In this paper we present ODYSSEY (pOlicy-Driven anonYmizer for handheld WireleSS dEvices privacY) as an efficient security architecture for assuring privacy through applying selective confidentiality and integrity on Web traffic between wireless handheld devices and the Internet. The anonymizer hides the identity of the user to surfed Web sites and the user's traffic to its ISP. This is done by acting as a proxy node to the client and by preserving confidentiality and integrity thru applying content-based encryption and hashing on the Web traffic between the gateway and the client. The system is a scalable, policy-based solution capable of evolving and adapting to suit the security requirements of a wide range of wireless devices. In addition, ODYSSEY is autonomous since it will continuously update the policy based on existing policy rules and user behaviors. All this give ODYSSEY considerable performance gains over existing standard anonymizers that use bulk encryption such as SSL.
展开▼