The Research And Implementation Of Secure Value-added Services System Based On Symbian OS

With the rapid popularization of mobile phones, the traditional voice services become gradually saturated, while mobile value-added services suited to market demand have huge developing potential and broad prospects. Some applications that require high user economic security level come forth, such as mobile payments, mobile e-commerce. Meanwhile this kind of applications has more stringent requirements for the security framework of value-added services.As the most popular smart phone operating system around the world, Symbian OS has a huge number of application developers and users. There are lots of value-added services based on Symbian OS. Although Symbian OS 9.x version introduces a new capability-based system security model which strengthens the system integrity and the protection of user secret data, it can not protect the value-added services'security effectively based on current system. What is more, Symbian OS is updated continually, so it requires the value-added services applications could be quickly transplanted to reduce the costs of development and maintenance.This paper makes in-depth study of the security of Symbian OS, and the widely-used GSM network, and the public key encryption algorithm and symmetric key encryption algorithm. As for the issues of the mobile value-added services'security based on Symbian, it gives an encryption solution to sign and encrypt short message by using DSA/RSA and encrypt data on GPRS channel by using AES. This solution can ensure the security of identity authentication and data transmission in the mobile value-added services system. Furthermore, as for Symbian platform migration issues, the author designs and implements a three-layer architecture model, which makes rapid migration between different Symbian platforms become possible. In the lab of broadband network center in Beijing University of Posts and Telecommunications, the author completed the implementation and testing of the secure value-added services system. The system has been put into use and works well.