Modifications to improve the mobile commerce security

مقدم أطروحة جامعية

Hashim, Sukaynah Hasan

الجامعة

الجامعة التكنولوجية

الكلية

-

القسم الأكاديمي

قسم علوم الحاسوب

دولة الجامعة

العراق

الدرجة العلمية

دكتوراه

تاريخ الدرجة العلمية

2006

الملخص الإنجليزي

Mobile commerce (m-commerce) is providing commercial services that are accessible by using mobile devices, typically a mobile phone.

The main advantages of such services are their high availability, independence of physical location and time.

Yet the move to create a wireless version of internet means a new set of problems.

As with the existing fixed internet, the biggest problem is security.

Despite the fact that operators are announcing or rolling out Wireless Applications Protocols (WAP).

I-mode and java-based information, the platforms have gaping security holes.

Because the security is the most important feature to the success of m-commerce, in that the interest of this dissertation is.

The work has two parts they are : The first part will be about improving the m-commerce over the WAP technology, with respect to all the security limitation of WAP mobile phones.

in chapter four a security policy is suggested depending on the following modifications: Improve the presented security by the WAP mobile phone from traditional RSA to xor-40 message authentication followed bv ECC digital signature using MVECC method.

That what called the proposed PKCSI3.

Since this proposed PKCS-15 represents a weak security channel over the internet, here we will introduce a proxy called mobile pave proxy sitting between the WAP and web server.

That proxy will convert the security from the proposed PKCSI3 to a proposed SSL security method.

The last will take the message digest by MD5 method then apply the RSA digital signature on this digest then encrypt the message and it is signed digest with blowfish encryption method.

Per implementing the proposed suggestions introduced in chapter four, this dissertation depend on the open wave SDK and integrated it with visual studio.net give fast and efficient testing and implementing the proposed suggestions, especially because our dear country yet now still in the first step of reconstruction.

The second part will be about improving the m-commerce security over the J2ME / MIDP technology, in chapter five a security policy is suggested depending on the following point: Since the language used to transfer the data in this technology is the XML.

The suggestion is to improve its security by applying the digital signature schema to the XML documents to provide a secure channel between the mobile phone and the web server.

Lord implementing the proposed suggestions introduced in chapter five, this thesis depend on the open wave SDK and Java language to give perfect real, fast and efficient testing and implementing the proposed suggestions, also because our dear country yet now still in the first step of reconstruction.

التخصصات الرئيسية

تكنولوجيا المعلومات وعلم الحاسوب

الموضوعات

• التجارة الإلكترونية
• الإجراءات الأمنية

• APA
• MLA
• AMA

لغة النص

الإنجليزية

نوع البيانات

رسائل جامعية

رقم السجل

BIM-305900