SIMSec: A Key Exchange Protocol Between SIM Card and Service Provider

Ok, Kerem; Çoşkun, Vedat; Yarman, Sıddık B.; Cevikbas, Cem; Özdenizci, Büşra

doi:10.1007/s11277-016-3326-5

Cited by 10 publications

(11 citation statements)

References 31 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Various different models have been investigated to provide for secure communication of SIM technology. In some of these models, secret keys were assigned during production process [3][4][5][6][7][8]. However in [3], while secret keys weren't assigned during production process, it was proposed that keys that they developed assign exchange protocol stack to SIM technology for providing secure communication.…”

Section: Related Workmentioning

confidence: 99%

“…With the advances in communication technology, it has helped secure transactions such as mobile banking, mobile signature and mobile payment through the developing system. Thanks to these developments, cash out transactions, online shopping, credit card usage, online payments, e-commerce and the like can be secured safely via SIM on today's devices [1,2,3]. The secure provision of these services depends on the security of communications between the service providers and the SIM.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Parola Tabanlı SIMSec Protokolü

Akleylek¹,

Karacan²

2020

DÜMF Mühendislik Dergisi

View full text Add to dashboard Cite

The purpose of the SIMSec protocol is to provide the infrastructure to enable secured access between the SIM (Subscriber Identity Module) card which doesn't have an ephemeral key installed during production and the service provider. This infrastructure has a form based on agreements among the mobile network manufacturer, the user, the service provider and the card manufacturer. In order to secure transactions, authentication methods are used based on the fact that both parties can verify that they are the parties they claim to be. In this study, the key exchange and authentication models in the literature have been surveyed and the password-based authentication model is chosen. For the SIMSec protocol, the password-based authentication algorithm is integrated into the SIMSec protocol. Thanks to the proposed new structure, phase differences in the SIMSec protocol are shown. As a result, a new key exchange protocol is proposed for SIM cards.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Parola Tabanlı SIMSec Protokolü

Akleylek¹,

Karacan²

2020

DÜMF Mühendislik Dergisi

View full text Add to dashboard Cite

show abstract

“…This study is concerning developing a brand new model to form personal electronic messaging network to transmit message contents over the network / computer network between client terminals. The chat electronic messaging setting showed a good potential to host real time interactive interaction system that is supported by RSA coding methodology to preserve the safety of the message stream [15] [16]. Choosing the key size in RSA coding is of nice importance because the size of the key will increase, the safety level of the system, the quality and also the resistance of encrypted text will increase [15] [17].…”

Section: Proposed Systemmentioning

confidence: 99%

A Secure Electronic Messaging System in Client Server Cryptography-RSA Algorithm

Sruthi,

Raghupathi

2019

IJEAT

View full text Add to dashboard Cite

The potency and effectiveness of the knowledge systems, in some ways, rely upon its design and the way knowledge area unit transmitted among totally different parties. Similarly, a really crucial side within the computer code development is that the security of knowledge that flows through open communication channels. one in all the foremost widespread design is client/server design that creates the centralization of knowledge storage and process modify, and supply flexibility for applying authentication strategies and coding algorithms inside info systems. whereas the amount of shoppers increase, its need increasing the authentication and coding level as high as potential. Client/server could be a technology that enables to open associate degree interactive session between the user's browser and also the server. during this study, we tend to used client/server design to accomplish secure messaging/chat between shoppers while not the server having the ability to decode the message by applying 2 layer security: one layer of coding between the shoppers and also the server, and also the second layer of coding between the shoppers within the chat space. during this manner, a shopper / Server Cryptography- based mostly Secure electronic messaging System mistreatment RSA (Rivest- Shamir-Adelman), that could be a wide used public-key cryptography and authentication system for encryption of digital electronic messaging transactions like email over the computer network, extranet and net, to write in code and decipher messages in an exceedingly terminal window is developed.

show abstract

“…In order to perform a secure communication design and minimize the risks between the smartphone user and service provider; different security mechanisms such as key management models, OTP (One-Time Password) services and encryption methods are implemented for mobile services. The encryption keys and related algorithms must be kept securely on mobile applications installed by the service providers on the smartphone (Ok et al, 2015;Ok et al, 2016).…”

Section: Introductionmentioning

confidence: 99%

“…Without MNO approval, smartphone user is not allowed to install an application or to save any data onto the SIM card. When the capacity of the SIM card is available and MNO permission is obtained, additional value-added mobile applications can be installed onto the SIM card (Borst et al, 2001;Alliance, 2016;Ok et al, 2016). In this sense, the security needs of mobile services make SIM cards an important candidate for providing desired security infrastructure.…”

Section: Introductionmentioning

confidence: 99%

SIM Kart Tabanlı Anahtar Yönetim Sisteminin Geliştirilmesi

Köse

Cevikbas

Mantar

et al. 2020

European Journal of Science and Technology

View full text Add to dashboard Cite

Today, almost all applications running on the smartphone provide valuable and sensitive transactions on user's private data such as identity data, credit card details, payment data, location data and so on. Service providers are trying to increase the efficiency of their applications and to improve the compatibility of security mechanisms through SIM (Subscriber Identity Module) cards owned by Mobile Network Operators (MNOs). In this sense, there is an urgent need for a centralized secure key management service. Thanks to the strong security infrastructure created by card manufacturers during design and the robust security procedures applied by MNOs; SIM cards have significant potential to provide the required secure environment for service providers. Accordingly, a novel centralized SIM card based key management framework called SIM-GAYS is designed and developed to facilitate centralized cryptographic operations of diverse mobile applications provided by service providers. This paper aims to present and demonstrate the essential development results of SIM-GAYS. The functional requirements of the SIM-GAYS are tested depending on developed scenarios. The results showed that the designed and developed APDU (Application Protocol Data Unit) transmission method between SIM card and smartphone, and secure storage of the keys by the Master Key (owned by SIM-GAYS) support almost all cryptographic services provided by SIM-GAYS framework.

show abstract

SIMSec: A Key Exchange Protocol Between SIM Card and Service Provider

Cited by 10 publications

References 31 publications

Parola Tabanlı SIMSec Protokolü

Parola Tabanlı SIMSec Protokolü

A Secure Electronic Messaging System in Client Server Cryptography-RSA Algorithm

SIM Kart Tabanlı Anahtar Yönetim Sisteminin Geliştirilmesi

Contact Info

Product

Resources

About