Commenced in January 2007
Frequency: Monthly
Edition: International
Paper Count: 2

SIM card Related Abstracts

2 Security Analysis of SIMSec Protocol

Authors: Vedat Coskun, Kerem Ok, Busra Ozdenizci, Cem Cevikbas, Mohammed Alsadi

Abstract:

Un-keyed SIM cards do not contain the required security infrastructure to provide end-to-end encryption with Service Providers. Hence, new, emerging, or smart services those require end-to-end encryption between SIM card and a Service Provider is impossible. SIMSec key exchange protocol creates symmetric keys between SIM card and Service Provider. After a successful protocol execution, SIM card and Service Provider creates the symmetric keys and can perform end-to-end data encryption when required. In this paper, our aim is to analyze the SIMSec protocol’s security. According to the results, SIM card and Service Provider can generate keys securely using SIMSec protocol.

Keywords: smart card, key exchange, End-to-end encryption, SIM card

Procedia PDF Downloads 138
1 Secure Cryptographic Operations on SIM Card for Mobile Financial Services

Authors: Kerem Ok, Cem Cevikbas, Serafettin Senturk, Serdar Aktas

Abstract:

Mobile technology is very popular nowadays and it provides a digital world where users can experience many value-added services. Service Providers are also eager to offer diverse value-added services to users such as digital identity, mobile financial services and so on. In this context, the security of data storage in smartphones and the security of communication between the smartphone and service provider are critical for the success of these services. In order to provide the required security functions, the SIM card is one acceptable alternative. Since SIM cards include a Secure Element, they are able to store sensitive data, create cryptographically secure keys, encrypt and decrypt data. In this paper, we design and implement a SIM and a smartphone framework that uses a SIM card for secure key generation, key storage, data encryption, data decryption and digital signing for mobile financial services. Our frameworks show that the SIM card can be used as a controlled Secure Element to provide required security functions for popular e-services such as mobile financial services.

Keywords: Cryptography, SIM card, mobile financial services, secure data storage

Procedia PDF Downloads 156