules (EAP-SIM) , 2006, RFC.