General requirements and security architecture for mobile phone anti-cloning measures

IEEE EUROCON 2015 - International Conference on Computer as a Tool (EUROCON) Pub Date : 2015-11-02 DOI:10.1109/EUROCON.2015.7313666

I. Gepko

{"title":"General requirements and security architecture for mobile phone anti-cloning measures","authors":"I. Gepko","doi":"10.1109/EUROCON.2015.7313666","DOIUrl":null,"url":null,"abstract":"The impressive number of counterfeit and stolen mobile phones as well as the emergence of applications where the authentication of mobile terminal is needed shows the critical importance of reliable protection of the mobile device identity. Counterfeiters may use for their products identifiers allocated for genuine handsets. Besides, forgery of the International Mobile Equipment Identity (IMEI) is not too difficult for most of existing smartphones as their software which is the last source of IMEI before sending it to network is vulnerable to modifications. In this paper we argue that there is a need for developing of anti-cloning tool for the mobile devices, which efficacy should not depend on manufacturers. The basic requirements for the novel security architecture were formulated. We introduced “provable experience” authentication factor of mobile device which is dual with respect to the “social network” authentication factor of user. A novel method of multi-factor authentication of mobile device is proposed based on this, which allows effective blocking of clones in cellular networks and does not require standardization or changes in mobile device construction.","PeriodicalId":133824,"journal":{"name":"IEEE EUROCON 2015 - International Conference on Computer as a Tool (EUROCON)","volume":"14 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2015-11-02","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"6","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE EUROCON 2015 - International Conference on Computer as a Tool (EUROCON)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/EUROCON.2015.7313666","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 6

Abstract

The impressive number of counterfeit and stolen mobile phones as well as the emergence of applications where the authentication of mobile terminal is needed shows the critical importance of reliable protection of the mobile device identity. Counterfeiters may use for their products identifiers allocated for genuine handsets. Besides, forgery of the International Mobile Equipment Identity (IMEI) is not too difficult for most of existing smartphones as their software which is the last source of IMEI before sending it to network is vulnerable to modifications. In this paper we argue that there is a need for developing of anti-cloning tool for the mobile devices, which efficacy should not depend on manufacturers. The basic requirements for the novel security architecture were formulated. We introduced “provable experience” authentication factor of mobile device which is dual with respect to the “social network” authentication factor of user. A novel method of multi-factor authentication of mobile device is proposed based on this, which allows effective blocking of clones in cellular networks and does not require standardization or changes in mobile device construction.

查看原文本刊更多论文

手机防克隆措施的一般要求和安全架构

假冒和被盗的手机数量惊人，以及需要对移动终端进行身份验证的应用程序的出现，表明了可靠保护移动设备身份的重要性。造假者可能会在他们的产品中使用分配给正品手机的标识符。此外，对于大多数现有的智能手机来说，伪造国际移动设备标识(IMEI)并不太难，因为它们的软件是IMEI发送到网络之前的最后来源，很容易被修改。在本文中，我们认为有必要为移动设备开发反克隆工具，其功效不应取决于制造商。提出了新型安全体系结构的基本要求。我们引入了移动设备的“可验证体验”认证因素，它相对于用户的“社交网络”认证因素是双重的。在此基础上提出了一种新的移动设备多因素认证方法，该方法可以有效地阻止蜂窝网络中的克隆，并且不需要标准化或改变移动设备结构。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

IEEE EUROCON 2015 - International Conference on Computer as a Tool (EUROCON)

自引率

0.00%

发文量