Cong Wang,Maode Ma,Lei Zhang

DOI: https://doi.org/10.1109/access.2017.2706738

IF: 3.9

2017-01-01

IEEE Access

Abstract:The IEEE 802.22 standard regulates wireless regional area network (WRAN) operating at the very high frequency and ultrahigh frequency television white space (TVWS) bands. WRAN supports extensible authentication protocol (EAP)-based authentication schemes. However, due to its public key cryptography operations, a full EAP-based authentication scheme is time-consuming, which is unacceptable for the WRAN handover process. In this paper, an efficient EAP-based pre-authentication scheme for inter-WRAN handovers (EPW) in TVWS is proposed. By applying the proposed pre-authentication scheme, the customer premises equipment and the target secondary user base station can accomplish a seamless handover using symmetric key. Through logic derivation by Burrows, Abadi, and Needham logic and formal verification by automated validation of Internet security protocols and applications, we conclude that the proposed EPW scheme can obtain mutual authentication and maintain key secrecy with a high resistance to attack. Additionally, the performance of the EPW scheme has been investigated by simulation experiments. The results show that the EPW scheme provides a lower computation delay than that mandated by the security scheme regulation of the IEEE 802.22 standard.

Imran Memon,Ibrar Hussain,Rizwan Akhtar,Gencai Chen

DOI: https://doi.org/10.1007/s11277-015-2699-1

IF: 2.017

2015-01-01

Wireless Personal Communications

Abstract:Past few years, the mobile technology and location based services have experienced a great increment in number of its users. The privacy issues related to these services are becoming main concerns because of the leakage of users' private information and contents. To prevent revelation of private information, many researchers have proposed several secure and authentication schemes which apply various technologies to provide integral security properties, such as symmetric encryption, digital signature, timestamp, etc. Unfortunately, some of these schemes still exhibit security and efficiency issues. In this research paper, we proposed an efficient and secure anonymous communication for location based service using asymmetric cryptography scheme over the wireless system was attempted missing some system detail. We also proposed the prevent user private information and secure communication by asymmetric cryptography scheme. We solved the wireless communication problem in A3 algorithm such as eavesdropping and this problem solved by asymmetric cryptography scheme because of its robustness against this type of attack by providing mutual authentication make the system more secure. Finally, performance and cost analysis show our scheme is more suitable for low-power and resource limited wireless system and thus availability for real implementation. According to our security analysis and performance, we can prove that our proposed asymmetric cryptography scheme is able to improve wireless communication system security and enhance efficiency in comparison to previous schemes.

余华,钱松荣,胡方农

DOI: https://doi.org/10.3969/j.issn.1007-130x.2002.06.010

2002-01-01

Abstract:Based upon SSL and TLS, the security module WTLS in WAP takes into account of the features of wireless communications and makes a modification, but also causes some problems .WAP introduces a new piece of software, the WAP gateway. This programming model can accord well with the existing Internet standards. However, it makes end to end security difficult to implement.

Pengnian Zhang,Le Xu

DOI: https://doi.org/10.1007/s11276-023-03409-2

IF: 2.701

2023-06-14

Wireless Networks

Abstract:With the development of science and technology and the popularization of e-commerce, the application of wireless network technology in the business field has gradually become a hot spot of academic research, which also brings us new topics and challenges. The secure payment system based on the improved TOTP algorithm proposed in this paper involves the WAP wireless secure payment theory and the application of mobile e-commerce. This paper first studies the WAP wireless network theory of mobile payment system, and proposes the WAP algorithm flow based on identity encryption. Then, the secure wireless execution environment of the WAP encryption payment algorithm is analyzed in depth. This paper discusses the security requirements of the WAP wireless network payment system. Based on the identity encryption algorithm, several practical algorithms are proposed, and a wireless network mobile payment model combining NTRU and ECC is constructed to improve the WAP algorithm. This paper proposes a WAP wireless network security payment system based on the improved TOTP algorithm, constructs its overall structure, and designs a core algorithm with strong adaptability, including the improved TOTP algorithm and risk assessment algorithm. Finally, the performance of the WAP e-commerce secure payment system is tested and analyzed. The research found that when the 256-bit key was used to encrypt the login information, the number of tests was 23,588, the number of concurrent threads was 200, the number of requests per second was 518, the average response time was 0.219 s, the average traffic was 500 KB/s, and the error rate was 2%. It can be seen from the data that the WAP wireless secure payment system operates normally with low network delay and can respond to operation requests quickly under the condition of concurrent access by multiple users, with strong overall pressure resistance. The work of this paper has a good reference value for the construction of the WAP wireless network payment system and the design and application of mobile e-commerce, which is conducive to further research.

computer science, information systems,telecommunications,engineering, electrical & electronic

LI BEIJIN,ZHANG LI

DOI: https://doi.org/10.3969/j.issn.1008-0570.2008.06.003

2008-01-01

Abstract:The popularity of WAP-based Mobile Internethas brought new opportunities and challenges to e-commerce. The security of WAP-based electronic payment is a key problem to be solved. This paper introduces the technical characteristics of WAP,analyzes the security problems and solutions of Internet-based electronic payment,then concludes new security problems of WAP-based electronic payment,and provides corresponding solutions.

Hao-Ting Pai,Fan Wu

DOI: https://doi.org/10.1109/icebe.2009.68

2009-01-01

Abstract:Currently, several researches have concentrated on the new or vital security requirements of mobile commerce. However, some recent studies asserted a particular serious attack, called wormhole attack, that mainly targeting in a wireless-based system may also occur in the mobile commerce systems. Although there are many endeavors to confront wormhole attacks in the field of wireless communications, the solutions still have respective problems to be overcome and are not yet tailor-made for mobile commerce environment. This paper is the first one to unveil the emergence of wormhole attacks in mobile commerce and also proposes the precautionary method to prevent them. On the other hand, considering that the mobile device with limited resource, we utilize the secure filter to efficiently manage group key. Moreover, the proposed secure routing scheme is not only more efficient and robust than that in Ariadne but also resolve the new problem of Ariadne (insider attack) that is demonstrated by Acs et al.

Yijun He,Nan Xu,Jie Li

DOI: https://doi.org/10.1109/ARES.2007.23

2007-01-01

Abstract:We propose an efficient and secure mutual authentication and key exchange protocol suitable for applications using low-power mobile communications. It maintains the required level of security and has the property of perfect forward secrecy which is not possessed by other protocols such as ES-MAKEP, L-MAKEP, and I-MAKEP. Moreover, the paper also provides a formal proof to guarantee the security of the proposed protocol. Further, we apply the proposed authentication and key exchange solution to WTLS to obtain a more secure protocol

Wang Yuanbing,Liu Wanrong,Li Bin

DOI: https://doi.org/10.1109/access.2021.3099299

IF: 3.9

2021-01-01

IEEE Access

Abstract:With the rapid development and evolution of wireless network technology, electronic health has shown great potential in continuously monitoring the health of patients. The wireless medical sensor network (WMSN) has played an important role in this field. In WMSN, medical sensors are placed on patients to collect relevant health data and transmitted to medical professionals in hospitals or at home through insecure channels. These health data need to be highly protected because they contain patient-related private information. Once the information is leaked or maliciously modified, it will cause the wrong diagnosis and endanger the health of patients. To protect information privacy and security from being stolen by illegal users, this article reviews the solutions of Farash et al. and further points out the existing vulnerabilities, such as privileged insider attack, user anonymity invalidation, and offline password guessing attack. In order to overcome these drawbacks, we use the Elliptic Curve Cryptography to propose an improved anonymous authentication protocol for a smart healthcare system. The security of our protocol is verified by Burrows-Abadi-Needham logic and Automated Validation of Internet Security Protocols and Applications (AVISPA) tools, and security features and efficiency analysis are performed with other related schemes. The results show that the improved protocol provides better security protection while ensuring computational and communication efficiency.

Debiao He,Yuanyuan Zhang,Jianhua Chen

DOI: https://doi.org/10.1007/s11277-013-1282-x

IF: 2.017

2013-01-01

Wireless Personal Communications

Abstract:Authentication protocols with anonymity attracted wide attention since they could protect users’ privacy in wireless communications. Recently, Hsieh and Leu proposed an anonymous authentication protocol based on elliptic curve Diffie–Hellman problem for wireless access networks and claimed their protocol could provide anonymity. However, by proposing a concrete attack, we point out that their protocol cannot provide user anonymity. To overcome its weakness, we propose an improved protocol. We also provide an analysis of our proposed protocol to prove its superiority, even though its computational cost is slightly higher.

Chen Tianzhou,Huang Yu,Chen Feng,Hu Wei

2006-01-01

Abstract:There are many security defects in existing mobile communication systems, such as unidirectional authentication and cipher key transmission in plaintext. With the expansion of the mobile communication services, the mobile security becomes more and more important, but the existing communication systems can not prevent hostile attacks to supply high-quality service because of their defects in security. To solve these problems, we propose a new Security Architecture for Mobile Communication (SAMC), which employs new authentication protocols, chooses different encryption algorithms for different requirements and implements integrity control mechanism. Good security is developed in an open environment with the collaboration of experts. It has the robust security and the outstanding performance, just a slight and acceptable loss.

KY Lam,SL Chung,M Gu,JG Sun

DOI: https://doi.org/10.1016/s0140-3664(03)00188-9

IF: 5.047

2003-01-01

Computer Communications

Abstract:This paper describes a lightweight security mechanism for protecting electronic transactions conducted over the mobile platform. In a typical mobile computing environment, one or more of the transacting parties are based on some wireless handheld devices. Electronic transactions conducted over the mobile platform are gaining popularity and it is widely accepted that mobile computing is a natural extension of the wired Internet computing world. However, security over the mobile platform is more critical due to the open nature of wireless networks. Furthermore, security is more difficult to implement on the mobile platform because of the resource limitation of mobile handheld devices. Therefore, security mechanisms for protecting traditional computer communications need to be revisited so as to ensure that electronic transactions involving mobile devices can be secured and implemented in an effective manner. This research is part of our effort in designing security infrastructure for electronic commerce systems, which extend from the wired to the wireless Internet. A lightweight mechanism was designed to meet the security needs in face of the resource constraints. The proposed mechanism is proven to be practical in real deployment environment.

Chen Tianzhou,Mao Haixia,Dai Hongjun

2006-01-01

Abstract:This paper briefly analyzes the security mechanisms of GSM/UMTS and finds their security defects, such as unidirectional authentication and cipher key transmission without encryption. For these defects, existing mobile communication systems can not prevent hostile attacks to satisfy high-level security demands. To solve these problems, we propose the robust Middleware Architecture for Mobile Communication Security (MAMCS), which employs new Authentication and Key Agreement (AKA) protocols, chooses different encryption algorithms for different applications and implements integrity control mechanism. In the end, we analyze the performance of MAMCS and show that MAMCS gets a 200%~2% improvement in security only at the cost of 1.51% descent in bandwidth and 18.14 ms extra latency.

Yichuan Wang,Wen Gao,Xinhong Hei,Irenee Mungwarama,Ju Ren

DOI: https://doi.org/10.1109/ithings-greencom-cpscom-smartdata-cybermatics50389.2020.00032

2020-01-01

Abstract:The development of mobile internet has brought convenience to people, but the openness and diversity of mobile Internet make it face the security threat of communication privacy data disclosure. In this paper, a trusted android device security communication method based on TrustZone is proposed. Firstly, Elliptic Curve Diffie-Hellman (ECDH) key agreement algorithm is used to make both parties negotiate the session key in the Trusted Execution Environment (TEE), and then, we stored the key safely in the TEE. Finally, TEE completes the encryption and decryption of the transmitted data. This paper constructs a secure communication between mobile devices without a trusted third party and analyzes the feasibility of the method from time efficiency and security. The experimental results show that the method can resist malicious application monitoring in the process of data encryption and ensures the security of the session key. Compared with the traditional scheme, it is found that the performance of the scheme is not significantly reduced.

Rongxing Lu,Zhenfu Cao,Haojin Zhu

DOI: https://doi.org/10.1016/j.csi.2007.04.002

IF: 3.721

2007-01-01

Computer Standards & Interfaces

Abstract:With the rapid progress of wireless mobile communication, the authenticated key agreement protocol has attracted an increasing amount of attention. However, due to the limitations of bandwidth and storage of the mobile devices, most of the existing authenticated key agreement protocols are not suitable for wireless mobile communication. Quite recently, Sui et al. have presented an efficient authenticated key agreement protocol based on elliptic curves cryptography and included their protocol in 3GPP2 specifications to improve the security of A-Key distribution. However, in this paper, we show that Sui et al.'s protocol can't resist the off-line password guessing attack, and therefore present an enhanced authenticated key agreement protocol. At the same time, we also consider including our enhanced protocol in 3GPP2 specifications.

Jian-bin Hu,Hu Xiong,Zhong Chen

2012-01-01

Abstract:Seamless roaming is highly desirable for wireless communications, and security such as authentication and privacy preserving of mobile users is challenging. Recently, Wu et al. and Wei et al. proposed two authentication schemes that guarantee user anonymity in wireless communications, respectively. However, Kang et al. pointed out some security flaws of Wu et al.’s and Wei et al.’s authentication schemes and showed how to overcome the problems regarding anonymity and the forged login messages. In this paper, we will show that Kang et al.’s improved scheme still did not provide user anonymity as they claimed and give a further improvement to fix the problem without losing any features of the original scheme.

Wei Yang,Xiaohong Li,Zhiyong Feng,Jianye Hao

DOI: https://doi.org/10.1109/iceccs.2017.24

2017-01-01

Abstract:The widely used TLS protocol is vulnerable to Man-in-the-Middle (MITM) attacks in public WiFis. Such attacks arise since most users are often unable to verify server certificates properly and even worse, the implement of client authentication is typically decoupled from TLS session establishment. These two authentication procedures could be bound cryptographically in the establishment of TLS sessions, and a TLS security-enhanced mechanism (TLSsem) is proposed to detect and defense MITM attacks in public WiFis. TLSsem deals with the TLS mutual authentication through a way that combines pre-binding with certificate validation. Servers take advantage of pre-binding to generate identity credentials for users as pre-shared keys. Afterwards, the mutual authentication between clients and servers is realized in certificate validation by using the identity credentials, and also the forged server certificate is detected on the server side by checking this certificate. In addition, to ensure the reliability of wireless communications in this malicious public WiFis, an TLS shared service based on random port hopping is implemented to reallocate the reliable ports for data transmission against the interception by MITM attackers. We implement a prototype and verify its effectiveness by a thorough set of experiments in the real network environment. Evaluation results show that our mechanism can significantly increase the security of TLS communication in public WiFis without introducing noticeable overhead.

Xun Sun,Jianhua Li,Shutang Yang,Gongliang Chen

DOI: https://doi.org/10.1049/cp:20070274

2007-01-01

Abstract:As e-mail services get wide use in business transactions, the privacy and fairness properties of these services become more important. A certified e-mail protocol focuses mainly on the fairness of e-mail exchanges: it ensures that the receiver get access to the e-mail content if and only if the sender obtains a non-refutable proof of receipt, which is usually a signature of the receiver. This paper identifies a security flaw in a certified e-mail protocol for mobile environments based on the Guillou-Quisquater signature scheme, proposed at GLOBECOM 2003. A dishonest sender can exploit this flaw to gain advantage over the message receiver with high probability within a few rounds of interactions. We then propose an improved protocol, which is based on a verifiably encrypted RSA signature scheme, to fix this security flaw. The new protocol obtains a trustable security (fairness) level and is as efficient as the original insecure protocol.

S. K. Hafizul Islam,Ruhul Amin,G. P. Biswas,Mohammad Sabzinejad Farash,Xiong Li,Saru Kumari

DOI: https://doi.org/10.1016/j.jksuci.2015.08.002

IF: 9.006

2015-01-01

Journal of King Saud University - Computer and Information Sciences

Abstract:In the literature, many three-party authenticated key exchange (3PAKE) protocols are put forwarded to established a secure session key between two users with the help of trusted server. The computed session key will ensure secure message exchange between the users over any insecure communication networks. In this paper, we identified some deficiencies in Tan’s 3PAKE protocol and then devised an improved 3PAKE protocol without symmetric key en/decryption technique for mobile-commerce environments. The proposed protocol is based on the elliptic curve cryptography and one-way cryptographic hash function. In order to prove security validation of the proposed 3PAKE protocol we have used widely accepted AVISPA software whose results confirm that the proposed protocol is secure against active and passive attacks including replay and man-in-the-middle attacks. The proposed protocol is not only secure in the AVISPA software, but it also secure against relevant numerous security attacks such as man-in-the-middle attack, impersonation attack, parallel attack, key-compromise impersonation attack, etc. In addition, our protocol is designed with lower computation cost than other relevant protocols. Therefore, the proposed protocol is more efficient and suitable for practical use than other protocols in mobile-commerce environments.

Changwu Wang,Xiuxian Zheng,Yali Si,Wenyuan Liu

2011-01-01

Abstract:Mobile agent is identified as a programming paradigm that allows exible structuring of distributed computation. However, their adoption is largely hampered by the security issues. In this paper, by using environmental key propagation and execution tracing technology, an enhanced-security fair payment protocol based on mobile agent is proposed. This protocol can protect the confidentiality of sensitive payment information carried by mobile agent better than existing ones. At the same time, by ameliorating the using of the theory of cross validation, mobile agent is able to avoid malicious merchant's attack when it validates the product. So the security is enhanced. Moreover, the trusted third patty is offline unless someone is misbehaving or prematurely aborting. © 2011 ISSN 1881-803X.

DOI: https://doi.org/10.3745/kipstd.2004.11d.2.485

2004-04-01

Abstract:Recently, the wireless internet terminals like mobile phones or PDAs prevail in the management of customers. With such terminals, businessmen can get business data and information of customers in real time, in connection with mobile group wares. By the wireless terminals, customers can conveniently get information of goods, search purchase sites, and give orders and do settlement. This paper aims to present the safe data integrity modules of the wireless internet terminal, for service providing correct real-time promotion information, by using users' disposition, situation, Purchase information. This study aims to suggest an implementation methodology of security module for data integrity of mobile internet terminal. This is based on the WTLS of WAP Protocol. This security module is expected to achieve central role in conversion of wireless internet environment and emphasis of encryption technology and safe and calculable wireless communication environment construction