Mobile commerce over GSM: A banking perspective on security

Show simple item record

dc.contributor.advisor Penzhorn, W.T. en
dc.contributor.postgraduate Van der Merwe, Pieter Ben en
dc.date.accessioned 2013-09-07T05:22:51Z
dc.date.available 2004-09-15 en
dc.date.available 2013-09-07T05:22:51Z
dc.date.created 2004-07-31 en
dc.date.issued 2005-09-15 en
dc.date.submitted 2004-07-20 en
dc.description Dissertation (M.Sc (Electronics))--University of Pretoria, 2005. en
dc.description.abstract GSM has changed the face of communication and information exchange, much as the Internet did. With the advances made in the mobile technology arena, new opportunities are created. Mobile Commerce (m-Commerce) is one such opportunity. Each new advance in technology brings with it associated risks. This dissertation focuses on the risks involved with m-Commerce for the banking industry. This dissertation provides a detailed overview of basic services that any m-Commerce application should provide to the banking industry. These principles provide the foundation for securing any financial transaction over untrusted networks. Several mechanisms to provide these services are also discussed. Examples of such mechanisms include hash functions, Message Authentication Codes and Digital Signatures. The security of GSM networks has come under attack in the past. This is largely due to the fact that the GSM consortium opted to develop their security technologies in secret, rather than in the public domain. This dissertation aims to evaluate the security offered by GSM and assess potential attacks in order to further understand risks associated with m-Commerce applications over GSM. In recent years there have been significant additions to the GSM enabling technology family. The arrival of the SIM Application Toolkit and the Wireless Application Protocol promised to again change the face of commerce. Although market acceptance of these technologies proved to be initially slow, usage is set to increase exponentially within the next couple of years. A detailed analysis of these enabling technologies is presented in the dissertation. Possible attacks on these technologies are discussed in the latter part or this document. Based on the findings of the research, some changes to either the application architectures or the processing of the data have been suggested in order to enhance the security offered by these services. It is not the intent of this dissertation to redesign these applications, but to rather leverage off the current technologies in order to enable secure m-Commerce over these channels. This dissertation provides a detailed overview of basic services that any m-Commerce application should provide to the banking industry. These principles provide the foundation for securing any financial transaction over untrusted networks. Several mechanisms to provide these services are also discussed. Examples of such mechanisms include hash functions, Message Authentication Codes and Digital Signatures. The security of GSM networks has come under attack in the past. This is largely due to the fact that the GSM consortium opted to develop their security technologies in secret, rather than in the public domain. This dissertation aims to evaluate the security offered by GSM and assess potential attacks in order to further understand risks associated with m Commerce applications over GSM. In recent years there have been significant additions to the GSM enabling technology family. The arrival of the SIM Application Toolkit and the Wireless Application Protocol promised to again change the face of commerce. Although market acceptance of these technologies proved to be initially slow, usage is set to increase exponentially within the next couple of years. A detailed analysis of these enabling technologies is presented in the dissertation. Possible attacks on these technologies are discussed in the latter part or this document. Based on the findings of the research, some changes to either the application architectures or the processing of the data have been suggested in order to enhance the security offered by these services. It is not the intent of this dissertation to redesign these applications, but to rather leverage off the current technologies in order to enable secure m-Commerce over these channels. en
dc.description.availability unrestricted en
dc.description.department Electrical, Electronic and Computer Engineering en
dc.identifier.citation Van der Merwe, P 2004, Mobile commerce over GSM: A banking perspective on security, M.Sc dissertation, University of Pretoria, Pretoria, viewed yymmdd < http://hdl.handle.net/2263/26431 > en
dc.identifier.upetdurl http://upetd.up.ac.za/thesis/available/etd-07202004-111814/ en
dc.identifier.uri http://hdl.handle.net/2263/26431
dc.language.iso en
dc.publisher University of Pretoria en_ZA
dc.rights © 2004, University of Pretoria. All rights reserved. The copyright in this work vests in the University of Pretoria. No part of this work may be reproduced or transmitted in any form or by any means, without the prior written permission of the University of Pretoria. en
dc.subject M-commerce en
dc.subject Mobile commerce security en
dc.subject Wireless application protocol en
dc.subject Wap en
dc.subject Wireless internet gateway en
dc.subject Wig en
dc.subject Stk en
dc.subject Sim application toolkit en
dc.subject Cryptographuy en
dc.subject Mobile commerce en
dc.subject Gsm security en
dc.subject Gsm en
dc.subject UCTD en_US
dc.title Mobile commerce over GSM: A banking perspective on security en
dc.type Dissertation en


Files in this item

This item appears in the following Collection(s)

Show simple item record