摘要:Over the recent period, transactions conducted on mobile network are gaining popularity due to the convenience and portability of mobile devices. The applications running on the mobile devices may require access to different servers just like in wired environment. Security over the mobile platform is more critical because wireless connections accessible to mobile devices are more vulnerable to attacks because of the openness of the wireless access points. It is easier for an opponent to gain access to the wireless network and perform fraudulent activities such as eavesdropping and impersonation. Moreover, security is more difficult to implement on a mobile platform because of the resource limitation of mobile devices. In this paper the concept of mobile gateway, which serves as a fixed agent for the mobile clients, is used. With the mobile gateway, all mobile clients and applications are connected to different servers through the mobile gateway server. The mobile client is authenticated to the mobile gateway through simple authentication mechanism such as protected password login and the mobile gateway in turn executes complex security transactions with Kerberos server on behalf of the mobile clients.
