Analyzing security of korean USIM-based PKI certificate service

Cited 1 time in webofscience Cited 0 time in scopus
  • Hit : 16
  • Download : 0
This paper analyzes security of Korean USIM-based PKI certificate service. Korean PKI certificate consists of public key and password encrypted private key on disk. Due to insufficient security provided by single password, Korean mobile operators introduced USIM-based PKI system.We found several vulnerabilities inside the system, including private key’s RSA prime number leakage during certificate installation. We also suggest possible improvments on designing secure authentication system (Preliminary work of this paper was published previously [1]. This work was responsibly disclosed to the vendor and associated government organizations.).
Publisher
Springer Verlag
Issue Date
2014-08
Language
English
Citation

15th International Workshop on Information Security Applications, WISA 2014, pp.95 - 106

ISSN
0302-9743
DOI
10.1007/978-3-319-15087-1_8
URI
http://hdl.handle.net/10203/280631
Appears in Collection
EE-Conference Papers(학술회의논문)
Files in This Item
There are no files associated with this item.
This item is cited by other documents in WoS
⊙ Detail Information in WoSⓡ Click to see webofscience_button
⊙ Cited 1 items in WoS Click to see citing articles in records_button

qr_code

  • mendeley

    citeulike


rss_1.0 rss_2.0 atom_1.0