On the Security of Public-Key-Certificate-Relay Protocol for Smart-Phone Banking Services

DongOh Shin; Jeonil Kang; DaeHun Nyang; KyungHee Lee

On the Security of Public-Key-Certificate-Relay Protocol for Smart-Phone Banking Services

Vol. 37, No. 9, pp. 841-850, Sep. 2012

PDF

Abstract

Most of banks in Korea provide smartphone banking services. To use the banking service, public key certificates with private keys, which are stored in personal computers, should be installed in smartphones. Many banks provides intermediate servers that relay certificates to smartphones over the Internet, because the transferring certificates via USB cable is inconvenient. In this paper, we analyze the certificate transfer protocol between personal computer and smartphone, and consider a possible attack based on the results of the analysis. We were successfully able to extract a public key certificate and password-protected private key from encrypted data packets. In addition, we discuss several solutions to transfer public key certificates from personal computers to smartphones safely.

Statistics

Cumulative Counts from November, 2022
Multiple requests among the same browser session are counted as one view. If you mouse over a chart, the values of data points will be shown.

Cite this article

[IEEE Style]

D. Shin, J. Kang, D. Nyang, K. Lee, "On the Security of Public-Key-Certificate-Relay Protocol for Smart-Phone Banking Services," The Journal of Korean Institute of Communications and Information Sciences, vol. 37, no. 9, pp. 841-850, 2012. DOI: .

[ACM Style]

DongOh Shin, Jeonil Kang, DaeHun Nyang, and KyungHee Lee. 2012. On the Security of Public-Key-Certificate-Relay Protocol for Smart-Phone Banking Services. The Journal of Korean Institute of Communications and Information Sciences, 37, 9, (2012), 841-850. DOI: .

[KICS Style]

DongOh Shin, Jeonil Kang, DaeHun Nyang, KyungHee Lee, "On the Security of Public-Key-Certificate-Relay Protocol for Smart-Phone Banking Services," The Journal of Korean Institute of Communications and Information Sciences, vol. 37, no. 9, pp. 841-850, 9. 2012.

On the Security of Public-Key-Certificate-Relay Protocol for Smart-Phone Banking Services

Submenu

Search
(IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

Advanced Search

Recent Publications
(LAST 3 YEARS)

On the Security of Public-Key-Certificate-Relay Protocol for Smart-Phone Banking Services

Submenu

Search (IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

Advanced Search

POPULAR KEYWORDS(TOP 10 KEYWORDS)

Recent Publications(LAST 3 YEARS)

Search
(IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

POPULAR KEYWORDS
(TOP 10 KEYWORDS)

Recent Publications
(LAST 3 YEARS)