Secure mobile business information processing

Kuntze, N.; Rieke, R.; Diederich, G.; Sethmann, R.; Sohr, K.; Mustafa, T.; Detken, K.-O.

doi:10.1109/EUC.2010.107

2010

Conference Paper

Abstract

An ever increasing amount of functionality is incorporated into mobile phones - this trend will continue as new mobile phone platforms are more widely used such as the iPhone or Android. Along with this trend, however, new risks arise, especially for enterprises using mobile phones for security-critical applications such as business intelligence (BI). Although platforms like Android have implemented sophisticated security mechanisms, security holes have been reported [9] In addition, different stakeholders have access to mobile phones such as different enterprises, service providers, operators, or manufacturers. In order to protect security-critical business applications, a trustworthy mobile phone platform is needed. Starting with typical attack scenarios, we describe a security architecture for Android mobile phones based on the concepts of Trusted Computing. In particular, this architecture allows for a dynamic policy change to reflect the current environment the pho ne is being used in.

Author(s)

Kuntze, N.

Rieke, R.

Diederich, G.

Sethmann, R.

Sohr, K.

Mustafa, T.

Detken, K.-O.

Mainwork

IEEE/IFIP 8th International Conference on Embedded and Ubiquitous Computing, EUC 2010

Conference

International Conference on Embedded and Ubiquitous Computing (EUC) 2010

Options

Secure mobile business information processing