A security analysis of smartphone data flow and feasible solutions for lawful interception
作者: Mithun Paul , Nitin Singh Chauhan , Ashutosh Saxena
DOI: 10.1109/ISIAS.2011.6122788
关键词:
摘要: Smartphones providing proprietary encryption schemes, albeit offering a novel paradigm to privacy, are becoming bone of contention for certain sovereignties. These sovereignties have raised concerns about their security agencies not having any control on the encrypted data leaving jurisdiction and ensuing possibility it being misused by people with malicious intents. Such smartphones typically two types customers, independent users who use access public mail servers corporates/enterprises whose employees corporate emails in an form. The threat issues concern mainly enterprise where leaves respective sovereignty while its way global smartphone router. In this paper, we analyzed such email message transfer mechanisms proposed some feasible solutions, which, if accepted implemented entities involved, can lead possible win-win situation both parties, viz., provider does want lose customers these avoid worry jurisdiction.
sci-hub.se 参考文章(6)
R. L. Rivest, A. Shamir, L. Adleman, A method for obtaining digital signatures and public-key cryptosystems Communications of the ACM. ,vol. 26, pp. 96- 99 ,(1983) , 10.1145/357980.358017
John Harauz, Lori M. Kaufman, A New Era of Presidential Security: The President and His BlackBerry ieee symposium on security and privacy. ,vol. 7, pp. 67- 70 ,(2009) , 10.1109/MSP.2009.29
Javier Herranz, Dennis Hofheinz, Eike Kiltz, Some (in)sufficient conditions for secure hybrid encryption Information & Computation. ,vol. 208, pp. 1243- 1257 ,(2010) , 10.1016/J.IC.2010.07.002
David P. Jablon, Strong password-only authenticated key exchange ACM SIGCOMM Computer Communication Review. ,vol. 26, pp. 5- 26 ,(1996) , 10.1145/242896.242897
Mohsen Toorani, A. Beheshti, LPKI - A lightweight public key Infrastructure for the mobile environments international conference on conceptual structures. pp. 162- 166 ,(2008) , 10.1109/ICCS.2008.4737164
Ronald Cramer, Victor Shoup, Design and Analysis of Practical Public-Key Encryption Schemes Secure against Adaptive Chosen Ciphertext Attack SIAM Journal on Computing. ,vol. 33, pp. 167- 226 ,(2004) , 10.1137/S0097539702403773