Home // SECURWARE 2015, The Ninth International Conference on Emerging Security Information, Systems and Technologies // View article
Authors:
Alexandre Braga
Romulo Zanco Neto
André Vannucci
Ricardo Hiramatsu
Keywords: SMS; Cryptography; Android; Security
Abstract:
This paper details the construction of an application framework for SMS security that provides secrecy, integrity, authentication, and non-repudiation for SMS messages. The proposed framework integrates authenticated encryption and short digital signatures to management services for cryptographic keys and digital certificates. The framework hides from final users all details concerning certificate and key management. A flexible trade-off between security objectives and message length makes it possible to offer three levels of security: (i) secrecy only, (ii) secrecy and message authentication, and (iii) secrecy, origin authentication and non-repudiation. The main contribution is the use of short signatures for SMS origin authentication, which makes it possible to pack in a single, 140-byte SMS all information necessary to authenticate the origin of encrypted messages, while the user is still left with a useful length of text.
Pages: 67 to 73
Copyright: Copyright (c) IARIA, 2015
Publication date: August 23, 2015
Published in: conference
ISSN: 2162-2116
ISBN: 978-1-61208-427-5
Location: Venice, Italy
Dates: from August 23, 2015 to August 28, 2015