Content authentication in enterprises for mobile devices

Author

Kappes, Martin ; Krishnan, P.

Author_Institution

Avaya Labs Res., Basking Ridge, NJ, USA

fYear

2004

fDate

26-27 Apr 2004

Firstpage

127

Lastpage

129

Abstract

Most recent work in enterprise security has targeted the area of securing systems and networks from external hackers. We present new security challenges that arise in such networks from a mobile workforce. We argue that future threats to the network will likely come from inside the network; specifically, from legitimate devices and users that roam and reconnect to the enterprise. Fundamentally, most current and past work tackles the issue of authenticating a user or a machine (its hardware) before allowing access to enterprise resources. However, we expect that the critical issue going forward will be to authenticate the content of a device and ensure that the content is in-line with the enterprise´s security polices. In this paper, we present a framework for authenticating the contents of devices connecting to an enterprise and also propose a new token-based scheme for indirect content authentication.

Keywords

business communication; computer crime; mobile computing; security of data; telecommunication security; token networks; device mobility; enterprise security; enterprise security polices; external hackers; indirect content authentication; mobile device enterprises; network security; token-based scheme; Authentication; Communication system security; Computer hacking; Hardware; Information security; Intelligent networks; Joining processes; Protection; USA Councils; Virtual private networks;

fLanguage

English

Publisher

ieee

Conference_Titel

Advances in Wired and Wireless Communication, 2004 IEEE/Sarnoff Symposium on

Print_ISBN

0-7803-8219-6

Type

conf

DOI

10.1109/SARNOF.2004.1302857

Filename

1302857