TIAN Yu-hong,WANG Ze-bing,FENG Yan

DOI: https://doi.org/10.3969/j.issn.1000-7024.2006.24.029

2006-01-01

Abstract:The Java virtual machine(JVM)is used more frequently as the basic engine behind dynamic web services.With the proliferation of network attacks on these network resources,much work are done to provide security for the network environment.Little effort has been placed on securing a Java web server where the attacker has a valid login to the host machine.After describing the vulnerabilities in Java's security mechanisms,an extended security system based on Java 2 security architecture is introduced.It also explains the runtime status of system.The increased assurance of correct system operation and the integrity of Java application server are provided.

Di Wu,Yabo Dong,Jian Lin,Miaoliang Zhu

DOI: https://doi.org/10.1007/11563952_52

2005-01-01

Abstract:The fast development of E-Commerce and information technology brings much higher requirements for enterprise informationization. Because of the differences in platforms, development languages and standards etc, enterprise application integration (EAI) has become the important form of enterprise informationization to support complex business processes. Web services have emerged as the next generation of integration technology which provides the power to support interoperability. However EAI doesn’t just present new interoperability challenges; it also presents serious privacy and security challenges. This paper presents security architecture of Web Services based EAI which uses distributed Single Sign On authentication and distributed Role-based Access Control authorization. The basic concept and prototype system of the security architecture are described in detail.

WANG Qi-hua,CHEN Qi

DOI: https://doi.org/10.3969/j.issn.1000-7024.2005.02.049

2005-01-01

Abstract:The GSM and GPRS system provides solutions to a few important aspects of security: subscriber authentication, subscriber identity confidentiality and confidentiality of voice and data over the radio path. An analysis of the security features provided in a GSM and GPRS network is given.

Tianchi Ma,Shanping Li

DOI: https://doi.org/10.1007/978-3-540-24679-4_153

2004-01-01

Abstract:An instance-oriented security mechanism is proposed to deal with security threats in building a general-purpose mobile agent middleware in Grid environment. The proposed solution imports security instance, which is an encapsulation of one set of authorizations and their validity specifications with respect to the agent's specific code segments, or even the states and requests. Study shows this mechanism can inject large flexibility and scalability into the security framework, and can avoid the inefficiency and potential damages obscuring in a conventional linear delegation model.

Jie Jiang,TieMing Chen,Bo Chen,Limin Jin,Deren Chen

2008-01-01

Abstract:In order to solve the security problems introduced by the dynamic characteristics of grid services in authentication and authorization, a security services access platform based on Grid Security Infrastructure is proposed, which can provide the security grid services including the single sign-on and unified authentication and dynamic authorization. In this platform, a self-signed proxy certificate technique and improved context-constrains role based access control mechanism are deployed. The application in Country Emergency Response Grid Service System shows that the proposed platform can satisfy the need of security for grid services access through the grid portal.

Li Kuang,Yingjie Xia,Caijun Sun,Jiaming Wu,Liangdi Bao

DOI: https://doi.org/10.19026/rjaset.5.4738

2013-01-01

Abstract:With wide adoption of Service Computing and Mobile Computing, people tend to invoke services with mobile devices, requiring accurate and real-time feedback from services at any time and any place. Among these services, some are private to limited users and require identity authorization before use; hence secure access control in wireless network should be provided. To address the challenge, in this study, we propose the architecture and protocols of a system of access to private services for mobile clients, which combines the technologies of trusted computing, Diffie-Hellman key agreement protocol, digital certificate, DES data encryption algorithm and twice verification. We further show the implementation of the proposed system, in which we have realized the authentication and authorization of mobile clients and then secure data transfer between mobile clients in the unsafe Internet and private services in the Intranet. © 2013 Maxwell Scientific Organization.

Cheng Zhan,Xie Li

DOI: https://doi.org/10.3969/j.issn.1000-386X.2008.10.007

2008-01-01

Abstract:Web Service security problem is one of the highlighted topics in information security area recently.This article presents two security mechanisms for Web Services,transport-level security and message-level security.Then the security technology used to implement message-level security is introduces in detail.Finally,it gives a conclusion to Web Service security and proposes a new Web Service layered security model.

William Song,Deren Chen,Jen-Yao Chung

DOI: https://doi.org/10.1007/978-3-540-30209-4_16

2004-01-01

Abstract:E-commerce development and applications have been bringing the Internet to business and marketing and reforming our current business styles and processes. As Business to Business (B2B) has been a main stream of the e-commerce activities for a decade, business to customer (B2C) is still a new area to explore. Among the business to customer activities, a strong impact is security, i.e., how to protect secrets of various parties in business transactions. Different security methods apply to different businesses and meet different customers' needs. The methods with low cost and easy to implement may be less secure, whereas the methods providing high level security can be unaffordable to many small enterprises and individuals. In particular, people, while browsing or surfing on the Web, wish to pay a very small amount and "buy" (perhaps just download) an interesting item from the Web. The "click-and-pay" or "click-and-buy" does not require high security protection and should be convenient to use (buy and pay). Micro-payment issue emerges from the context to meet the need of applicability of low secure and cost in e-purchase. Payments of small amounts may enable many exciting applications on the Internet, such as selling information, small software and services. Users are willing to pay a small amount of money for the information, software and services. While the payment is small, expensive security protection is unnecessary. What users require may include negligible delay, rapid click-through, and automatic billing. Micro-payment is a service intensive activity, where many payment tasks involve different forms of services, such as payment method selection for buyers, security support software, product price comparison, etc. In this paper, we intend to investigate and analyze various aspects of micro-payment system using the web service technology. We will discuss business patterns for micro-payment systems using Web Services approaches.

Mingjun Xin,Zhangwei Huang,Quan Qian

DOI: https://doi.org/10.1109/NSWCTC.2009.252

2009-01-01

Abstract:In this paper, it first analyzes the present security protocol for mobile communications. Furthermore, a security framework for the Mobile E-Service is proposed. In the mean time, using the inherent security and expansibility of J2ME, we design a security message flow model to support communication protocol for the Mobile E-Service Oriented Architecture (MSOA), which emphasizes the authentication and the security of information transmission to the cooperative mobile users. Finally, under the background application of county-level mobile E-Service platform, we validate the security and feasibility of the communication protocol, thus providing firm and satisfactory technical support for the county-level mobile E-Government system.

WU JiYi,LI Wen Juan,HUANG JianPing,ZHANG JianLin,CHEN DeRen

DOI: https://doi.org/10.1360/n112014-00277

2015-01-01

Scientia Sinica Informationis

Abstract:The Mobile Internet is an integrated product of the traditional internet and mobile communications, and represents one of the most rapidly growing IT fields for the current and a long period of time.However, data show that the global mobile internet is still in its infancy, there exist many problems to be solved and clarified.This paper first outlines the basic concept of the mobile internet, including its definition, features, and architecture.Then, based on the current architecture, we discussed in detail the research status, problems, and solutions of its various components, including mobile terminals, access network, applications and services, as well as security and privacy.Finally, future research and development trends of cloud computing were discussed.

YAN Youjun,XU Lei,CHEN Lin,LI Yanhui

DOI: https://doi.org/10.3778/j.issn.1673-9418.2012.07.004

2012-01-01

Abstract:Applications on mobile platform are facing new problems such as low software reuse rate, high platform dependence, etc. In order to solve these problems, Web Services are used in Mobile Apps. However, existed techniques are unable to push data to satisfy the requirements of mobile platform, and this situation affects the usage of Web Service in Mobile Apps. Therefore, this paper proposes a Web Service push frame based on mobile platform, gives the SOAP push protocol which based on simple object access protocol (SOAP) for data exchange, proposes data exchange monitor to shield data push protocol, expands common data proxy to satisfy more Web applications. Furthermore, compared with the client pull method on common applications, the experimental results show that the method in this paper has lower data transmission volume and better data transmission performance.

Satish Narayana Srirama,Anton Naumenko

DOI: https://doi.org/10.48550/arXiv.1007.3649

2010-07-21

Abstract:It is now feasible to host basic web services on a smart phone due to the advances in wireless devices and mobile communication technologies. While the applications are quite welcoming, the ability to provide secure and reliable communication in the vulnerable and volatile mobile ad-hoc topologies is vastly becoming necessary. The paper mainly addresses the details and issues in providing secured communication and access control for the mobile web service provisioning domain. While the basic message-level security can be provided, providing proper access control mechanisms for the Mobile Host still poses a great challenge. This paper discusses details of secure communication and proposes the distributed semantics-based authorization mechanism.

Distributed, Parallel, and Cluster Computing,Networking and Internet Architecture

Chen Tianzhou,Huang Yu,Chen Feng,Hu Wei

2006-01-01

Abstract:There are many security defects in existing mobile communication systems, such as unidirectional authentication and cipher key transmission in plaintext. With the expansion of the mobile communication services, the mobile security becomes more and more important, but the existing communication systems can not prevent hostile attacks to supply high-quality service because of their defects in security. To solve these problems, we propose a new Security Architecture for Mobile Communication (SAMC), which employs new authentication protocols, chooses different encryption algorithms for different requirements and implements integrity control mechanism. Good security is developed in an open environment with the collaboration of experts. It has the robust security and the outstanding performance, just a slight and acceptable loss.

Yin Hao,Fu Qiang,Lin Chuang,Tan Zhangxi,Ding Rong,Lin Yishu,Li Yanxi,Fan Yanfei

DOI: https://doi.org/10.1016/s1007-0214(06)70146-8

2006-01-01

Tsinghua Science & Technology

Abstract:The demand for communications anywhere, anytime, and on any device without recording the date is growing with the development of modern information technologies. Current wireless communications enable people to freely exchange information, while web services provide loosely-coupled, language-neutral, and platform-independent ways of linking applications within organizations, across enterprises, and across the Internet. This paper describes a mobile information system for police service, which integrates wireless communication technologies and web service technologies. The system satisfies the special demands of police information systems, such as security and interoperability. Policemen in the system can use various kinds of mobile terminals, such as mobile phones, tablet PCs, personal digital assistants, and laptops equipped with wireless LAN or GPRS to access data in the central database. The system is based on web services with a secure web service architecture and simple object access protocol message passing.

Zhang Mi,Cheng Zunping,Ma Ziji,Zang Binyu

DOI: https://doi.org/10.1109/CIT.2005.47

2005-01-01

Abstract:With the emerging applications based on Web Service, end-to-end security becomes more and more important. SSL and current XML security schemas cannot reach the demand of it. This paper proposes a novel security model -- ESM, which integrates some popular XML security schemas and constructs a layered model based on SOAP message transport mechanism. It's aiming at the end-to-end security issues in Web Service environment. Compared with other security models known to us, this model is more comprehensive and flexible.

Satish Narayana Srirama,Matthias Jarke,Wolfgang Prinz

DOI: https://doi.org/10.48550/arXiv.1007.3644

2010-07-21

Abstract:It is now feasible to host basic web services on a smart phone due to the advances in wireless devices and mobile communication technologies. The market capture of mobile web services also has increased significantly, in the past years. While the applications are quite welcoming, the ability to provide secure and reliable communication in the vulnerable and volatile mobile ad-hoc topologies is vastly becoming necessary. Even though a lot of standardized security specifications like WS-Security, SAML exist for web services in the wired networks, not much has been analyzed and standardized in the wireless environments. In this paper we give our analysis of adapting some of the security standards, especially WS-Security to the cellular domain, with performance statistics. The performance latencies are obtained and analyzed while observing the performance and quality of service of our Mobile Host.

Networking and Internet Architecture,Distributed, Parallel, and Cluster Computing

Satish Narayana Srirama,Matthias Jarke,Wolfgang Prinz,Kiran Pendyala

DOI: https://doi.org/10.48550/arXiv.1007.3640

2010-07-21

Abstract:Mobile data services in combination with profluent web services are seemingly the path breaking domain in current information research. Effectively, these mobile web services will pave the way for exciting performance and security challenges, the core need-to-be-addressed issues. On security front, though a lot of standardized security specifications and implementations exist for web services in the wired networks, not much has been analysed and standardized in the wireless environments. This paper addresses some of the critical challenges in providing security to the mobile web service domain. We first explore mobile web services and their key security issues, with special focus on provisioning based on a mobile web service provider realized by us. Later we discuss state-of-the-art security awareness in the wired and wireless web services, and finally address the realization of security for the mobile web service provisioning with performance analysis results.

Distributed, Parallel, and Cluster Computing,Networking and Internet Architecture

Feng Qiu,Xiaoqian Li

DOI: https://doi.org/10.1007/978-3-319-49145-5_11

2016-01-01

Abstract:To address the information leakage problems existed in the smartphone mobility office of enterprises and institutions, we propose security mobile office architecture and design application security authentication mechanism, software and hardware resource control mechanism, security storage isolation mechanism, which provide safe protection for sensitive data. To evaluate the propose schemes, we implement them in the android system and cloud service platform. The evaluation results verify the feasibility and effectiveness of the security mobile office technology.

Zhi Guan,Hu Xiong,Suke Li,Zhong Chen

DOI: https://doi.org/10.1109/ISPA.2011.63

2011-01-01

Abstract:People's increasingly relying on web applications to manage their digital assets makes web authentication a critical security issue. As most websites today still authenticate a user with only username and password, the authentication credentials can be easily compromised in a vulnerable browsing environment without the owner's notice. Considering the browsing in mobile devices is more secure than personal computers, in this paper we explore the One-Time Password web application running inside mobile browsers as a second authentication factor for high value websites in hostile browsing environments. We discuss the security and efficiency of this authentication method from both theory and practice. An implementation with performance evaluation is also provided to prove our concept.

Yan Chen

2014-01-01

Abstract:With the development of computer,network and communication technology,e-commerce has become an indispensable part of people's life. At the same time,safety problems have become the core problem of the electronic commerce. This design is the simulation of realizing the online safety payment system of electronic toll ticket system,aiming to complete the payment process simulation of security communication based on SSL protocol in the bank server and client.