A survey on mobile digital signature models

The application of a fast and secure mobile signature model is an essential issue for the development of the mobile electronic commerce, since digital signatures can provide authentication, non-repudiation, and data integrity. There are several technologies and models with the aim of implementing signature processes for mobile devices. In this paper, we categorize them into client based and server based models. We will comment on the most important properties of each solution and analyze the advantages and disadvantages, with a special focus on the private key security, performance of the signature generation process, and application of digital certificates.

[1]  Ning Zhang,et al.  Secure M-commerce Transactions: A Third Party Based Signature Protocol , 2007, Third International Symposium on Information Assurance and Security.

[2]  Deren Chen,et al.  Generating digital signatures on mobile devices , 2004, 18th International Conference on Advanced Information Networking and Applications, 2004. AINA 2004..

[3]  Kemal Bicakci,et al.  SAOTS: A New Efficient Server Assisted Signature Scheme for Pervasive Computing , 2003, SPC.

[4]  Ning Zhang,et al.  A new signature scheme: joint-signature , 2004, SAC '04.

[5]  Zhenqi Wang,et al.  Security Research on J2ME-Based Mobile Payment , 2008, 2008 ISECS International Colloquium on Computing, Communication, Control, and Management.

[6]  Antonio F. Gómez-Skarmeta,et al.  A Survey of Electronic Signature Solutions in Mobile Devices , 2007, J. Theor. Appl. Electron. Commer. Res..

[7]  David Lin,et al.  Design and correctness proof of a security protocol for mobile banking , 2009, Bell Labs Technical Journal.

[8]  Kemal Bicakci,et al.  Improved server assisted signatures , 2005, Comput. Networks.

[9]  Miguel Mira da Silva,et al.  Secure Mobile Agent Digital Signatures with Proxy Certificates , 2001, E-Commerce Agents.

[10]  Omaima Bamasak,et al.  A secure method for signature delegation to mobile agents , 2004, SAC '04.

[11]  Antonio F. Gómez-Skarmeta,et al.  Mobile Signature Solutions for Guaranteeing Non-Repudiation in Mobile Business and Mobile Commerce , 2009 .

[12]  Joos Vandewalle,et al.  (How) can mobile agents do secure electronic transactions on untrusted hosts? A survey of the security issues and the current solutions , 2003, TOIT.

[13]  Chung-Ming Ou,et al.  Adaptation of Agent-Based Non-Repudiation Protocol to Mobile DRM , 2009, 2009 Fifth International Conference on Intelligent Information Hiding and Multimedia Signal Processing.

[14]  Mehdi Shajari,et al.  Self-Proxy Mobile Signature: A New Client-Based Mobile Signature Model , 2010, 2010 IEEE 24th International Conference on Advanced Information Networking and Applications Workshops.

[15]  Chih-Cheng Chen,et al.  A server-aided signature scheme for mobile commerce , 2007, IWCMC.

[16]  D. O'Mahony,et al.  Electronic payment systems for e-commerce , 2001 .

[17]  Heiko Rossnagel,et al.  Mobile Qualified Electronic Signatures and Certification on Demand , 2004, EuroPKI.

[18]  Gene Tsudik,et al.  Equipping smart devices with public key signatures , 2007, TOIT.

[19]  Samuel T. Chanson,et al.  Design and Implementation of a PKI-Based End-to-End Secure Infrastructure for Mobile E-Commerce , 2004, World Wide Web.