A Privacy Preserving Application Acquisition Protocol

Akram, Raja Naeem; Markantonakis, Konstantinos; Mayes, Keith

doi:10.1109/trustcom.2012.47

Cited by 13 publications

(20 citation statements)

References 35 publications

(29 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…It will endorse that the platform conforms to the stated security and operational requirements [14], along with the attestation process and its e ectiveness. The SCM may deliver the Chain1 Chain 2…”

Section: Enrolment Phasementioning

confidence: 99%

“…The reliability assurance process veri es that the software part of the smart card platform is not been tampered/modi ed. For the description of the TEM and implementation of the attestation handler see [14].…”

Section: Trusted Environment and Execution Manager (Tem)mentioning

confidence: 99%

“…An ACAP for the CASC should meet sixteen goals stated in [14] along with the additional goals listed as below: G17) Platform & Application User Separation (PAU) Attack: A malicious user provides access credentials of a genuine user to an SP and downloads the application on her smart card [14]. A protocol should tie a platform with its respective card-owner (user) to avoid platform & application user separation attack.…”

Section: Security and Operational Goalsmentioning

confidence: 99%

See 2 more Smart Citations

Coopetitive Architecture to Support a Dynamic and Scalable NFC Based Mobile Services Architecture

Akram

Markantonakis

Mayes

2012

Information and Communications Security

Self Cite

View full text Add to dashboard Cite

takes an opposite approach of delegating the smart card ownership to its users. Therefore, to reconcile these two approaches we proposed the Coopetitive Architecture for Smart Cards (CASC) that avoids market segregation, increase revenue generation, and provide exibility, robustness, and scalability. To support the CASC framework in this paper, we propose an application installation protocol that provides entity authentication, trust assurance and validation, mutual key and contractualagreement generation. The protocol is compared with existing protocols on its performance, stated security, and operational goals. Furthermore, CasperFDR is used to provide a mechanical formal analysis of the protocol.

show abstract

Section: Enrolment Phasementioning

confidence: 99%

Section: Trusted Environment and Execution Manager (Tem)mentioning

confidence: 99%

Section: Security and Operational Goalsmentioning

confidence: 99%

See 1 more Smart Citation

Coopetitive Architecture to Support a Dynamic and Scalable NFC Based Mobile Services Architecture

Akram

Markantonakis

Mayes

2012

Information and Communications Security

Self Cite

View full text Add to dashboard Cite

show abstract

“…Unknown key-share resilience-Unknown key share attack may occur when the connection between a firmware server and a WAP is established, but the WAP or the server believes it is sharing the key related to connection with another entity [36,37]. Proposed protocol's message always have a MAC (Message Authentication Code).…”

Section: Analysis Of the Proposed Protocol's Security Attributionsmentioning

confidence: 99%

Sustainable and Practical Firmware Upgrade for Wireless Access Point Using Password-Based Authentication

Jang

Jung

2016

Sustainability

View full text Add to dashboard Cite

Wireless access points (WAPs) are devices that provide Internet connectivity to devices such as desktops, laptops, smartphones, and tablets. Hence, it is important to provide sufficient availability to devices and security for the traffic that is routed by a WAP. However, attackers can decrease the network bandwidth or obtain the traffic including private data such as search histories, login information, and device usage patterns by exploiting the vulnerabilities in firmware upgrades to install malicious firmware. To address this problem, we propose a sustainable and practical firmware upgrade for a WAP using password-based authentication. The proposed upgrade protocol ensures security by adding freshness to the firmware whenever a firmware upgrade occurs. This freshness is different for each event and each firmware; therefore, even if the freshness of one firmware is exposed, the others are secure. In addition, confidentiality, integrity, and authentication are ensured. Furthermore, the proposed protocol can be easily implemented and adapted to WAPs. Experiments are performed to evaluate the upgrade time, resource usage, and code size in wired and wireless connected environments by implementing a prototype and analyzing the security of the protocol. The results show that the proposed upgrade is secure and practical.

show abstract

“…Thus, any detail and published secure profile provisioning directly related to eUICC cannot be found, but only few works which describes the enhanced business process for a flexible MCIM (M2M Communication Identity Module) [7] and several works related to the provisioning for UICCs or smart cards can be found [6], [8]- [13]. In [7], the business process related to M2M is mainly focused, therefore no detail consideration of security can be found.…”

Section: B Standardization and Related Workmentioning

confidence: 99%

Secure Profile Provisioning Architecture for Embedded UICC

Park

Baek

Kang

2013

2013 International Conference on Availability, Reliability and Security

View full text Add to dashboard Cite

Embedded UICC (eUICC) is a new form of UICC, soldered into a device during manufacturing. On the contrary to the traditional UICC, the eUICC is not fully controlled by one specific MNO (Mobile Network Operator) since not removable physically from the device and not issued by the MNO. Thus, the profiles necessary for its operations should be provisioned remotely into the eUICC by new entity. For this remote provisioning, SM (Subscription Manager) is newly introduced by the standardization organization. However, this new ecosystem around eUICCs can cause tremendous security issues unless thorough consideration of security is accompanied during the standardization because the profiles usually include the security-sensitive information.In this paper, a novel secure profile provisioning architecture for eUICCs is proposed. Our architecture mainly defines the overall architecture of the secure profile provisioning for eUICCs.

show abstract

A Privacy Preserving Application Acquisition Protocol

Cited by 13 publications

References 35 publications

Coopetitive Architecture to Support a Dynamic and Scalable NFC Based Mobile Services Architecture

Coopetitive Architecture to Support a Dynamic and Scalable NFC Based Mobile Services Architecture

Sustainable and Practical Firmware Upgrade for Wireless Access Point Using Password-Based Authentication

Secure Profile Provisioning Architecture for Embedded UICC

Contact Info

Product

Resources

About