Enhancing the Security of Mobile Applications by Using TEE and (U)SIM
UIC-ATC '13 Proceedings of the 2013 IEEE 10th International Conference on Ubiquitous Intelligence & Computing and 2013 IEEE 10th International Conference on Autonomic & Trusted Computing(2013)
摘要
Mobile phone platforms are increasingly becoming vulnerable to security attacks and is untrusted to host security sensitive applications, content, and services. Open source mobile ecosystems such as Android allow increased flexibility for developing and deploying applications. However, there are industry-led initiatives to increase the security of mobile phone platforms by using virtualisation and hardware abstraction techniques. In this paper, we explore the potential of the recently introduced Trusted Execution Environment (TEE) ecosystem for mobile phones in order to compliment the security-proven (U)SIM based security functions. We present a security architecture and a novel mobile payment and multimedia content playback solution leveraging on the existing post-paid billing method. We integrate TEE with (U)SIM based security techniques to provide enhanced security for user authentication, content purchase, protected storage and secure content viewing.
更多查看译文
关键词
Android (operating system),mobile communication,security of data,smart phones,telecommunication security,virtualisation,(U)SIM,Android,TEE,Trusted Execution Environment ecosystem,content purchase,enhanced security,hardware abstraction techniques,mobile applications,mobile payment,multimedia content playback solution,open source mobile ecosystems,postpaid billing method,protected storage,secure content viewing,security architecture,security attacks,security sensitive applications,user authentication,virtualisation,(U)SIM,Architecture,Digital Rights,Proof-of-concept,Secure PIN Entry,Security,Security Framework,TEE,Trusted Computing,Trustlet,UICC
AI 理解论文
溯源树
样例
生成溯源树,研究论文发展脉络
Chat Paper
正在生成论文摘要