Abstract
In this paper, we propose an architecture for secure push services for mobile users that supports common-of-the-shelf (COTS) WLAN base stations. The architecture focuses on the creation of flexible access networks based on easily deployable base stations. The push functionality is realized using client-initiated connections with SIP, and TLS or dTLS for security. The central building block of the distributed system is the edge proxy, which manages and implicitly authenticates all inbound connections, and performs privacy enhancement. The main driving force of our architecture has been airline services, but the system is applicable also for other service domains.
Similar content being viewed by others
References
3GPP. (2006). Generic Authentication Architecture (GAA); Generic bootstrapping architecture. TS 33.220 3436, 3GPP.
Akkawi, A., Schaller, S., Wellnitz, O., & Wolf, L. (2004). Networked mobile gaming for 3G-networks. In Proceedings of 3rd International Conference on Entertainment Computing (ICEC 2004). The Netherlands: Eindhoven.
Calhoun, P., Loughney, J., Guttman, E., Zorn, G., & Arkko, J. (2003). Diameter base protocol. RFC 3588, IETF.
Camarillo, G., & Garcia-Martin, M. (2004). The 3G IP Multimedia Subsystem (IMS): Merging the Internet and the cellular worlds. Wiley.
Cuevas, A., Moreno, J. I., Vidales, P., & Einsiedler, H. (2006). The IMS service platform: A solution for next generation network operators to be more than bit pipes. IEEE Communications Magazine.
Dierks, T., & Rescorla, E. (2006). The Transport Layer Security (TLS) protocol version 1.1. RFC 4346, IETF.
Feng, V. W. S., Wu, L. Y., Lin, Y. B., & Chen, W. E. (2004). WGSN: WLAN-based GPRS support node with push mechanism. The Computer Journal, 47(4), 405–417.
Garcia-Martin, M., Belinchon, M., Pallares-Lopez, M., Canales-Valenzuela, C., & Tammi, K. (2006). Diameter Session Initiation Protocol (SIP) application. RFC 4740, IETF.
Guttman, E., Perkins, C., Veizades, J., & Day, M. (1999). Service location protocol, version 2. RFC 2608, IETF.
Hancock, R., Karagiannis, G., Loughney, J., & den Bosch, S. V. (2005). Next Steps in Signaling (NSIS): Framework. RFC 4080, IETF.
Jennings, C., & Mahy, R. (2006). Managing client initiated connections in the session initiation protocol (SIP). Internet-Draft draft-ietf-sip-outbound-06, IETF. Work in progress.
Jennings, C., Peterson, J., & Watson, M. (2002). Private extensions to the Session Initiation Protocol (SIP) for asserted identity within trusted networks. RFC 3325, IETF.
Jungmaier, A., Rescola, E., & Tuexen, M. (2002). Transport layer security over stream control transmission protocol. RFC 3436, IETF.
Kallstrom, L., Leggio, S., Suoranta, S., Manner, J., Mikkonen, T., Raatikainen, K., Saarinen, J., & Yla-Jaaski, A. (2006). A framework for seamless service interworking in ad-hoc networks. Elsevier Computer Communications.
Kangasharju, J., Lindholm, T., & Tarkoma, S. (2006). On encrypting and signing binary xml messages in the wireless environment. In: IEEE international conference on web services (pp. 637–644).
Kent, S., & Seo, K. (2005). Security architecture for the Internet protocol. RFC 4301, IETF.
Modadugu, N., & Rescola, E. (2004). The design and implementation of datagram TLS. In Proceedings of the 11th Annual Network and Distributed System Security Symposium (NDSS04). San Diego: The Internet Society.
Nikander, P., Ylitalo, J., & Wall, J. (2003). Integrating security, mobility, and multi-homing in a HIP way. In Proceedings of Network and Distributed Systems Security Symposium (NDSS03). San Diego, CA, USA.
Open Mobile Alliance. http://www.openmobilealliance.org/.
Perlman, R., & Kaufman, C. (2000). Key exchange in IPSec: analysis of IKE. IEEE Internet Computing, 4(6), 50–56.
Peterson, J. (2002). A privacy mechanism for the Session Initiation Protocol (SIP). RFC 3323, IETF.
Peterson, J., & Jennings, C. (2006). Enhancements for authenticated identity management in the Session Initiation Protocol (SIP). RFC 4474, IETF.
Podnar, I., Hauswirth, M., & Jazayeri, M. (2002). Mobile push: Delivering content to mobile users. In Proceedings of the International Workshop on Distributed Event-Based Systems (ICDCS/DEBS’02) (pp. 563–570). Vienna, Austria.
Rebahi, Y., & Sisalem, D. (2005). SIP service providers and the spam problem. In Proceedings of the voice over IP security workshop. Washington, USA.
Rescola, E. (2001). SSL and TLS: Designing and building secure systems (1st ed.). Addison–Wesley.
Rescorla, E., & Modadugu, N. (2006). Datagram transport layer security. RFC 4347, IETF.
Rosenberg, J., Schulzrinne, H., Camarillo, G., Johnston, A., Peterson, J., Sparks, R., Handley, M., & Schooler, E. (2002). SIP: Session initiation protocol. RFC 3261, IETF.
Schuelke, A., Abbadessa, D., & Winkler, F. (2006). Service delivery platform: Critical enabler to service providers’ new revenue streams. World Telecommunications Congress.
Schulzrinne, H., & Wedlund, E. (2000). Application-layer mobility using SIP. Mobile Computing and Communications Review, 1(2).
Su, Y., & Flinn, J. (2005). Slingshot: Deploying stateful services in wireless hotspots. In Proceedings of the 3rd international conference on mobile systems, applications, and services (MobiSys 2005). Seattle: ACM.
Vuorimaa, P., Ropponen, T., von Knorring, N., & Honkala, M. (2002). A Java based XML browser for consumer devices. In Proceedings of the 17th ACM symposium on applied computing (pp. 1094–1099). Madrid, Spain.
Forum, W. A. P. (2002). WAP push proxy gateway service specification. Tech. rep., Open Mobile Alliance.
Willis, D., & Hoeneisen, B. (2002). Session Initiation Protocol (SIP) extension header field for registering non-adjacent contacts. RFC 3327, IETF.
Author information
Authors and Affiliations
Corresponding author
Rights and permissions
About this article
Cite this article
Tarkoma, S., Heikkinen, J. & Pohja, M. Secure push for mobile airline services. Telecommun Syst 35, 177–187 (2007). https://doi.org/10.1007/s11235-007-9048-y
Published:
Issue Date:
DOI: https://doi.org/10.1007/s11235-007-9048-y