A PERFORMANCE EVALUATION OF MOBILE WEB SERVICES SECURITY

Satish Narayana Srirama, Matthias Jarke, Wolfgang Prinz

Abstract

It is now feasible to host basic web services on a smart phone due to the advances in wireless devices and mobile communication technologies. The market capture of mobile web services also has increased significantly, in the past years. While the applications are quite welcoming, the ability to provide secure and reliable communication in the vulnerable and volatile mobile ad-hoc topologies is vastly becoming necessary. Even though a lot of standardized security specifications like WS-Security, SAML exist for web services in the wired networks, not much has been analyzed and standardized in the wireless environments. In this paper we give our analysis of adapting some of the security standards, especially WS-Security to the cellular domain, with performance statistics. The performance latencies are obtained and analyzed while observing the performance and quality of service of our Mobile Host.

References

  1. 3GPP, 2006. Third Generation Partnership Project. http://www.3gpp.org/
  2. 4GPress, 2005. World's First 2.5Gbps Packet Transmission in 4G Field Experiment. http://www.4g.co.uk/PR2006/2056.htm
  3. Booth, D.,Haas, H., McCabe, F. and etc., 2004. Web Service Architecture. W3C Working group note. http://www.w3.org/TR/ws-arch/
  4. Borck, J.R., 2005. Enterprise service buses hit the road. Infoworld journal. pp 26-40. www.infoworld.com/article/05/07/22/30FEesb_1.html
  5. BouncyCastle, 2006. Bouncy Castle Crypto APIs. The Legion of the Bouncy Castle. http://www.bouncycastle.org/
  6. Christensen, E., Curbera, F., Meredith, G. and etc., 2001. Web Services Description Language (WSDL) 1.1. W3C Working group note. http://www.w3.org/TR/wsdl
  7. Eastlake, D., Reagle, J., Solo, D., 2002. XML-Signature Syntax and Processing. http://www.w3.org/TR/xmldsig-core/
  8. GSMWorld, 2006. General Packet Radio Service www.gsmworld.com/technology/gprs/index.shtml
  9. IBM, 2002. Security in a Web Services world: A Proposed Architecture and Roadmap. IBM Developerworks.
  10. JSR 118, 2002. Mobile Information Device Profile (MIDP) v2.0. Java Community process. http://java.sun.com/products/midp/
  11. JSR 139, 2002. Connected Limited Device Configuration (CLDC). Java Community process. http://java.sun.com/products/cldc/
  12. KSOAP2, 2006. kSOAP 2. http://ksoap2.sourceforge.net/
  13. LA, 2006. The Liberty Alliance Project. http://www.projectliberty.org/
  14. Lawrence, K., Kaler, C., 2004. Web Services Security: SOAP Message Security 1.1 (WS-Security 2004). OASIS Standard Specification.
  15. Mishra, P., Lockhart, H., 2005. SAML V2.0 OASIS Standard specification set. OASIS Standard.
  16. Reagle, J., 2001. XML Encryption. W3C Working group note. http://www.w3.org/Encryption/2001/
  17. RSA Labs., 2006. Cryptographic technologies, http://www.rsasecurity.com/rsalabs/node.asp?id=2212
  18. Srirama, S., Jarke, M., Prinz, W, 2006. Mobile Web Service Provisioning. Int. Conf. on Internet and Web Applications and Services, ICIW06, IEEE Computer Society. pp. 120-125.
  19. Srirama, S., Jarke, M., Prinz, W., Pendyala, K., 2006. Security Aware Mobile Web Service Provisioning. In Proceedings of the International Conference for Internet Technology and Secured Transactions, ICITST'06. London, UK, ISBN 0-9546628-2-2, eCentre for Infonomics, pp. 48-56.
  20. Thomas, K., 1999. Fourth Generation (4G) wireless communications, http://www.4g.co.uk/
  21. Umtsworld, 2002. Overview of the Universal Mobile Telecommunication System. http://www.umtsworld.com/technology/overview.htm
  22. W3C, 2003. SOAP Version 1.2. W3C Working group note. http://www.w3.org/TR/soap/
Download


Paper Citation


in Harvard Style

Narayana Srirama S., Jarke M. and Prinz W. (2007). A PERFORMANCE EVALUATION OF MOBILE WEB SERVICES SECURITY . In Proceedings of the Third International Conference on Web Information Systems and Technologies - Volume 1: WEBIST, ISBN 978-972-8865-77-1, pages 386-392. DOI: 10.5220/0001276603860392


in Bibtex Style

@conference{webist07,
author={Satish Narayana Srirama and Matthias Jarke and Wolfgang Prinz},
title={A PERFORMANCE EVALUATION OF MOBILE WEB SERVICES SECURITY},
booktitle={Proceedings of the Third International Conference on Web Information Systems and Technologies - Volume 1: WEBIST,},
year={2007},
pages={386-392},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0001276603860392},
isbn={978-972-8865-77-1},
}


in EndNote Style

TY - CONF
JO - Proceedings of the Third International Conference on Web Information Systems and Technologies - Volume 1: WEBIST,
TI - A PERFORMANCE EVALUATION OF MOBILE WEB SERVICES SECURITY
SN - 978-972-8865-77-1
AU - Narayana Srirama S.
AU - Jarke M.
AU - Prinz W.
PY - 2007
SP - 386
EP - 392
DO - 10.5220/0001276603860392