Cellular Authentication for Mobile and Internet Services

An invaluable reference discussing the Generic Authentication Architecture (GAA), its infrastructure, usage and integration into existing networks Cellular Authentication for Mobile and Internet Services introduces the reader into the field of secure communication for mobile applications, including secure web browsing with a phone or PC, Single Sign-On (SSO), mobile broadcast content protection, secure location services, etc. The book discusses the Generic Authentication Architecture (GAA) of the mobile standardization body 3rd Generation Partnership Project (3GPP) and its American counterpart 3GPP2 in full detail and with all variants. It explains the usage of GAA by various standardization bodies and standardized applications, and also looks at a number of non-standardized ones, such as secure remote login to enterprise environment and card personalization. Cellular Authentication for Mobile and Internet Services: Describes the usage of the generic authentication architecture (GAA) by various standardization bodies and standardized applications, covering mobile broadcast / multicast service security, Single Sign-On, HTTPS (i.e. secure web browsing), secure data access, secure location services, etc Provides guidance on how to integrate the generic authentication into existing and future terminals, networks and applications Explains the functionality of the application security in general as well as on application developer level Describes various business scenarios and related security solutions, and covers secure application implementation and integration Brings together essential information (currently scattered across different standardization bodies) on standards in one comprehensive volume This excellent all-in-one reference will provide system and protocol designers, application developers, senior software project managers, telecommunication managers and ISP managers with a sound introduction into the field of secure communication for mobile applications. System integrators, advanced students, Ph.D. candidates, and professors of computer science or telecommunications will also find this text very useful.

An invaluable reference discussing the Generic AuthenticationArchitecture (GAA), its infrastructure, usage andintegration into existing networksCellular Authentication for Mobile and Internet Servicesintroduces the reader into the field of secure communication formobile applications, including secure web browsing with a phone orPC, Single Sign-On (SSO), mobile broadcast content protectionsecure location services, etc. The book discusses the GenericAuthentication Architecture (GAA) of the mobile standardizationbody 3rd Generation Partnership Project (3GPP) and itsAmerican counterpart 3GPP2 in full detail and with all variants. Itexplains the usage of GAA by various standardization bodies andstandardized applications, and also looks at a number ofnon-standardized ones, such as secure remote login to enterpriseenvironment and card personalization.Cellular Authentication for Mobile and InternetServices:* Describes the usage of the generic authentication architecture(GAA) by various standardization bodies and standardizedapplications, covering mobile broadcast / multicast servicesecurity, Single Sign-On, HTTPS (i.e. secure web browsing), securedata access, secure location services, etc* Provides guidance on how to integrate the genericauthentication into existing and future terminals, networks andapplications* Explains the functionality of the application security ingeneral as well as on application developer level* Describes various business scenarios and related securitysolutions, and covers secure application implementation andintegration* Brings together essential information (currently scatteredacross different standardization bodies) on standards in onecomprehensive volumeThis excellent all-in-one reference will provide system andprotocol designers, application developers, senior software projectmanagers, telecommunication managers and ISP managers with a soundintroduction into the field of secure communication for mobileapplications. System integrators, advanced students, Ph.D.candidates, and professors of computer science ortelecommunications will also find this text very useful.

Preface.Acknowledgements.1. Introduction.1.1. Authenticated Key Agreement.1..1. The Challenge in Authenticated Key Agreement.1.3. How to read This Book?2. Classical Approaches to Authentication and KeyAgreement.2.1. Existing Mobile Security Solutions.2.2. General-Purpose Approaches to Authentication and KeyManagement.2.3. Requirements for GAA.3. Generic Authentication Architecture.3.1. Overview of Generic Authentication Architecture.3.2. Foundations of GAA.3.3. Variations of the Generic Bootstrapping Architecture.3.4. Building Blocks of GAA.3.5. Other Architectural Issues.3.6. Overview of 3GPP GAA Specifications.4. Applications Using Generic AuthenticationArchitecture.4.1. Standardized Usage Scenarios.4.2. Additional Usage Scenarios.5. Guidance for Deploying GAA.5.1. Integration with Application Servers.5.2. Integration with OS Security.5.3. Integration with Identity Management Systems.5.4. Integration of GAA into Mobile Networks.6. Future Trends.6.1. Standardization Outlook.6.2. Outlook for GAA.Terminology and Abbreviations.Index.