Home // International Journal On Advances in Security, volume 4, numbers 1 and 2, 2011 // View article

Tailored Concepts for Software Integrity Protection in Mobile Networks

Authors:
Manfred Schäfer
Wolf-Dietrich Moeller

Keywords: Software integrity protection; secure execution environment; code signing; trust management; Evolved Packet System (EPS); autonomous validation;

Abstract:
This paper presents research results on SW security for network elements. Our investigations contribute to the ongoing ASMONIA project, which is focusing on col¬la¬bo¬ra¬tive approaches and on protection and warning mecha¬nisms in 4G networks. This work is dedicated to exa¬mine spe¬ci¬fic aspects thereof, concentrating on software integrity pro¬tection (SWIP) to securely manage SW products in mobile networks. Based on an analysis of 3GPP standard¬ization re¬qui¬rements and of existing approaches for integrity protection, solution concepts are proposed and discussed to meet the identified needs. These aim at harmoni¬zed approaches for a number of different use cases. Particular account is taken of keeping infrastructure efforts as small as possible, both in operator network as well as in manufacturer domain. The proposed solutions are targeting improvements to integrate and establish efficient trust mechanisms into mobile network elements and management systems.

Pages: 54 to 66

Copyright: Copyright (c) to authors, 2011. Used with permission.

Publication date: September 15, 2011

Published in: journal

ISSN: 1942-2636