Abstract
This paper presents a new identity platform based on the OPENID standard for Android mobile and working with the Open Mobile API, which has been recently defined by the SIM Alliance committee. This innovative service comprises four components, an embedded USIM TLS stack, an Android proxy application (PS), an identity provider (IdP) server, and an OPENID authentication server. USIM modules are issued with a device certificate and may thereafter download other certificates from the IdP server. All HTTP exchanges are secure by the USIM TLS stack. This platform may work with about one million of WEB sites, which are today compatible with the OPENID framework.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
GSM Association, NFC Handset APIs & Requirements Version 2.0 (2011)
SIM Alliance, Open Mobile API specification V2.02 (2011)
Secure Element Evaluation Kit for the Android platform - the ’SmartCard API’, http://code.google.com/p/seek-for-android/
What is android?, http://developer.android.com/guide/basics/what-is-android.html
Vedder, K.: "Smart Cards", ETSI Security Workshop (2006), http://www.etsi.org/WebSite/document/Workshop/Security2006/Security2006S1_3_Klaus_Vedder.pdf
ISO 7816, Cards Identification - Integrated Circuit Cards with Contacts. The International Organization for Standardization (ISO)
Chen, Z.: Java CardTM Technology for Smart Cards: Architecture and Programmer’s (The Java Series). Addison-Wesley (2002)
NFC Forum, http://www.nfc-forum.org
Global Platform, http://www.globalplatform.org/
JSR 177, Security and Trust Services API (SATSA) for JavaTM Platform. Micro Edition
TS 102 613, Technical Specification Smart Cards; UICC - Contactless Front-end (CLF) Interface; Part 1: Physical and data link layer characteristics (Release 7)
RFC 2246, The TLS Protocol Version 1.0, IETF (1999)
Urien, P.: An OpenID Provider based on SSL Smart Cards. In: 7th IEEE Consumer Communications and Networking Conference, CCNC 2010, January 9-12 (2010)
Garrett, J.J.: Ajax: A New Approach to Web Applications (February 2005), http://www.adaptivepath.com/ideas/essays/archives/000385.php
XMLHttpRequest Level 2, W3C Working Draft 17 (January 2012)
Urien, P.: Collaboration of SSL smart cards within the WEB2 landscape. In: CTS 2009 (2009)
3GPP TS 27.007 standard
Urien, P., Pujolle, G.: EAP support in smartcards. IETF Draft (2002-2012)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2013 ICST Institute for Computer Science, Social Informatics and Telecommunications Engineering
About this paper
Cite this paper
Urien, P. (2013). An OPENID Identity Service for Android, Based on USIM Secure Elements. In: Uhler, D., Mehta, K., Wong, J.L. (eds) Mobile Computing, Applications, and Services. MobiCASE 2012. Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering, vol 110. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-36632-1_21
Download citation
DOI: https://doi.org/10.1007/978-3-642-36632-1_21
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-36631-4
Online ISBN: 978-3-642-36632-1
eBook Packages: Computer ScienceComputer Science (R0)