IMPROVING THE SECURITY OF SMS-BASED SERVICES USING ELECTRONIC SIGNATURES - Towards SMS-based Processing of Transactional m-Government Services

Thomas Zefferer, Arne Tauber, Bernd Zwattendorfer

2012

Abstract

SMS is still one of the most popular mobile communication technologies. Simplicity, cost efficiency, and low bandwidth requirements account for the SMS technology’s continuing success. Besides the private sector, also public sector organisations aim to take advantage of SMS technology’s current popularity. In numerous countries all over the world, governments and public administrations already offer citizens SMS based m-Government services. However, most of these services are rather simple and do not include security enhancing mechanisms such as cryptographic methods. This renders the use of SMS based approaches for complex transactional m-Government services with higher security requirements difficult. We tackle this issue by proposing the use of electronic signatures in SMS based services. The technical feasibility of our approach is demonstrated by means of a prototypical application. This application allows citizens to generate, electronically sign, and deliver electronic documents by sending well-defined SMS messages. The proposed method’s capability to meet given security requirements of transactional m-Government services is assessed in the course of a detailed security discussion.

References

  1. Al-bakri, S. and Kiah, M. (2010). A novel peer-to-peer sms security solution using a hybrid technique of ntru and aes-rijndael. Scientific Research and Essays, 5(22):3455-3466.
  2. Al-bakri, S. and Kiah, M. (2010). A novel peer-to-peer sms security solution using a hybrid technique of ntru and aes-rijndael. Scientific Research and Essays, 5(22):3455-3466.
  3. Anuar, N. B., Kuen, L. N., Zakaria, O., Gani, A., and Wahab, A. W. A. (2008). Gsm mobile sms/mms using public key infrastructure: m-pki. W. Trans. on Comp., 7:1219-1229.
  4. Anuar, N. B., Kuen, L. N., Zakaria, O., Gani, A., and Wahab, A. W. A. (2008). Gsm mobile sms/mms using public key infrastructure: m-pki. W. Trans. on Comp., 7:1219-1229.
  5. Barkan, E., Biham, E., and Keller, N. (2008). Instant Ciphertext-Only Cryptanalysis of GSM Encrypted Communication. J. Cryptol., 21:392-429.
  6. Barkan, E., Biham, E., and Keller, N. (2008). Instant Ciphertext-Only Cryptanalysis of GSM Encrypted Communication. J. Cryptol., 21:392-429.
  7. EGov-Labs (2012). PDF-AS. http://egovlabs.gv.at/projects/ pdf-as/.
  8. EGov-Labs (2012). PDF-AS. http://egovlabs.gv.at/projects/ pdf-as/.
  9. European Union (1999). Directive 1999/93/ec of the european parliament and of the council of 13 december 1999 on a community framework for electronic signatures.
  10. European Union (1999). Directive 1999/93/ec of the european parliament and of the council of 13 december 1999 on a community framework for electronic signatures.
  11. Leitold, H., Hollosi, A., and Posch, R. (2002). Security architecture of the austrian citizen card concept. In Proceedings of the 18th Annual Computer Security Applications Conference (ACSAC 7802). IEEE Computer Society.
  12. Leitold, H., Hollosi, A., and Posch, R. (2002). Security architecture of the austrian citizen card concept. In Proceedings of the 18th Annual Computer Security Applications Conference (ACSAC 7802). IEEE Computer Society.
  13. Lisonek, D. and Drahansk, M. (2008). Sms encryption for mobile communication. International Conference on Security Technology, pages 198-201.
  14. Lisonek, D. and Drahansk, M. (2008). Sms encryption for mobile communication. International Conference on Security Technology, pages 198-201.
  15. MBAONLINE (2011). Planet text - how sms messaging is changing the world. http://www.mbaonline.com/planet-text/.
  16. MBAONLINE (2011). Planet text - how sms messaging is changing the world. http://www.mbaonline.com/planet-text/.
  17. Medani, A., Gani, A., Zakaria, O., Zaidan, A. A., and Zaidan, B. B. (2011). Review of mobile short message service security issues and techniques towards the solution. Scientific Research and Essays, 6(6):1147- 1165.
  18. Medani, A., Gani, A., Zakaria, O., Zaidan, A. A., and Zaidan, B. B. (2011). Review of mobile short message service security issues and techniques towards the solution. Scientific Research and Essays, 6(6):1147- 1165.
  19. Mobi Solutions Ltd (2010). Mobile government: 2010 and beyond.
  20. Mobi Solutions Ltd (2010). Mobile government: 2010 and beyond.
  21. Orthacker, C., Centner, M., and Kittl, C. (2010). Qualified mobile server signature. In Proceedings of the 25th TC 11 International Information Security Conference.
  22. Orthacker, C., Centner, M., and Kittl, C. (2010). Qualified mobile server signature. In Proceedings of the 25th TC 11 International Information Security Conference.
  23. Posch, K.-C., Posch, R., Tauber, A., Zefferer, T., and Zwattendorfer, B. (2011). Secure and provacy-preserving egovernment - best practice austria. In Rainbow of Computer Science. Springer.
  24. Posch, K.-C., Posch, R., Tauber, A., Zefferer, T., and Zwattendorfer, B. (2011). Secure and provacy-preserving egovernment - best practice austria. In Rainbow of Computer Science. Springer.
  25. Zefferer, T. (2011). Mobile government - e-government for mobile societies.
  26. Zefferer, T. (2011). Mobile government - e-government for mobile societies.
Download


Paper Citation


in Harvard Style

Zefferer T., Tauber A. and Zwattendorfer B. (2012). IMPROVING THE SECURITY OF SMS-BASED SERVICES USING ELECTRONIC SIGNATURES - Towards SMS-based Processing of Transactional m-Government Services . In Proceedings of the 8th International Conference on Web Information Systems and Technologies - Volume 1: WEBIST, ISBN 978-989-8565-08-2, pages 743-752. DOI: 10.5220/0003909207430752


in Harvard Style

Zefferer T., Tauber A. and Zwattendorfer B. (2012). IMPROVING THE SECURITY OF SMS-BASED SERVICES USING ELECTRONIC SIGNATURES - Towards SMS-based Processing of Transactional m-Government Services . In Proceedings of the 8th International Conference on Web Information Systems and Technologies - Volume 1: WEBIST, ISBN 978-989-8565-08-2, pages 743-752. DOI: 10.5220/0003909207430752


in Bibtex Style

@conference{webist12,
author={Thomas Zefferer and Arne Tauber and Bernd Zwattendorfer},
title={IMPROVING THE SECURITY OF SMS-BASED SERVICES USING ELECTRONIC SIGNATURES - Towards SMS-based Processing of Transactional m-Government Services},
booktitle={Proceedings of the 8th International Conference on Web Information Systems and Technologies - Volume 1: WEBIST,},
year={2012},
pages={743-752},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0003909207430752},
isbn={978-989-8565-08-2},
}


in Bibtex Style

@conference{webist12,
author={Thomas Zefferer and Arne Tauber and Bernd Zwattendorfer},
title={IMPROVING THE SECURITY OF SMS-BASED SERVICES USING ELECTRONIC SIGNATURES - Towards SMS-based Processing of Transactional m-Government Services},
booktitle={Proceedings of the 8th International Conference on Web Information Systems and Technologies - Volume 1: WEBIST,},
year={2012},
pages={743-752},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0003909207430752},
isbn={978-989-8565-08-2},
}


in EndNote Style

TY - CONF
JO - Proceedings of the 8th International Conference on Web Information Systems and Technologies - Volume 1: WEBIST,
TI - IMPROVING THE SECURITY OF SMS-BASED SERVICES USING ELECTRONIC SIGNATURES - Towards SMS-based Processing of Transactional m-Government Services
SN - 978-989-8565-08-2
AU - Zefferer T.
AU - Tauber A.
AU - Zwattendorfer B.
PY - 2012
SP - 743
EP - 752
DO - 10.5220/0003909207430752


in EndNote Style

TY - CONF
JO - Proceedings of the 8th International Conference on Web Information Systems and Technologies - Volume 1: WEBIST,
TI - IMPROVING THE SECURITY OF SMS-BASED SERVICES USING ELECTRONIC SIGNATURES - Towards SMS-based Processing of Transactional m-Government Services
SN - 978-989-8565-08-2
AU - Zefferer T.
AU - Tauber A.
AU - Zwattendorfer B.
PY - 2012
SP - 743
EP - 752
DO - 10.5220/0003909207430752