Post on 28-Dec-2015
transcript
PKI interoperability and policy in the wireless world
AgendaWireless Trust ServicesWireless PKI TechnologiesWireless Security Deployments TodayInteroperability testing experienceCertificate issuance policiesUse of certificates by other parties
Trust in The Wireless WorldAuthenticationPaymentValidationWho are you?Can you pay?Can you prove it?
Wireless PKI TechnologiesDevice independent solutionsSIM Toolkit application (GSM)WAPWTLS class 2 todayWTLS class 3 2001I Mode SolutionsSSL from fall 2000Client Certificates in 2001?Future wireless standardsWAP Next Generation3G Wireless
SIM Toolkit ApplicationSIM ManagerSMSGatewayPhoneApplication ServerPrivatekeyAvailable today
Device Independent SolutionSMSGatewayPhoneSigning PortalApplication ServerAvailable today
WAP Gateway ArchitectureWTLSHTTP/SSLHTTP/SSLWirelessGatewayApplicationServers
WAP Gateway/Server CertificatesWAPWAP Server/GatewayWTLS certificateserviceCA Processing CenterPrivatekeyRootpublickeyAvailable today
WAP Client CertificatesWTLSWirelessGatewayApplicationServerMobileClientVeriSign OnSiteX.509 client certificatesPrivatekeyCA Processing CenterWTLS client authentication
OnLine-Issued WAP Client CertificatesWirelessGatewayApplicationServerPhone/WIMPrivatekeyCA Processing CenterX.509client certsCertificateIssuance(Carrier cert) PKI PortalWireless Client Certificate Issuing Capability in Trial 4Q00
Interoperability testing experienceTesting of WAP server certificates successfulProblems encountered:User interface issuesCertificate memory allocation issues
Certificate Issuance PolicyNeed a published policyValue of certificate depends on level of authenticationCertificate status needs to be publicly available
Use of Certificates by other partiesRevenue opportunity for wireless carriersProvide on line status of certificatesUse carrier issued certificate for mCommerce authenticationRequires a high level of trust in certificate issuer
SummaryInteroperability essentialSuccessful testing of WAP server certsRevenue opportunity for wireless carriers with wireless client certificates
Interoperability essential for widespread adoption
Enabling Trust on the Wireless Internet