Mahidol University Logo
Faculty of ICT, Mahidol University
 

Admissions

Printable Version

 

SESSION AUTHENTICATION FOR WEB SERVICES IN MOBILE COMPUTING

 

TITLE SESSION AUTHENTICATION FOR WEB SERVICES IN MOBILE COMPUTING.
AUTHOR TEERAPONG WATANAPITAYAKUL
DEGREE MASTER OF SCIENCE PROGRAMME IN COMPUTER SCIENCE
FACULTY FACULTY OF SCIENCE
ADVISOR DAMRAS WONGSAWANG
CO-ADVISOR CHARNYOTE PLUEMPITIWIRIYAWAJ
 
ABSTRACT
Mobile e-commerce is currently an area of rapid growth and being facilitated by the proliferation of application-enabled mobile devices. This will bring us new opportunities to do business anywhere and at anytime. Web Services are emerging to cope with the paradigm shift in Web computing and facilitate business to do ecommerce efficiently. Web Services allow companies to externalize their business processes that can be utilized by other business entities or combined to form a business flow. The integration of mobile computing and Web Services will explode in the new environment of security and interoperability. Therefore, the authentication of participants joining in a particular business flow needs to be proposed as an additional security on a session by session level. When the service requests come from mobile users that have certain inherent limitations on their mobile device capability, the appropriate architecture and framework needs to be devised. This research proposed a new architecture and framework of session authentication for Web Services in mobile computing (SAWIM). SAWIM is a multi-party session oriented protocol that enables authenticating service instance participating in a particular session. The proposed model includes session management protocols and session authentication protocols that are appropriate to the mobile computing environment. SAWIM framework provides security services on both the service level and the session level by using SSL protocol and the developed session authentication protocols respectively. The security services include confidentiality, integrity, authentication, and non-repudiation. The SAWIM system is designed for application in the real business environment. The prototype of SAWIM was implemented and its results proved to be successful in providing session authentication for Web Services in mobile computing. This thesis presents a detailed structure and analysis of SAWIM. The experimental results are also analyzed, discussed and concluded. Finally, future works for further development are suggested.
KEYWORD WEB SERVICES / MOBILE SEURITY / KSOAP / J2ME / AUTHENTICATION PROTOCOL / MOBILE COMPUTING

 

Go to Top

 

ICT Building, Mahidol University, 999 Phuttamonthon 4 Road, Salaya, Nakhonpathom 73170 Tel. +66 02 441-0909 Fax. +66 02 849-6099
Mahidol University Computing Center, The Faculty of ICT, Mahidol University , Rama 6 Road, Rajathevi, Bangkok 10400 Tel. +66 02 354-4333 Fax. +66 02 354-7333