ZA200906538B - A method of communicating from a wireless device - Google Patents
A method of communicating from a wireless device Download PDFInfo
- Publication number
- ZA200906538B ZA200906538B ZA200906538A ZA200906538A ZA200906538B ZA 200906538 B ZA200906538 B ZA 200906538B ZA 200906538 A ZA200906538 A ZA 200906538A ZA 200906538 A ZA200906538 A ZA 200906538A ZA 200906538 B ZA200906538 B ZA 200906538B
- Authority
- ZA
- South Africa
- Prior art keywords
- message
- gateway
- sim
- application device
- wireless device
- Prior art date
Links
- 238000000034 method Methods 0.000 title claims description 46
- 238000009877 rendering Methods 0.000 claims description 2
- 238000010586 diagram Methods 0.000 description 2
- 230000001413 cellular effect Effects 0.000 description 1
- 239000000284 extract Substances 0.000 description 1
- 230000003068 static effect Effects 0.000 description 1
- 238000010200 validation analysis Methods 0.000 description 1
Description
+40 B . 2 9/ 0 6 5 3 8 ) TITLE: A method of communicating with a wireless device
FIELD OF INVENTION | E
This invention relates to wireless telecommunications, and it relates specifically to a method of communicating with a wireless device and to an gateway, application device and system.
~The Inventor is aware that a number of subscribers who use their wireless devices (e.g. mobile telephones) for banking transactions is increasing quickly. As with all financial transactions, a big issue is the security of the transaction.
WAP gateways are used to enable the subscribers to use their wireless devices to access the Internet. When accessing certain web sites, the owners of the web sites want to know the identity of the wireless device. :
This enables the web site owner to customise the browsing experience. In some cases it is even used to allow the wireless device user to access information without having to log in with a username and password.
A current WAP gateway of which the Inventor is aware extracts the MSISDN (Mobile Subscriber Integrated Service Digital Network) number, also known as the telephone number, of the subscriber from the network and appends that MSISDN into the HTTP header that is passed to the web server.
So, for instance, a subscriber might access a web site using the address: http://mobile.acme-bank.com, but the request sent to the web server will
® contain the MSISDN number: http://mobile.acme- : | bank.com?msisdn=0815551234, where 0815551234 is the MSISDN number.
The two most prominent problems which the Inventor has noted are both forms of identity theft, namely “SIM Swapping” and spoofing.
SIM swapping is where network insiders use the facilities that enable them to issue an MSISDN on any SIM card (such as is used ©. legitimately to replace a SIM card which is lost or stolen), to commit fraud.
The MSISDN of a subscriber is temporarily swapped with that of a fraudster.
The fraudster uses the SIM with the swapped MSISDN to make a fraudulent transaction on the subscriber's bank account. a oo The second issue is where an’ unauthorised person spoofs a request with a valid MSISDN.
The Inventor wishes to overcome or at least alleviate these problems. Further, these problems are not necessarily associated only with
WAP messages, but potentially also with SMS (Short Message Service), MMS (Multimedia Message Service), USSD (Unstructured Supplementary Service
Data) messages and other messages originating from wireless devices. :
Broadly, the invention provides a method of communicating with a wireless device having a SIM (Subscriber Identity Module), the method including: generating a message by appending to a message body an indication of a telephone number associated with the SIM and an indication of an © identification number, other than the telephone number, which is non-
[) removably associated with one selected from the group composed of the SIM and the wireless device; and sending the message between a gateway and an application device.
The method may include generating by the gateway the message and sending the message to the application device, the method oo therefore being applicable to wireless device originating messages. - ~ Instead, or in addition, the method may include generating by IE the application device the message and sending the message to the gateway, for onward forwarding to the wireless device, the method therefore being ~~ applicable to wireless device terminating messages.
The method may further include: : receiving the message from one of a gateway and an application ~ device,; and determining by the other of the application device and the gateway whether or not the telephone number and the identification number match.
Determining whether or not the telephone number and the identification number match may include interrogating a mobile telephone network (e.g. a GSM network). :
The SIM may be in the form of a SIM card, which may be a conventional SIM card.
The telephone number may be in the form of a MSISDN number.
The identification number may be non-removably - associated with the SIM. In such case, the identification number may be an IMSI (International Mobile Subscriber Identity) number. By way of information, the
) IMSI number is a number associated with the physical SIM and cannot be swapped. By sending the IMSI number along with the MSISDN number, the receiver can verify that the message is coming from a wireless device with a specific SIM Card. 5
Instead, or in addition, the identification number may be non- removably associated with the wireless device. In such case, the identification number may be an IMEI (International Mobile Equipment : Identity) number. - : EE | : ‘The application device may be in the form of a server, such as a web server.
For example, in the case of a WAP message, the message with the appended telephone and identification numbers may be in the form: http://mobile.acme-bank.com?msisdn=0815551234&imsi=655090700660817.
Thus, the IMSI number may be appended to the message.
The gateway may be in the form of one selected from the group composed of: a WAP Gateway in the case of WAP messages; : a Short Message Service Centre (SMSC) in the case of SMS messages; a Multimedia Message Service Centre (MMSC) in the case of MMS messages; and
USSD gateway in the case of USSD messages.
The method may further include encrypting by the gateway or the application device at least a portion of the message. In an example embodiment, only a portion of the message containing the telephone number and the identification number are encrypted. Thus, the gateway (e.g. a WAP gateway) may, for example, encrypt the message http://mobile.acme- ~ bank.com?msisdn=0815551234&imsi=655090700660817 into the form
® http://mobile.acme-bank.com?info= E43G6R8GDFfjh343 for onward sending to the application device.
The method may further include rendering the message time- varying or scrambling successive messages. Thus, the method may ensure that successive messages sent from or to a particular wireless device vary, even though MSISDN and IMSI numbers remain the same. For example, the ~~ method may include adding to the message a date and/or time stamp or a : sequential reference number prior to encryption. This may ensure that the iE message is only valid for a limited or specific time and that, even if the message is intercepted, it cannot be used again to spoof the gateway (or a associated application device) with invalid data. oo The method may include adding geographic location information -15 relating to the wireless device to the message, for example by appending a geographic identifier to the message body. The geographic identifier may be in the form of GPS co-ordinates, a location or indication of a network access point proximate the wireless device, or the like.
The method may further include, in the case of a WAP message, : redirecting the message to a secure application device. In the case in which the recipient is a web server (e.g. an HTTP server), the message may be redirected to an HTTPS server and all further messages/communications/packets may then be encrypted.
The encryption may be by means of an encryption key. The encryption key may be known to both the gateway and the application device (e.g. the web server), which can use the encryption key to decode the encrypted message (or message portion) to extract the MSISDN number and the IMSI number. The act of decryption (e.g. which will only work if the encryption keys match) may also enable the receiving side to verify that the
) . time and date stamp and/or sequential reference number is/are valid before the MSISDN and IMSI numbers are inspected.
The invention extends to a machine-readable medium embodying a set of instructions which, when executed by a machine, cause the machine to perform a method as defined above. : - The invention extends further to a gateway for communicating with a wireless device having a SIM. (Subscriber Identity Module), the gateway including a control module operable to: generate a message by appending to a message body an indication of a telephone number associated with the SIM and an indication of an I identification number, other than the telephone number, which is non- removably associated with one selected from the group composed of the SIM and the wireless device; and" : : send the message to an application device. ~ The gateway may be in the form of one selected from the group composed of: a WAP gateway; : : a SMSC; a MMSC; and a a USSD gateway.
The control module may further be operable to: receive a message from the application device, the message including an indication of a telephone number associated with the SIM and an indication of an identification number, other than the telephone number, which is non-removably associated with one selected from the group composed of the SIM and the wireless device; and determine whether or not the telephone number and the identification number match. oo o The invention extends further to an application device for communicating with a wireless device having a SIM (Subscriber Identity
Module), the application device including a control module operable to: generate a message by appending to a message body an indication of a telephone number associated with the SIM and an indication of an identification number, other than the telephone number, which is non- removably associated with one selected from the group composed of the SIM : and the wireless device; and : : BE sending the message to a gateway. ~The control module may further be operable to: receive a message from the gateway, the message including an indication of a telephone number associated with the SIM and an indication of an identification number, other than the telephone number, which is non- removably associated with one selected from the group composed of the SIM and the wireless device; and determine whether or not the telephone number and the identification number match. :
The invention extends still further to a system for communicating with a wireless device having a SIM (Subscriber Identity
Module), the system including: a gateway as defined above; and an application device as defined above.
The invention will now be further described, by way of example, with reference to the accompanying diagrammatic drawings.
® In the drawings:
Figure 1 shows a schematic view of a system for communicating with a wireless device, in accordance with the invention; :
Figure 2 shows a flow diagram of a method, in accordance with the invention, of communicating with a wireless device. : © Figure 3 shows a schematic view of a further embodiment of a system for communicating with a wireless device, in accordance with the invention; . Co and | . | .
Figure 4 shows a flow diagram of a further embodiment of a method, in accordance with the invention, of communicating with a wireless device.
Referring to Figure 1, reference numeral 100 generally indicates a system, in accordance with the invention, for communicating with a wireless device. :
The system 100 includes a wireless device in the form of a mobile telephone 102, for example being a cellular telephone. Although not illustrated, the mobile telephone 102 includes a SIM in the form of a conventional SIM card. The SIM card includes associated therewith a telephone number in the form of a MSISDN number. In conventional fashion, using the correct tools, the MSISDN number of a SIM card can be changed, a process which is sometimes referred to as a SIM-swap.
The SIM card also includes an identification number in the form of an IMSI number. The IMSI is not changeable or editable in the way that the MSISDN number is, and is thus non-removably associated with or linked to the SIM card.
[) The system 100 further includes a telecommunications network comprising, on the one hand, a mobile telephone network 104 (e.g. including a plurality of radio towers) and the Internet 108. The two networks 104, 108 are linked by means of an intermediate gateway in the form of a WAP (Wireless Application Protocol) gateway 106. The system 100 further includes an application device in the form of a web server 110. (For ease of illustration, the WAP gateway 106 and the web server 110 are shown - separately from the communications networks 104, 108, although it is to be : appreciated that they may form part of one or both of the networks 104, 108).
In conventional fashion, when the mobile telephone 102 tries to access the web server 110, it sends a request message via the mobile telephone network 104, the WAP gateway 106 and the Internet 108 to the oo web server 110. The request message for example has a message body having the form: http://mobile.acme-bank.com.
In accordance with the invention, the WAP gateway 106 is operable to append to the message body the IMSI number which is non- removably associated with the SIM card of the mobile telephone 102. To this end, the WAP gateway 106 includes thereon a control module (not illustrated) operable to direct the operation of the WAP gateway 106 in accordance with the invention. The control module may include a processor together with a machine-readable medium, for example in the form of a memory module, embodying a set of instructions which, when executed by the processor, directs the operation of the WAP gateway 106. The WAP gateway 106 retrieves the MSISDN and IMSI numbers from the mobile telephone network 104.
Optionally, the WAP gateway 106 also appends time and date : stamps to the message, thereby to ensure that the message is not static, i.e. it is time-varying. oo o A further option is that, when the WAP gateway 106 appends the MSISDN and IMSI numbers to the message, instead of merely forwarding the appended message to the web server 110, the WAP gateway 106, under the direction of the control module, encrypts the portion of the appended - message which includes the MSISDN and IMSI numbers and optionally the time and date stamps.
A further option is for the message to be redirected to a secure server (e.g. an HTTPS server) by the WAP gateway 106.
If desired, the web server 110 may confirm that the time and date of the message, as indicated by the time and date stamps, are correct. oo The mere act of decrypting the message successfully is also an indication that the message originates from a valid source as the encryption key is only known between the source and the destination.
The invention will now be described, in use, with reference also ‘to Figure 2. A method of communicating from a wireless device, in accordance with the invention, is generally illustrated by reference numeral 200 of Figure 2 (specifically illustrating wireless device originating messages).
A user wishes to access a web site (possibly to do Internet banking) from a web browser provided on his mobile telephone 102. The user enters the URL (Universal Resource Locator), for example: http://mobile.acme-bank.com.
The mobile telephone 102 sends the request message to the WAP gateway 106 via the mobile telephone network 104.
Accordingly, the WAP gateway 106 receives, at block 202, the request message. The WAP gateway 106 (under the direction of the control module) retrieves, at block 204, the MSISDN and IMSI numbers from the : mobile telephone network 104 and thereafter appends, at block 206, both the ~ MSISDN and IMSI numbers of the SIM card to the message body (the
) message now having the form: http://mobile.acme- bank.com?msisdn=0815551234&imsi=655090700660817).
Next, the WAP Gateway 106 appends, at block 207, time and date stamps to the message. The message may then have the form, for
E example, http://mobile.acme-bank.com?msisdn=0815551234&imsi= 655090700660817&time=12242977&date=13112008. ~. Optionally, the WAP gateway 106 encrypts, at block 208, the portion of the appended message which includes the numbers, the message now being in the form: ~ http://mobile.acme- bank.com?info=F43G6R8GDFfjh343. Differently stated, the MSISDN and
IMSI numbers (together with the time and date stamps, if present) are encrypted and appended to, or injected into, the message. The encrypted message (i.e. the message including the encrypted portion) can then be forwarded, at block 210, to the web server 110.
The web server 110 attempts, at block 220, to decrypt the message. Successful decryption indicates that the message originated from the desired originator (i.e. WAP gateway 106 in this example) because the encryption keys match. If decryption was unsuccessful, then the message is - rejected and an alarm logged, at block 224.
The time-varying indicator (i.e. the time and date stamps) is inspected, at block 222. If the indicator is not acceptable, the message is rejected and an alarm is logged, at block 224.
Only if the decryption was successful and the time and date stamps are acceptable, does the Web server 110 inspect, at block 214, the
MSISDN and IMSI number pair to determine whether or not they match. If : they do not, an alarm is locked, at block 224. Alternatively, if they do, the web server 110 may redirect the message to a secure web server.
o Referring now to Figures 3 and 4, a further embodiment of the - invention is illustrated. The same numerals in these Figures refer to the same or similar parts. : - Figure 3 illustrates a system 300 for sending a SMS message to a mobile telephone 102, while Figure 4 illustrates a corresponding method 400 (specifically illustrating wireless device terminating messages). The system 300 and method 400 are also applicable to USSD and MMS messages and the like.
An application device 310 retrieves, at block 402, previously stored the MSISDN and IMSI numbers associated with the mobile telephone 102 and appends, at block 206, the numbers to the message body.
Optionally, the application device 310 appends, at block 207, also date and time stamps and encrypts, at block 208, a portion of the message.
The application device 310 sends, at block 410, the encrypted . message to the gateway in the form of an SMS gateway 306. The SMS gateway 306 decrypts, at block 220, the message. If the decryption is - successful, the SMS gateway 306 inspects the time and date stamps and, if ‘they are acceptable, interrogates, at block 212, the mobile telephone network 104 to determine whether or not the MSISDN and IMSI numbers match. If so, the SMS gateway 306 forwards the message, or at least a portion of the message body, via the mobile telephone network 104 to the mobile telephone 102.
If the decryption was unsuccessful, if the time and date stamps are not acceptable, or if the MSISDN and IMSI numbers do not match, the
SMS gateway 306 logs, at block 224, an alarm. Optionally, the process of logging ‘an alarm may include generating and sending an error message to the application device 310 and/or to the mobile telephone 102.
. . 0 | The same (or at least a similar) method 200, 400 can be used for communications from the application device to the gateway and from the gateway to the application device. When the communication is from the
S gateway to the application device, then the application device uses previously stored IMSI/MSISDN pairs to decide whether the combination is valid. When the communication is from the application device to the gateway, then the gateway retrieves the IMSI value from the network to do the validation. :
The Inventor believes that the invention as exemplified has a number of advantages. First, the inclusion of the IMSI number in the message prevents or at least inhibits SIM swapping, as explained above, because, while the telephone number of the SIM card can be changed, the
IMSI number cannot. The invention as exemplified allows web sites to authenticate a wireless device with a high level of security in order to do financial transactions.
Secondly, the use of encryption prevents or at least inhibits interception or spoofing of the message. An extra security measure is realised by redirecting the message to a secure server (in the case of WAP messages). Co
In addition, the time and date stamps provide a time-varying (encrypted) message. Thus, even if a previous message has been snooped, it will no longer be useful as a subsequent encrypted message or packet will include newer time and date stamps and the newer message will therefore have changed.
In a WAP environment, a more secure wireless browsing experience is provided with out complicating matters for the user. The invention also allows the application device to identify and authenticate an
SMS or USSD message as coming from a valid wireless device user and also
® allows a gateway to validate that messages are coming from a valid : application device and that it is intended for a valid wireless device of which : the MSISDN/IMSI pair retrieved from the network matches the pair intended by the application device.
Claims (27)
1. A method of communicating with a wireless device having a SIM . (Subscriber Identity Module), the method including: generating a message by appending to a message body an indication of a telephone number associated with the SIM and an indication of an identification number, other than the telephone number, which is non- removably associated with one selected from the group composed of the SIM ~~ and the wireless device; and nL | sending the message between a gateway and an application device.
2. A method as claimed in claim 1, which includes generating by the gateway the message and sending the message to the application device, the method therefore being applicable to wireless device originating messages. :
3. ‘A method as claimed in claim 1 or claim 2, which includes generating by the application device the message and sending the message to the gateway, for onward forwarding to the wireless device, the method therefore being applicable to wireless device terminating messages.
4, A method as claimed in any of the preceding claims, which further includes: . receiving the message from one of a gateway and an application device,; and determining by the other of the application device and the gateway whether or not the telephone number and the identification number match.
5. A method as claimed in claim 4, in which determining whether or not the telephone number and the identification number match includes interrogating a mobile telephone network.
® 6. A method as claimed in any of the preceding claims, in which the identification number is non-removably associated with the SIM.
7. A method as claimed in claim 6, in which the identification number is an IMSI (International Mobile Subscriber Identity) number.
8. A method as claimed in any of the preceding claims, in which oo the identification number is non-removably associated with the wireless iE device. : iE
9. A method as claimed in claim 8, in which the identification number is an IMEI (International Mobile Equipment Identity) number.
10. A method as claimed in any of the preceding claims, in which the application device is in the form of a server.
11. A method as claimed in any of the preceding claims, in which the gateway is in the form of one selected from the group composed of: a WAP Gateway in the case of WAP messages; a Short Message Service Centre (SMSC) in the case of SMS messages; a Multimedia Message Service Centre (MMSC) in the case of MMS messages; and oo oo USSD gateway in the case of USSD messages.
12. A method as claimed in any of the preceding claims, which further includes encrypting by the gateway or the application device at least a portion of the message.
13. A method as claimed in claim 12, in which the encryption is by © means of an encryption key which is known to both the gateway and the application device.
"Y 14. A method as claimed in any of the preceding claims, which further includes rendering the message time-varying or scrambling successive : messages. : E
15. A method as claimed in any of the preceding claims, in which includes, redirecting the message to a secure application device.
16. . A method as claimed in any of the preceding claims, which ~ includes adding geographic location information relating to the wireless device to the message. oo
17. A computer-readable medium embodying a set of instructions which, when executed by a machine, causes the machine to perform a method as claimed in any of the preceding claims. :
18. A gateway for communicating with a wireless device having a SIM (Subscriber Identity Module), the gateway including a control module operable to: generate a message by appending to. a message body an indication of . 20 a telephone number associated with .the SIM and an indication of an identification number, other than the telephone number, which is non- removably associated with one selected from the group composed of the SIM and the wireless device; and - send the message to an application device.
19, A gateway as claimed in claim 18, which is in the form of one selected from the group composed of: a WAP gateway; a SMSC; a MMSC; and a USSD gateway. .
PY
20. A gateway as claimed in claim 18 or claim 19, in which the control module is further operable to: receive a message from the application device, the message including an indication of a telephone number associated with the SIM and an indication of an identification number, other than the telephone number, which is non-removably associated with one selected from the group composed of the SIM and the wireless device; and determine whether or not the telephone number and the identification : number match. IE IE .
21. An application device for communicating with a wireless device a having a SIM (Subscriber Identity Module), the application device including a control module operable to: - generate a message by appending to a message body an indication of a telephone number associated with the SIM and an indication of an identification | number, other than the telephone number, which is non- removably associated with one selected from the group composed of the SIM and the wireless device; and sending the message to a gateway. :
22. An application device as claimed in claim 21, in which the - control module is further operable to: : receive a message from the gateway, the message including an indication of a telephone number associated with the SIM and an indication of an identification number, other than the telephone number, which is non- removably associated with one selected from the group composed of the SIM and the wireless device; and determine whether or not the telephone number and the identification number match. . 3p
23. A system for communicating with a wireless device having a SIM (Subscriber Identity Module), the system including: | oo
® a gateway as claimed in any of claims 18 to 20 inclusive; and oo an application device as claimed in claim 21 or claim 22.
24. A method as claimed in claim 1, substantially as herein described with reference to and as illustrated in any of the drawings.
25. A gateway as claimed in claim 18, substantially as herein described with reference to and as illustrated in any of the drawings.
26. An application device as claimed in claim 21, substantially as : herein described with reference to and as illustrated in any of the drawings.
27. A system as claimed in claim 23, substantially as herein described with reference to and as illustrated in any of the drawings. DATED THIS 18™ DAY OF SEPTEMBER 2009 — _ - ADAMS & ADAMS : APPLICANT'S PATENT ATTORNEYS :
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
ZA200906538A ZA200906538B (en) | 2008-09-19 | 2009-09-18 | A method of communicating from a wireless device |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
ZA200808081 | 2008-09-19 | ||
ZA200906538A ZA200906538B (en) | 2008-09-19 | 2009-09-18 | A method of communicating from a wireless device |
Publications (1)
Publication Number | Publication Date |
---|---|
ZA200906538B true ZA200906538B (en) | 2010-05-26 |
Family
ID=41508630
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
ZA200906538A ZA200906538B (en) | 2008-09-19 | 2009-09-18 | A method of communicating from a wireless device |
Country Status (2)
Country | Link |
---|---|
AP (1) | AP3366A (en) |
ZA (1) | ZA200906538B (en) |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2021083503A1 (en) * | 2019-10-30 | 2021-05-06 | Telefonaktiebolaget Lm Ericsson (Publ) | Sim swap fraud detection |
EP3993471A1 (en) * | 2020-10-30 | 2022-05-04 | EXFO Solutions SAS | Sim swap scam protection via passive monitoring |
Family Cites Families (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6944760B2 (en) * | 2001-05-24 | 2005-09-13 | Openwave Systems Inc. | Method and apparatus for protecting identities of mobile devices on a wireless network |
ATE368883T1 (en) * | 2003-12-15 | 2007-08-15 | Mobile Integrated Solutions Lt | METHOD FOR RESTRICTING THE REDISTRIBUTION OF LICENSED FILES IN A DIGITAL MOBILE SYSTEM |
SE0402931L (en) * | 2004-08-31 | 2006-03-15 | Smarttrust Ab | Procedure and system for checking device identity |
DE602004005214T2 (en) * | 2004-11-04 | 2007-11-08 | Research In Motion Ltd., Waterloo | System and method for wirelessly setting up a mobile communication device |
EP1708525A1 (en) * | 2005-03-31 | 2006-10-04 | Research In Motion Limited | Roaming Profiles for Wireless Devices |
EP1901192A1 (en) * | 2006-09-14 | 2008-03-19 | British Telecommunications Public Limited Company | Mobile application registration |
-
2009
- 2009-09-16 AP AP2009004973A patent/AP3366A/en active
- 2009-09-18 ZA ZA200906538A patent/ZA200906538B/en unknown
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2021083503A1 (en) * | 2019-10-30 | 2021-05-06 | Telefonaktiebolaget Lm Ericsson (Publ) | Sim swap fraud detection |
EP3993471A1 (en) * | 2020-10-30 | 2022-05-04 | EXFO Solutions SAS | Sim swap scam protection via passive monitoring |
Also Published As
Publication number | Publication date |
---|---|
AP3366A (en) | 2015-07-31 |
AP2009004973A0 (en) | 2009-10-31 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US9047444B2 (en) | Mobile application registration | |
US8423758B2 (en) | Method and apparatus for packet source validation architecture system for enhanced internet security | |
US7296156B2 (en) | System and method for SMS authentication | |
CN102271035B (en) | Password transmission method and device | |
US20090257593A1 (en) | Method and apparatus for secure messaging | |
Nyamtiga et al. | Enhanced security model for mobile banking systems in Tanzania | |
US10791106B2 (en) | Digital credential with embedded authentication instructions | |
Nyamtiga et al. | Security Perspectives for USSD versus SMS in conducting mobile transactions: A case study of Tanzania | |
US20130103944A1 (en) | Hypertext Link Verification In Encrypted E-Mail For Mobile Devices | |
CN101742508A (en) | System and method for transmitting files between WAPI terminal and application server | |
Saxena et al. | Enhancing security system of short message service for m-commerce in GSM | |
Rongyu et al. | A PK-SIM card based end-to-end security framework for SMS | |
KR102567737B1 (en) | Method providing secure message service and apparatus therefor | |
CN106127441A (en) | A kind of network system preventing personal information from leaking and implementation method | |
Castiglione et al. | Do you trust your phone? | |
CN109587683B (en) | Method and system for preventing short message from being monitored, application program and terminal information database | |
Puzankov | Stealthy SS7 attacks | |
ZA200906538B (en) | A method of communicating from a wireless device | |
EP2587743A1 (en) | Hypertext link verification in encrypted e-mail for mobile devices | |
Chikomo et al. | Security of mobile banking | |
US9088595B2 (en) | Method and apparatus for packet source validation architecture system for enhanced internet security | |
US9137256B2 (en) | Method and apparatus for packet source validation architechure system for enhanced internet security | |
US20210153011A1 (en) | System and method for securing electronic message | |
Sharma et al. | Location based services in M-commerce: customer trust and transaction security issues | |
US20040186990A1 (en) | Method of e-mail encryption |