A New Mobile Information Security Solution Based on External Electronic Key

Abstract

Mobile service raises a number of security and privacy challenges. To address this, we present an approach in which the mobile information security is enhanced by using external security key and specified policies. An electronic security key (eKey) is connected to the mobile device by adaptable interface for enhancing the security ability and storing private data. Front end administration module (FAM) located on mobile device which is responded for command initiation connects to backend administration module (BAM) on server by means of identification and mutual authentication which generating different session key with time stamp every time. Furthermore, the software design and hardware design of eKey is given. Software design put emphasis on the security architecture providing security services, based on current relatively mature security framework for wireless mobile terminals of the 3rd Generation Partnership Project (3GPP). Hardware design put emphasis on the hardware security solution and the communication mechanism between main controller and security module. In this way, the mobile information security problem is solved to a certain extent. In the end, we point the new adapted interface that supports data exchange between mobile terminals and external device will give a large chance to the development and application of eKey in the future.