Inlämning av Examensarbete / Submission of Thesis

Viktor Varland; Mikael Karlsson , pp. 48. TEK/avd. för interaktion och systemdesign, 2008.

The work

Författare / Author: Viktor Varland, Mikael Karlsson
mikb03@student.bth.se
Titel / Title: Utvärdering av Near Field Communication och Certified Wireless USB: Säkerhet vid utveckling av applikationer
Abstrakt Abstract:

Today’s society is one where technological advances are made daily, which increases the need to stop and assess the risks against users’ integrity when integrating new technology in contemporary systems all the greater. We have taken two technologies, Near Field Communication and Certified Wireless USB, whose envisioned area of use is to be integrated into mobile phones, and evaluated what security threats are revealed for the respective technologies. The threats against security have been identified through research of the standards and existing reports for each technology. Practical experiments have not been conducted on account of us not having access to any equipment to run such trials. The result of our studies is indecisive; pitched against Certified Wireless USB’s rigorous and robust security measures, implemented on hardware level, Near Field Communication’s lack of any such security implementations shines all the brighter. The real difference can be traced to the philosophy behind the technologies – Certified Wireless USB can be perceived as a complete product, while Near Field Communication bears more resemblance to a tool. In order to safely use a tool, knowledge about its use is required, thus in order to securely use Near Field Communication we propose two solutions; secure channel and secure identification, which developers can implement on a software level. Furthermore, we suggest that the implementation of security should be based on an incremental model where the security measures are scaled up in direct correlation with the sensitivity of the information managed. Our results imply that Near Field Communication does not have the inherent security that it should have in order to be safely and securely integrated into any system as it is. Therefore, measures have to be taken in order to implement this technology securely on a software level. For Certified Wireless USB it implies that nothing further is needed to achieve a secure implementation as the only weakness it displays is against Side Channel attacks, which are so complicated (and require direct access to the system) that we have deemed them unlikely to be attempted.

Ämnesord / Subject: Datavetenskap - Computer Science\Networks and Communications
Datavetenskap - Computer Science\General
Nyckelord / Keywords: Certified Wireless USB, Near Field Communication, WUSB, NFC, Security, Java ME, development

Publication info

Dokument id / Document id:
Program:/ Programme Data- och systemvetenskap
Registreringsdatum / Date of registration: 06/04/2008
Uppsatstyp / Type of thesis: C-Uppsats

Context

Handledare / Supervisor: Bo-Krister Vesterlund
bo-krister.vesterlund@bth.se
Examinator / Examiner: Guohua Bai
Organisation / Organisation: Blekinge Institute of Technology
Institution / School: TEK/avd. för interaktion och systemdesign
S-372 25 Ronneby
+46 455 38 50 00
I samarbete med / In co-operation with: Cybercom Group

Files & Access

Bifogad uppsats fil(er) / Files attached: kandarb_mikb03_viva05.pdf (1176 kB, öppnas i nytt fönster)