Java-based end-to-end security for wireless Internet.

摘要

The E2E security model has proven to be the successful security solution for enterprise business and personal applications.; In general, the security analysis presented in this thesis reveals that, MIDP 2.0 provides a good solution to most of the E2E security problems, as compared to its older version, MIDP 1.0. However, there are still a number of problems; most of these are related to the passive and active attacks that can target the SSL handshake protocol, on-device bytecode verifier, X.509 PKI, and protection domains.; In addition, the analysis also brings to light several ways to enhance the deployment and robustness of the MIDP 2.0 E2E security solutions. These include adding more flexibility to MIDP 2.0 support for HTTPS enabling developers to change cipher or key strength, integrating ECC into the implementation of SSL/TLS, including support for P2P, multicast and MANET, and developing a set of rules to lead the process of assigning protection domains to applications.; Application level security is the first step if going beyond MIDP 2.0 current security solutions is required. Integrating Bouncy Castle cryptographic APIs into MIDP development environment is of great importance to achieve that. Application level security can be used to effectively and efficiently utilize the MIDP 2.0 E2E security features on Java-enabled mobile devices. (Abstract shortened by UMI.)