J2ME - Based Mobile Commerce Application - Layer Security Solution

Posted on:2008-02-13

Degree:Master

Type:Thesis

Country:China

Candidate:X Wang

Full Text:PDF

GTID:2208360212999662

Subject:Information security

Abstract/Summary:

PDF Full Text Request

With the rapid development of mobile communication technology and the continuous enhancement of mobile terminal function, it laid the foundation for hardware technology for the realization of mobile commerce.In recent years, there are a lot of WAP-based mobile commerce applications which have achieved some good results. However, the incompatibility with standard Internet protocols and the need for using a gateway to perform protocol conversion raises some security concerns and prevents WAP 1.x from providing end-to-end security. This is due to the fact that the protocol conversion mechanism leaves data in an unencrypted form at the gateway during the protocol switching process, which risks the confidentiality of data in the gateway. Through the study and comparison based on existing mobile commerce security solutions, this thesis proposes an application-layer security solution for mobile commerce applications using the J2ME.The solution uses the AES algorithm to encrypt sensitive data, then packages the encrypted data into the HTTP message, which is transported using WAP protocol stack between the client and server.The solution uses pure Java components to provide client authentication and data confidentiality and integrity.This solution can be implemented with the available limited resources of a Java MIDP device, without any modification to the underlying protocols or wireless network infrastructure.The work the author has done is:1. Research the AES algorithm and the principles of its design, implement AES encryption algorithm which fit for PC and mobile terminal using optimized method.2. Research in-depth J2ME platform characteristics and technical defects and realize session tracking function based J2ME platform.3. Analyze the characteristics and defects for existing WAP-based security solution, propose an application-layer security solution for mobile commerce applications using the J2ME and realize prototype system for this solution.4. Analyze the security performance for the prototype system and test the system performance.

Keywords/Search Tags:

mobile commerce, J2ME, application-layer security, AES Cryptosystem, session tracking

PDF Full Text Request

Related items

1	Research And Implementation Of The Key Technologies In Security Of Enterprise Mobile Commerce Based On J2ME
2	Secure Design And Implementation Of Mobile Commerce System Base On J2ME
3	Research On Application And System Design Of Mobile Phone In Mobile E-Commerce Based On J2ME
4	A Security Research And Implementation Of Mobile-Commerce Based On J2ME And J2EE
5	Research On Mobile Phone Application System Based On J2ME
6	Research On Application Of NTRU Cryptography Algorithm On J2ME
7	Research Of Mobile E-commerce Based On J2ME & J2EE
8	Design Of Mobile Security Application Platform And Research On Its Dynamic Integration
9	Research And Implementation Of Security Platform In Mobile Commerce
10	Research Of Security In Mobile Applications Based On J2ME Platform