Mobile Web Security Bootstrap on Ericsson Labs

•

2 likes•796 views

The Mobile Web Security Bootstrap (MWSB) API can be used to establish shared secret keys between an application server and a mobile web client. The key can be used to secure mobile applications that, for instance, require authentication, data confidentiality and integrity, and single sign on.

Technology

Mobile Web
Security
Bootstrap
A labs.ericsson.com API
http://labs.ericsson.com/apis/mobile-web-security-bootstrap/

ericsson labs APIs
Maps & positioning communication security

Mobile Mobile SMS Send & Mobile Group Voice Mobile Web Security Oauth2
Location Maps Receive Push Mixer Bootstrap CAPTCHA Framework

Web Async Identity Management Key Management
Maps Voice Framework Service

Web technologies NFC & sensors User & network information

Web Web Background Mobile Sensor Mobile Network
Tag Tool
Connectivity EventSource Service
Actuator Link Identification Probe

Web Device Mobile Network
Distributed Web Real-Time
Real- Sensor Networking
Connectivity Shared Memory Communication Application Platform Look-up
Look-

Machine learning Media and graphics

Face
Cluster Text-to-Speech
Text- to-
Detector
Constructor

© Ericsson AB 2010 | Page 2

Mobile Web Security
Bootstrap
› The SIM is commonly used for getting cellular access,
mobile connectivity and access to some mobile services

› The SIM proven security features can also be used for
securing any mobile web applications

› This service provides an API for establishing a secret key
between mobile web clients and web applications

© Ericsson AB 2010 | Page 3

Why Mobile Web Security
Bootstrap?

› Security – As secure as SIM

› Standard – Based on industry standard

› Acceptance – Many standardized applications

› Convenience – Transparent to users

› Extensibility – Any applications can exploit the SIM

© Ericsson AB 2010 | Page 4

Main Features
› Based on 3GPP industry standard
Generic Bootstrapping Architecture

› Client and server Web/Java APIs available and
documented with examples

› HTTP interfaces

› Soft client available to allow focusing on the development
of the network side of the web application

© Ericsson AB 2010 | Page 5

Overview
Mobile Web
› Ub interface – Mobile client uses Network
Application Server
Network
Application
API to bootstrap a master secret Application
key
Ua Zn
› Ua interface – Mobile Web Client
uses API to derive application- * HTTP
specific master key

Mobile
› Zn interface – Mobile Web Bootstrap
Web Client
Application Server uses API to Ub Server
obtain the corresponding Bootstrap
application-specific master key Client HTTP

At the end of the API usage Subscriber
transactions the client and server Database
share an application-specific
secret-key Mobile Web Client MWSB
Mobile Web
Security Bootstrap

© Ericsson AB 2010 | Page 6

Java Client API
› Soft Client API provided for focusing on server application

› Example showing how to establish a shared key

// Create soft client with user identity and permanent key
GbaClient softclient = new GbaClient(myID, myKey);

// Bootstrap client with master key. btid is the handler.
String btid = softclient.bootstrap();

// Derive application-specific key to be shared with app server
byte[] appKey = softclient.getKsNaf(app_Fqdn);

// Use the app key for HTTP Digest Authentication
boolean authResult = runUaHttpDigest(app_URL, btid, appKey);

© Ericsson AB 2010 | Page 7

Java Server API
› API towards mobile client and API towards MWSB
› Servlet example showing how to establish a shared key

// Applicatin Servlet doGet()

// Create application context with Labs authorization API key
GbaNaf app = new GbaNaf(myFqdn, myApiKey)

// Parse GET authorization headers & fetch btid (key Handler)
Authorization authz = Authorization.parse(authorizationHeader);
String btid = authz.getUsername();

// Derive the application-specific key to be shared with client
appKey = app.getKsNaf(btid);

// Use the shared key to authenticate the mobile client
Digest.verify(authorization, appKey)

© Ericsson AB 2010 | Page 8

Possible applications

Identity Management

Authentication Single Sign-On

Integrity Confidentiality

Key Management

© Ericsson AB 2010 | Page 9

This document discusses technical issues and the proposed Webinos architecture for addressing them. It identifies needs such as open governance to avoid vendor lock-in, standardizing security and offline functionality, and enabling devices and applications to communicate across platforms. The Webinos architecture proposes personal agents (PZH and PZP) to manage user identity, policy, context and routing across devices. It uses JSON-RPC and a lightweight protocol to allow even resource-constrained "things" to connect to the internet securely and interact. The goal is to give users control over their data and allow innovative sharing of data and applications between devices.

New Trends in Web Security

Oliver Pfaff

My 2012 homerun in IT-security: For many years nothing happened in Web security - with respect to security-enabling the HTTP stack. This is not true anymore: game-changing innovations do emerge right now. Their impact will - likely - be pervasive. It is important to understand what exactly is being launched, why this is happening and which forces are driving this. This presentation establishes this context and elaborates on the implications.

Layer 7 Mobile Security Workshop with CA Technologies and Forrester Research ...

CA API Management

The bring-your-own-device (BYOD) trend is in full swing as the growth of mobile devices within the enterprise explodes. How do you enable secure data access for mobile applications? How do you deal with user authentication? How do you allow broader adoption of enterprise applications on user owned devices? CA and Layer 7 outline solutions to these issues, explore different approaches to mobile security, and use case studies to illustrate how others have solved these problems. This workshop was all about: • The latest mobile trends and opportunities • Emerging mobile risks and how these can be addressed • A reference architecture for secure enterprise mobility

Beyond MDM: 5 Things You Must do to Secure Mobile Devices in the Enterprise

CA API Management

Take a fresh approach to IT security and management, designed specifically for mobile Overview Twenty years ago, laptops revolutionized how the enterprise conducted business. But with the laptop came a host of new security and manageability challenges that we are arguably still trying to work out. Now, mobile computing promises to be exponentially more disruptive. It is a mistake to think you can apply yesterday’s laptop thinking to today’s mobile devices and still maintain a secure infrastructure. Mobile devices are radically different from laptops and they are evolving at a completely different pace, so they demand a fresh approach.

Patterns and Practices in Mobile SSO

WSO2

Within the past decade, internet and mobile phone usage increased dramatically. However, mobile security practices have not caught up, as most mobile users do not password protect their devices and multifactor authentication is rarely used for mobile apps. This leaves devices and accounts vulnerable to theft and hacking. To address these issues, the document discusses how single sign-on (SSO) can increase security and productivity by streamlining login across native mobile apps and browsers. It also outlines some challenges with current SSO methods and standards being developed for improved mobile SSO, such as work by the OpenID Foundation.

Mobile Single-Sign On: Extending SSO Out to the Client - Layer 7's CTO Scott ...

CA API Management

webinos - Architecture and Strategy

webinos project

TrustBearer - Virginia Security Summit - Web Authentication Strategies - Apri...

TrustBearer

The document describes Ericsson's Web Device Connectivity API, which enables websites and applications to connect to a user's home devices. The API consists of a JavaScript interface for websites/apps and a Java program running on the user's PC that discovers UPnP/DLNA devices. It provides an aggregated view of a user's devices accessible to websites/apps to enrich user experiences, such as allowing content to be viewed on devices outside a browser like a TV.

Jan20 mb sintro [compatibility mode]

moirajacobs

This document summarizes AT&T's mobile barcode and mobile marketing services. It describes how AT&T allows companies to create, publish, and manage barcode campaigns to drive traffic to mobile websites from print, TV, and other media. It also explains how AT&T provides tools to measure campaign results and insights into user demographics and behaviors. The services aim to help companies better connect with customers using their mobile devices.

Simplifying Enterprise Mobility - Powering Mobile Apps from The Cloud

Joe Drumgoole

The FeedHenry Platform simplifies enterprise mobility by powering mobile apps from the cloud. It provides a cross-platform solution for building, deploying, and managing mobile apps. The FeedHenry Mobile Application Platform delivers an end-to-end solution as a service and allows enterprises to build apps for all major smartphones and tablets. It includes services for development, deployment, backend integration, access control, and analytics.

Mobile SSO: Give App Users a Break from Typing Passwords

CA API Management

Why do we use mobile devices? Simple – they’re easy to use and very convenient. So, why do we make it so hard for mobile consumers to do business with us by confronting them with multiple login screens and passwords? While security is essential to protecting mobile usage, convenience cannot be sacrificed. With the release of the CA Layer 7 Mobile Access Gateway 2.0 and its Mobile SDK, organizations can now achieve faster mobile consumer engagement, end-to-end mobile app security and convenient mobile Single Sign-On (SSO). In this webinar, Tyson Whitten and Leif Bildoy of CA Technologies explore the why and how of mobile SSO and the Mobile Access Gateway. You will learn • The mobile app choices you need to make to enable better consumer engagement • The connectivity and security implications of these choices • The mobile security solutions that balance security and convenience

Mobile Native OAuth Decision Framework

Paul Madsen

Signify Passcode On Demand

pjpallen

Signify provides a tokenless two-factor authentication service called Passcode OnDemand that turns a user's mobile phone into a secure authentication device. When users need to login, a one-time passcode is texted to their phone which they enter along with their PIN. This provides a reliable and secure authentication alternative to passwords. As a fully hosted service, Signify handles the infrastructure and management so customers do not need any new hardware, software, or training.

Company Profile

Denny Charter

PT. Global Premier Solusindo is an Indonesian information technology company founded in 2010. It provides web development, GPS tracking, application development, and mobile applications. The company has a presence in Indonesia, Singapore, Malaysia, and Australia, and is led by an experienced management team. It offers solutions like web design, e-commerce, content management, and GPS tracking for fleet management.

Context Automation (with video demos)

Phil Windley

The document discusses context automation and how it connects information between websites for users. Context automation is enabled by trends like cloud computing, extensible browsers, and internet identities. It can augment websites with additional context through approaches like JavaScript, media toolbars, search tools, and context platforms. Key technologies that help enable context automation include Kynetx, which uses a rule language called KRL, and information cards, which can securely store user identity and data. Context automation provides benefits to users like a more individualized and structured browsing experience with improved privacy and security.

Salesforce touch

Siva Vittala

The document discusses Salesforce Touch and provides an overview of the different development paths available - Native, HTML5, and Hybrid. It outlines the key components, features, performance, tools, and offline storage options for each path. Native apps offer the best performance and access to device features but require developing in multiple platforms. HTML5 is cross-platform but has limited offline capabilities. Hybrid combines a native container with HTML5 for better performance and device access than HTML5 alone.

Building and Managing Cloud Applications and Infrastructure

Darren Cunningham

While service-based infrastructure can improve TCO and streamline IT management, it also presents some challenges that need to be met head-on. How do you ensure your data is secure in transit and available when you need it? How do you manage and communicate with your infrastructure? How do you enable service quality metrics and disaster recovery? And, how do you integrate data from legacy systems with data from web-based systems? Join AT&T and Informatica as they share their experience in building and managing cloud applications and infrastructure.

End to end content managed online mobile banking

bkraft

The document discusses an end-to-end online and mobile banking platform that uses an embedded content management system (Magnolia) to provide a consistent experience across channels. It allows content to be managed from a single console and delivered via online banking websites, mobile websites, and native mobile apps. The technical stack uses open source tools like Spring, Wicket, and PhoneGap along with Magnolia to retrieve and display managed content. A demo of a native iPad app integrated with Magnolia for content management is also presented.

API Management and Mobile App Enablement

CA API Management

Ipad Application Development Casestudy

dheerajkureel

The document discusses Gateway TechnoLabs' capabilities in developing applications for the iPad. It provides examples of four different iPad applications they have developed: 1) An application for attorneys and legal firms to search legal documents, 2) A restaurant point-of-sale system, 3) An application for broadcasting business information, and 4) A digital version of a print magazine optimized for the iPad. It also outlines Gateway's experience developing for various mobile platforms and technologies.

BehavioSec Web Summit START slideshare

Neil Costigan

This document discusses behavioral biometrics and how it can be used to balance security and usability. It describes how behavioral biometrics works by analyzing a user's interactions such as touch pressure and angle when using a device. This data is then used to continuously authenticate users. The document outlines two main solutions - one for desktop that monitors mouse and keyboard input, and one for web and mobile that adds small code to analyze interactions without requiring a client install. Potential applications discussed include use in enterprises, for social media platforms to prevent account hijacking, and for mobile devices to add biometric locks without extra hardware. Demos of behavioral biometric solutions for web and mobile are also referenced.

Datapower it sec2019

Goran Angelov

The document discusses the challenges of securing modern web, mobile, and API applications and infrastructure. It proposes using an IBM DataPower Gateway to consolidate infrastructure, simplify security management, and optimize application delivery. The DataPower Gateway acts as a centralized security and traffic control point for all services and channels, supporting physical, virtual and cloud deployments. It provides features for authentication, authorization, threat protection, traffic optimization, and integration of mobile, API, web and backend systems.

Successful Enterprise Single Sign-on: Addressing Deployment Challenges

Hitachi ID Systems, Inc.

Intranets and Extranets

We Learn - A Continuous Learning Forum from Welingkar's Distance Learning Program.

Corporate provide access to intranet and internet with specific objectives. Intranet access is usually granted so that employees can avail telephone directory, human resource policies, support information and knowledge base. Extranet access is given to distribute information, improve existing information delivery techniques and support major strategic initiatives. Using employee intranets arrives with its own set of benefits. It enhances employee productivity, saves cost and improves customer management improvements. However, companies can truly reap the benefits by syndication although it comes with certain caveats: syndication can be done in the following instances.

Ericsson Application Awards 2011

Ericsson Labs

Stream analytics for churn prediction from Ericsson Research

Ericsson Labs

This document discusses applying stream mining techniques to predict customer churn. Stream mining can continuously update prediction rules to quickly react to changing churn patterns and reasons over time. The proof of concept uses a data stream of simulated customer events to train an Adaptive Hoeffding Tree algorithm and predict churn. It tracks churn rates, prediction accuracy, and the business impact of retaining predicted churners. Stream mining allows autonomous adaptation to concept drift, unlike traditional techniques requiring human intervention and slower adaptation.

Web Connectivity on Ericsson Labs

Ericsson Labs

Ericsson Labs at SotM 2010

Ericsson Labs

This document summarizes location and mapping APIs available from Ericsson Labs for open innovation. It describes APIs for mobile and web maps powered by OpenStreetMap data, as well as APIs for mobile and web location services. It also briefly describes a 3D landscape API and a Java ME application for contributing to OpenStreetMap. The goal is to support developers in creating new location-based innovations using these free and open APIs.

What's hot

Single sign-on Across Mobile Applications from RSAConference

CA API Management

Web Device Connectivity on Ericsson Labs

Ericsson Labs

Jan20 mb sintro [compatibility mode]

moirajacobs

Simplifying Enterprise Mobility - Powering Mobile Apps from The Cloud

Joe Drumgoole

Mobile SSO: Give App Users a Break from Typing Passwords

CA API Management

Mobile Native OAuth Decision Framework

Paul Madsen

Signify Passcode On Demand

pjpallen

Company Profile

Denny Charter

Context Automation (with video demos)

Phil Windley

Salesforce touch

Siva Vittala

Building and Managing Cloud Applications and Infrastructure

Darren Cunningham

End to end content managed online mobile banking

bkraft

API Management and Mobile App Enablement

CA API Management

Ipad Application Development Casestudy

dheerajkureel

BehavioSec Web Summit START slideshare

Neil Costigan

Datapower it sec2019

Goran Angelov

Successful Enterprise Single Sign-on: Addressing Deployment Challenges

Hitachi ID Systems, Inc.

Intranets and Extranets

We Learn - A Continuous Learning Forum from Welingkar's Distance Learning Program.

What's hot (18)

Single sign-on Across Mobile Applications from RSAConference

Web Device Connectivity on Ericsson Labs

Jan20 mb sintro [compatibility mode]

Simplifying Enterprise Mobility - Powering Mobile Apps from The Cloud

Mobile SSO: Give App Users a Break from Typing Passwords

Mobile Native OAuth Decision Framework

Signify Passcode On Demand

Company Profile

Context Automation (with video demos)

Salesforce touch

Building and Managing Cloud Applications and Infrastructure

End to end content managed online mobile banking

API Management and Mobile App Enablement

Ipad Application Development Casestudy

BehavioSec Web Summit START slideshare

Datapower it sec2019

Successful Enterprise Single Sign-on: Addressing Deployment Challenges

Intranets and Extranets

Viewers also liked

Ericsson Application Awards 2011

Ericsson Labs

Stream analytics for churn prediction from Ericsson Research

Ericsson Labs

Web Connectivity on Ericsson Labs

Ericsson Labs

Ericsson Labs at SotM 2010

Ericsson Labs

Geo Location Messaging on Ericsson Labs

Ericsson Labs

Understanding Smartphone Traffic - DroidCon 2010

Ericsson Labs

Everyone enjoys the smartphone revolution - users, developers, network operators, device vendors and network equipment vendors such as Ericsson. However, there are challenges since the network systems have not been optimised for smartphones from start. Until recently, the key optimisation objectives for mobile broadband networks have been peakrate and throughput, which are still important properties. The advent of mass-usage of smartphones, and the related traffic, has shown that also other properties of the 3G radio and networks are important. In particular, the high frequency of data activities, sometimes with moderate volumes of data transferred, has lead to both a high battery drain, and increased the signaling load in the system, due to the transitions between the standardised states of the 3G radio.

Distributed Shared Memory on Ericsson Labs

Ericsson Labs

The document describes Distributed Shared Memory (DSM), a technology that enables a distributed in-memory database for JavaScript applications. DSM allows multiple clients to access and modify the same data simultaneously. It resolves merge conflicts automatically and notifies clients of data changes. Developers can focus on building interactive web collaboration software without dealing with networking, databases, or concurrency issues. DSM supports both persistent storage and transient data sharing across clients in real-time.

An Overview of All Ericsson Labs APIs

Ericsson Labs

Viewers also liked (8)

Ericsson Application Awards 2011

Stream analytics for churn prediction from Ericsson Research

Web Connectivity on Ericsson Labs

Ericsson Labs at SotM 2010

Geo Location Messaging on Ericsson Labs

Understanding Smartphone Traffic - DroidCon 2010

Distributed Shared Memory on Ericsson Labs

An Overview of All Ericsson Labs APIs

Similar to Mobile Web Security Bootstrap on Ericsson Labs

Over the Air 2011 Security Workshop

Ericsson Labs

Mobile Application Security – Effective methodology, efficient testing!

espheresecurity

The document discusses security issues related to mobile applications. It notes that mobile applications now store and process data both on the client and server sides, exposing them to vulnerabilities on both ends. Common vulnerabilities include insecure storage of sensitive data like credentials on the device, and insecure network communication that allows man-in-the-middle attacks when mobile devices use untrusted networks. The document advocates for effective security testing of mobile applications to identify and address such risks.

Ericsson Labs at SotM 2010

Tor Björn Minde

This document summarizes location and mapping APIs available from Ericsson Labs for open innovation. It describes APIs for mobile and web maps powered by OpenStreetMap data, as well as APIs for mobile and web location services. It also briefly describes a 3D landscape API and a Mobile OSM Creator application for contributing to OpenStreetMap. The goal is to support developers in creating new location-based innovations using these free and open APIs.

OpenStack Quantum Network Service

Lew Tucker

Mobile application security – effective methodology, efficient testing! hem...

owaspindia

Netbiscuits V2 16 English

Ott1967

Building reliable systems from unreliable components

Arnon Rotem-Gal-Oz

This document discusses building reliable systems from unreliable components in a service-oriented architecture (SOA). It describes how individual components with 0.99 reliability can be combined through replication and failover techniques to achieve much higher overall system reliability approaching 100%. It provides examples of how hardware redundancy and failure detection methods allow services to continue functioning even if individual servers or other components fail.

Mobile is the New Face of Customer Engagement

CA API Management

Mobile is forcing enterprises to make information assets available to app developers in a consistent, easily consumable, mobile-optimized manner. However, mobile also introduces special security and management challenges that complicate app development and app governance in BYOD scenarios. These slides are from a Webinar, featuring Forrester Research Mobile Analyst Jeff Hammond, Eli Lilly Mobile Architect Tom Nienhaus and Layer 7 VP of Products Phil Walston, will examine some of these challenges and introduce how specialized backend mobile middleware can be used to make enterprise apps mobile-ready in a way that is secure and manageable.

OreDev 2008: Software + Services

ukdpe

Webinar The App Lifecycle Platform

Service2Media

In this webinar the CTO and Product Management Director of Service2Media explain about the Service2Media App Lifecycle Platform - M2Active. M2Active is the technique behind the platform: Architecture and Runtimes. This webinar is rather technical and especially interesting for CIO's or app development and IT staff that are interested to use The App Lifecycle Platform to develop portfolio's of core and critical App's.

ServiceSync Overview at CloudExpo

Inventit Inc.

The document discusses Inventit Service-Sync, an M2M application enablement platform. It allows remote service providers and manufacturers to focus on value-added applications by separating machine and machine management functionality. The platform includes development and execution capabilities and can be used to create new services for industries like energy, automotive, medical devices, and healthcare. It utilizes cloud computing and provides a web service API, big data processing, and NoSQL database. Demo scenarios show dynamic rule and application reconfiguration from the cloud server to edge gateways and devices.

T04f

Martha Kuras

HTML5 and the dawn of rich mobile web applications

James Pearce

HTML5 and its related technologies are enabling new ways to build beautiful sites and applications for contemporary mobile devices. Native mobile developers can now use web technologies to surmount cross-platform headaches, and desktop web developers can reach mobile users in familiar, app-like ways. This session explores the state of the art in HTML5-based mobile web frameworks, and demonstrates the practical possibilities that this powerful and standards-based approach can bring.

API Management for Enterprise Mobile Access a How-to Guide

CA API Management

The document discusses enterprise API management for mobile access. It describes how a mobile access gateway can bridge legacy enterprise services and data to modern mobile-friendly formats and protocols. The gateway provides a single integration point that handles security, access controls, and real-time event processing to enable reuse of APIs across multiple mobile and non-mobile platforms while preserving data privacy and integrity.

DevOps for Mobile - DevOpsDays, NY, 2013

Sanjeev Sharma

This document discusses challenges and best practices for DevOps for mobile apps. It outlines 10 challenges, including fragmented platforms, app stores adding deployment steps, and managing provisioning profiles and keys. It then describes IBM's 4 DevOps principles and discusses continuous integration, continuous delivery, continuous testing, continuous monitoring, and mobile app delivery best practices. These include automated build/deploy scripts, testing on devices, simulating backend services, monitoring performance, and using a private app store for testing.

Windows Phone 7.5 와 Windows 8 메트로 스타일 앱 개발

Seo Jinho

Hybrid Mobile Application Framework

동수 장

Hybrid mobile applications combine native and web technologies. They use a native shell application containing a web view to display web-based UIs, allowing development with web standards like HTML, CSS, and JavaScript. This provides better performance than pure web apps while reducing costs compared to purely native apps. Popular hybrid frameworks include Titanium, PhoneGap, Rhodes, jQTouch, and iUI. They support building cross-platform mobile apps for devices like iPhone, Android, BlackBerry and more.

OSS Presentation Keynote by Hal Stern

OpenStorageSummit

The document discusses how networks and applications can become more aware of each other to improve the experience for end users. Currently, networks and applications operate independently without much visibility into each other. The document proposes that applications share information about end users and traffic with networks, and networks share information about topology, bandwidth, and resources with applications. This would allow applications to optimize content placement and resource usage, and networks to gain insights to better optimize traffic and provide new services. The document argues this type of programmable network can improve areas like security, performance, analytics and more.

Developing with Windows Live

goodfriday

Azure Services Platform

David Chou

The Azure Services Platform provides a set of building blocks and extensible components for developing rich social applications and consumer experiences in the cloud. It includes services for user and application data storage, identity management, presence, communication, search, and more. Developers can access these services through a uniform RESTful programming model and client libraries. The platform also provides capabilities for compute, storage, messaging, access control, workflows, and databases to enable simple and scalable cloud application architectures.

Similar to Mobile Web Security Bootstrap on Ericsson Labs (20)

Over the Air 2011 Security Workshop

Mobile Application Security – Effective methodology, efficient testing!

Ericsson Labs at SotM 2010

OpenStack Quantum Network Service

Mobile application security – effective methodology, efficient testing! hem...

Netbiscuits V2 16 English

Building reliable systems from unreliable components

Mobile is the New Face of Customer Engagement

OreDev 2008: Software + Services

Webinar The App Lifecycle Platform

ServiceSync Overview at CloudExpo

T04f

HTML5 and the dawn of rich mobile web applications

API Management for Enterprise Mobile Access a How-to Guide

DevOps for Mobile - DevOpsDays, NY, 2013

Windows Phone 7.5 와 Windows 8 메트로 스타일 앱 개발

Hybrid Mobile Application Framework

OSS Presentation Keynote by Hal Stern

Developing with Windows Live

Azure Services Platform

More from Ericsson Labs

Capillary Networks integrates the machine and IoT devices as integral part of...

Ericsson Labs

The document discusses opportunities and challenges around capillary networks and Ericsson's proposed solution. It describes how Ericsson's IoT framework would provide automated service creation, end-to-end management, and security for enterprises and service providers by integrating capillary and mobile network domains through a virtual middleware and cloud. The solution aims to simplify deployment, provide authentication based on SIM credentials, and offer end-to-end connectivity, management, and analytics.

Ericsson 5 g at mobile world congress 2014

Ericsson Labs

5G will be the next generation of wireless technology, aiming to provide extremely fast and reliable connectivity that can support a massive number of devices. It combines technologies like LTE and WiFi with new innovations like millimeter wave communications between 10-300 GHz. Research and standardization are ongoing, with the goal of commercial 5G networks launching around 2020 that can handle requirements like super real-time communication, work in dense crowded areas, and enable widespread machine-to-machine communication.

Evolved Cloud Collaboration Presentation at MWC14 by Ericsson Research

Ericsson Labs

NoSQL Slideshare Presentation

Ericsson Labs

This document provides an overview of NoSQL databases and HBase. It discusses why NoSQL databases are gaining popularity due to trends in data and architecture. It also summarizes the CAP theorem and how different databases balance consistency, availability and partition tolerance. The document describes research activities including evaluating HBase for telco usage and performing bulk processing tests on HBase. It finds that while HBase can scale horizontally, managing compaction storms and small files is challenging.

Ericsson Application Awards 2014

Ericsson Labs

Welcome to the Ericsson Application Awards 2014 Is your app a winner? Developers, startups and students who have an idea for a great app, here is your opportunity! You are invited to submit your entries and compete in the Ericsson Application Awards 2014 for the best Android or iOS apps. How will working life be organized to meet changing behaviors and emerging technologies? How can we contribute toward making the next generation of working life a one where people can innovate, collaborate and balance their lives outside work better? We are open to your suggestions. This competition will give you and your team the opportunity to gain a foothold in the app industry, while also earning recognition and making contacts within the telecom industry Deadline February 28, 2014. Details: www.ericssonapplicationawards.com

5G for the Networked Society beyond 2020

Ericsson Labs

This document discusses 5G wireless access technologies that will enable the networked society beyond 2020. It outlines key challenges like supporting a massive growth in connected devices and traffic volume, with requirements ranging from multi-Gbps to hundreds of Mbps. 5G will evolve existing wireless technologies and introduce complementary new technologies to address these challenges. It will provide affordable and sustainable solutions through an ultra-dense network architecture using technologies like multi-hop communication, device-to-device communication, and spectrum sharing across licensed and unlicensed bands from 300 MHz to 300 GHz.

3D visual communication

Ericsson Labs

The document discusses Ericsson's 3D visual communication demo showcased at Mobile World Congress 2013. The demo aims to improve video conferencing by adding depth perception through 3D technology. It allows for more realistic and immersive communication. While the demo currently uses glasses, the goal is to deploy glasses-free auto-stereoscopic displays. Further work is needed to standardize new 3D video codecs and implement them in real-time for high quality 3D visual communication products and services. The technology brings benefits for user experience, businesses, sustainability and society.

Openflow Stanford University - Ericsson Collaboration

Ericsson Labs

1. Stanford University and Ericsson are collaborating on OpenFlow and SDN research to improve network performance and enable new applications. 2. Their work includes evaluating SDN architecture designs, improving network resiliency and reducing latency between controllers and switches. 3. Inline service chaining allows dynamic ordering of network services for subscribers based on policies, with different service paths for different traffic types.

Federated Networked Cloud

Ericsson Labs

- Federated networked cloud allows for rapid and on-demand provisioning of cloud connectivity across the world by establishing and managing distributed cloud resources within and across providers' domains. - It enables enterprise users to deploy infrastructure in different datacenters and connect them over wide area networks on demand. - Service providers can collaborate by bundling their cloud and network services to gain new business opportunities and provide unified solutions to customers.

Exploring Big Data

Ericsson Labs

Mobile network data is a unique and valuable asset for mobile operators. By analyzing network data and combining it with external data sources, operators can gain deep insights into consumer behavior and network performance. This allows operators to better understand individual consumers, identify new business opportunities through partnerships, and improve network efficiency. The prototype data analysis tool presented demonstrates how network data can be made understandable through visualization and interaction. It highlights the potential for increased consumer loyalty and new revenue streams from leveraging the power of big data. However, consumer awareness and concerns regarding privacy must be addressed through transparency, perceived value of any data sharing, and only utilizing anonymized and aggregated information.

Technology Challenges in the Networked Society

Ericsson Labs

The document discusses technology challenges in the networked society presented at Mobile World Congress 2013. It addresses challenges related to devices, data/information, services, networks, clouds, management, security, and sustainability in an increasingly connected world. Key issues include supporting a wide range of devices and connectivity methods, ensuring coverage and scalability, managing large amounts of data, and maintaining security, privacy, and trust across complex cloud and network infrastructures.

The Connected Megacity

Ericsson Labs

This document discusses how cities can become more resilient by gathering data from various systems and devices, using machine learning to develop knowledge representations, and employing reasoning algorithms to decide the best actions in response to unexpected events. The goal is for cities to respond to events effectively by coordinating public services and resources through interoperable systems informed by sophisticated event analysis.

The Networked Society

Ericsson Labs

The document discusses the transition to a "networked society" driven by information and communications technology (ICT). It notes that ICT is impacting everything from production to organizational structures to information availability. The document outlines some of the major technological transitions that have occurred every 50 years. It also discusses challenges of the networked society like the growth in the number of devices, demands on networks and cloud infrastructure, and security and management issues. The document promotes collaboration between industry, government and academia to address these challenges and realize the networked society. It provides an overview of the technologies being demonstrated by Ericsson to illustrate solutions for issues in services, devices, networks and cloud.

Towards Timely Efficient Semantic Reasoning for the Networked Society

Ericsson Labs

Mobile Monday Athens 111003

Ericsson Labs

This document discusses the vision of connected things and megacities at Ericsson Research. It notes that the number of connected devices is expected to grow exponentially to 50 billion by 2020, creating both challenges and opportunities from the massive amount of data. Ericsson aims to address this through horizontal service enablement and innovation in specific verticals like transportation, retail, and smart cities. The document promotes Ericsson Labs, which supports developers and provides APIs to enable applications for connected things.

Mobile Monday London M2M Event 110516

Ericsson Labs

OAuth2 on Ericsson Labs

Ericsson Labs

The OAuth2 Framework allows you to protect your web resources using the next generation OAuth, (http://oauth.net/2/) as well as accessing OAuth2 protected resources, most notably the Facebook Graph API. The API consists of libraries for building your own OAuth2 server as well as client side access. The standard is still in draft mode so expect some level of changes. Currently version 10 of the OAuth 2 specification is the one being supported. The framework is implemented in Java on top of Restlet.org HTTP framework. It can execute on all platforms that Restlet is available on and it is validated using Java SE, EE and Android. Donated to Restlet.org as an open source project with very generous open source license for reuse.

HTML5 impact on application programming

Ericsson Labs

More from Ericsson Labs (18)

Capillary Networks integrates the machine and IoT devices as integral part of...

Ericsson 5 g at mobile world congress 2014

Evolved Cloud Collaboration Presentation at MWC14 by Ericsson Research

NoSQL Slideshare Presentation

Ericsson Application Awards 2014

5G for the Networked Society beyond 2020

3D visual communication

Openflow Stanford University - Ericsson Collaboration

Federated Networked Cloud

Exploring Big Data

Technology Challenges in the Networked Society

The Connected Megacity

The Networked Society

Towards Timely Efficient Semantic Reasoning for the Networked Society

Mobile Monday Athens 111003

Mobile Monday London M2M Event 110516

OAuth2 on Ericsson Labs

HTML5 impact on application programming

Recently uploaded

"Frontline Battles with DDoS: Best practices and Lessons Learned", Igor Ivaniuk

Fwdays

At this talk we will discuss DDoS protection tools and best practices, discuss network architectures and what AWS has to offer. Also, we will look into one of the largest DDoS attacks on Ukrainian infrastructure that happened in February 2022. We'll see, what techniques helped to keep the web resources available for Ukrainians and how AWS improved DDoS protection for all customers based on Ukraine experience

Freshworks Rethinks NoSQL for Rapid Scaling & Cost-Efficiency

ScyllaDB

Leveraging the Graph for Clinical Trials and Standards

Neo4j

Generating privacy-protected synthetic data using Secludy and Milvus

Zilliz

During this demo, the founders of Secludy will demonstrate how their system utilizes Milvus to store and manipulate embeddings for generating privacy-protected synthetic data. Their approach not only maintains the confidentiality of the original data but also enhances the utility and scalability of LLMs under privacy constraints. Attendees, including machine learning engineers, data scientists, and data managers, will witness first-hand how Secludy's integration with Milvus empowers organizations to harness the power of LLMs securely and efficiently.

Essentials of Automations: Exploring Attributes & Automation Parameters

Safe Software

Building automations in FME Flow can save time, money, and help businesses scale by eliminating data silos and providing data to stakeholders in real-time. One essential component to orchestrating complex automations is the use of attributes & automation parameters (both formerly known as “keys”). In fact, it’s unlikely you’ll ever build an Automation without using these components, but what exactly are they? Attributes & automation parameters enable the automation author to pass data values from one automation component to the next. During this webinar, our FME Flow Specialists will cover leveraging the three types of these output attributes & parameters in FME Flow: Event, Custom, and Automation. As a bonus, they’ll also be making use of the Split-Merge Block functionality. You’ll leave this webinar with a better understanding of how to maximize the potential of automations by making use of attributes & automation parameters, with the ultimate goal of setting your enterprise integration workflows up on autopilot.

Y-Combinator seed pitch deck template PP

c5vrf27qcz

Artificial Intelligence and Electronic Warfare

Papadakis K.-Cyber-Information Warfare Analyst & Cyber Defense/Security Consultant-Hellenic MoD

HCL Notes and Domino License Cost Reduction in the World of DLAU

panagenda

Webinar Recording: https://www.panagenda.com/webinars/hcl-notes-and-domino-license-cost-reduction-in-the-world-of-dlau/ The introduction of DLAU and the CCB & CCX licensing model caused quite a stir in the HCL community. As a Notes and Domino customer, you may have faced challenges with unexpected user counts and license costs. You probably have questions on how this new licensing approach works and how to benefit from it. Most importantly, you likely have budget constraints and want to save money where possible. Don’t worry, we can help with all of this! We’ll show you how to fix common misconfigurations that cause higher-than-expected user counts, and how to identify accounts which you can deactivate to save money. There are also frequent patterns that can cause unnecessary cost, like using a person document instead of a mail-in for shared mailboxes. We’ll provide examples and solutions for those as well. And naturally we’ll explain the new licensing model. Join HCL Ambassador Marc Thomas in this webinar with a special guest appearance from Franz Walder. It will give you the tools and know-how to stay on top of what is going on with Domino licensing. You will be able lower your cost through an optimized configuration and keep it low going forward. These topics will be covered - Reducing license cost by finding and fixing misconfigurations and superfluous accounts - How do CCB and CCX licenses really work? - Understanding the DLAU tool and how to best utilize it - Tips for common problem areas, like team mailboxes, functional/test users, etc - Practical examples and best practices to implement right away

Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...

saastr

Skybuffer SAM4U tool for SAP license adoption

Tatiana Kojar

Manage and optimize your license adoption and consumption with SAM4U, an SAP free customer software asset management tool. SAM4U, an SAP complimentary software asset management tool for customers, delivers a detailed and well-structured overview of license inventory and usage with a user-friendly interface. We offer a hosted, cost-effective, and performance-optimized SAM4U setup in the Skybuffer Cloud environment. You retain ownership of the system and data, while we manage the ABAP 7.58 infrastructure, ensuring fixed Total Cost of Ownership (TCO) and exceptional services through the SAP Fiori interface.

June Patch Tuesday

Ivanti

Ivanti’s Patch Tuesday breakdown goes beyond patching your applications and brings you the intelligence and guidance needed to prioritize where to focus your attention first. Catch early analysis on our Ivanti blog, then join industry expert Chris Goettl for the Patch Tuesday Webinar Event. There we’ll do a deep dive into each of the bulletins and give guidance on the risks associated with the newly-identified vulnerabilities.

The Microsoft 365 Migration Tutorial For Beginner.pptx

operationspcvita

GraphRAG for LifeSciences Hands-On with the Clinical Knowledge Graph

Neo4j

Mutation Testing for Task-Oriented Chatbots

Pablo Gómez Abajo

Conversational agents, or chatbots, are increasingly used to access all sorts of services using natural language. While open-domain chatbots - like ChatGPT - can converse on any topic, task-oriented chatbots - the focus of this paper - are designed for specific tasks, like booking a flight, obtaining customer support, or setting an appointment. Like any other software, task-oriented chatbots need to be properly tested, usually by defining and executing test scenarios (i.e., sequences of user-chatbot interactions). However, there is currently a lack of methods to quantify the completeness and strength of such test scenarios, which can lead to low-quality tests, and hence to buggy chatbots. To fill this gap, we propose adapting mutation testing (MuT) for task-oriented chatbots. To this end, we introduce a set of mutation operators that emulate faults in chatbot designs, an architecture that enables MuT on chatbots built using heterogeneous technologies, and a practical realisation as an Eclipse plugin. Moreover, we evaluate the applicability, effectiveness and efficiency of our approach on open-source chatbots, with promising results.

Fueling AI with Great Data with Airbyte Webinar

Zilliz

“How Axelera AI Uses Digital Compute-in-memory to Deliver Fast and Energy-eff...

Edge AI and Vision Alliance

For the full video of this presentation, please visit: https://www.edge-ai-vision.com/2024/06/how-axelera-ai-uses-digital-compute-in-memory-to-deliver-fast-and-energy-efficient-computer-vision-a-presentation-from-axelera-ai/ Bram Verhoef, Head of Machine Learning at Axelera AI, presents the “How Axelera AI Uses Digital Compute-in-memory to Deliver Fast and Energy-efficient Computer Vision” tutorial at the May 2024 Embedded Vision Summit. As artificial intelligence inference transitions from cloud environments to edge locations, computer vision applications achieve heightened responsiveness, reliability and privacy. This migration, however, introduces the challenge of operating within the stringent confines of resource constraints typical at the edge, including small form factors, low energy budgets and diminished memory and computational capacities. Axelera AI addresses these challenges through an innovative approach of performing digital computations within memory itself. This technique facilitates the realization of high-performance, energy-efficient and cost-effective computer vision capabilities at the thin and thick edge, extending the frontier of what is achievable with current technologies. In this presentation, Verhoef unveils his company’s pioneering chip technology and demonstrates its capacity to deliver exceptional frames-per-second performance across a range of standard computer vision networks typical of applications in security, surveillance and the industrial sector. This shows that advanced computer vision can be accessible and efficient, even at the very edge of our technological ecosystem.

Main news related to the CCS TSI 2023 (2023/1695)

Jakub Marek

An English 🇬🇧 translation of a presentation to the speech I gave about the main changes brought by CCS TSI 2023 at the biggest Czech conference on Communications and signalling systems on Railways, which was held in Clarion Hotel Olomouc from 7th to 9th November 2023 (konferenceszt.cz). Attended by around 500 participants and 200 on-line followers. The original Czech 🇨🇿 version of the presentation can be found here: https://www.slideshare.net/slideshow/hlavni-novinky-souvisejici-s-ccs-tsi-2023-2023-1695/269688092 . The videorecording (in Czech) from the presentation is available here: https://youtu.be/WzjJWm4IyPk?si=SImb06tuXGb30BEH .

Choosing The Best AWS Service For Your Website + API.pptx

Brandon Minnick, MBA

Have you ever been confused by the myriad of choices offered by AWS for hosting a website or an API? Lambda, Elastic Beanstalk, Lightsail, Amplify, S3 (and more!) can each host websites + APIs. But which one should we choose? Which one is cheapest? Which one is fastest? Which one will scale to meet our needs? Join me in this session as we dive into each AWS hosting service to determine which one is best for your scenario and explain why!

Your One-Stop Shop for Python Success: Top 10 US Python Development Providers

akankshawande

9 CEO's who hit $100m ARR Share Their Top Growth Tactics Nathan Latka, Founde...

saastr

Recently uploaded (20)

"Frontline Battles with DDoS: Best practices and Lessons Learned", Igor Ivaniuk

Freshworks Rethinks NoSQL for Rapid Scaling & Cost-Efficiency

Leveraging the Graph for Clinical Trials and Standards

Generating privacy-protected synthetic data using Secludy and Milvus

Essentials of Automations: Exploring Attributes & Automation Parameters

Y-Combinator seed pitch deck template PP

Artificial Intelligence and Electronic Warfare

HCL Notes and Domino License Cost Reduction in the World of DLAU

Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...

Skybuffer SAM4U tool for SAP license adoption

June Patch Tuesday

The Microsoft 365 Migration Tutorial For Beginner.pptx

GraphRAG for LifeSciences Hands-On with the Clinical Knowledge Graph

Mutation Testing for Task-Oriented Chatbots

Fueling AI with Great Data with Airbyte Webinar

“How Axelera AI Uses Digital Compute-in-memory to Deliver Fast and Energy-eff...

Main news related to the CCS TSI 2023 (2023/1695)

Choosing The Best AWS Service For Your Website + API.pptx

Your One-Stop Shop for Python Success: Top 10 US Python Development Providers

9 CEO's who hit $100m ARR Share Their Top Growth Tactics Nathan Latka, Founde...

Mobile Web Security Bootstrap on Ericsson Labs

1. Mobile Web Security Bootstrap A labs.ericsson.com API http://labs.ericsson.com/apis/mobile-web-security-bootstrap/

2. ericsson labs APIs Maps & positioning communication security Mobile Mobile SMS Send & Mobile Group Voice Mobile Web Security Oauth2 Location Maps Receive Push Mixer Bootstrap CAPTCHA Framework Web Async Identity Management Key Management Maps Voice Framework Service Web technologies NFC & sensors User & network information Web Web Background Mobile Sensor Mobile Network Tag Tool Connectivity EventSource Service Actuator Link Identification Probe Web Device Mobile Network Distributed Web Real-Time Real- Sensor Networking Connectivity Shared Memory Communication Application Platform Look-up Look- Machine learning Media and graphics Face Cluster Text-to-Speech Text- to- Detector Constructor © Ericsson AB 2010 | Page 2

3. Mobile Web Security Bootstrap › The SIM is commonly used for getting cellular access, mobile connectivity and access to some mobile services › The SIM proven security features can also be used for securing any mobile web applications › This service provides an API for establishing a secret key between mobile web clients and web applications © Ericsson AB 2010 | Page 3

4. Why Mobile Web Security Bootstrap? › Security – As secure as SIM › Standard – Based on industry standard › Acceptance – Many standardized applications › Convenience – Transparent to users › Extensibility – Any applications can exploit the SIM © Ericsson AB 2010 | Page 4

5. Main Features › Based on 3GPP industry standard Generic Bootstrapping Architecture › Client and server Web/Java APIs available and documented with examples › HTTP interfaces › Soft client available to allow focusing on the development of the network side of the web application © Ericsson AB 2010 | Page 5

6. Overview Mobile Web › Ub interface – Mobile client uses Network Application Server Network Application API to bootstrap a master secret Application key Ua Zn › Ua interface – Mobile Web Client uses API to derive application- * HTTP specific master key Mobile › Zn interface – Mobile Web Bootstrap Web Client Application Server uses API to Ub Server obtain the corresponding Bootstrap application-specific master key Client HTTP At the end of the API usage Subscriber transactions the client and server Database share an application-specific secret-key Mobile Web Client MWSB Mobile Web Security Bootstrap © Ericsson AB 2010 | Page 6

7. Java Client API › Soft Client API provided for focusing on server application › Example showing how to establish a shared key // Create soft client with user identity and permanent key GbaClient softclient = new GbaClient(myID, myKey); // Bootstrap client with master key. btid is the handler. String btid = softclient.bootstrap(); // Derive application-specific key to be shared with app server byte[] appKey = softclient.getKsNaf(app_Fqdn); // Use the app key for HTTP Digest Authentication boolean authResult = runUaHttpDigest(app_URL, btid, appKey); © Ericsson AB 2010 | Page 7

8. Java Server API › API towards mobile client and API towards MWSB › Servlet example showing how to establish a shared key // Applicatin Servlet doGet() // Create application context with Labs authorization API key GbaNaf app = new GbaNaf(myFqdn, myApiKey) // Parse GET authorization headers & fetch btid (key Handler) Authorization authz = Authorization.parse(authorizationHeader); String btid = authz.getUsername(); // Derive the application-specific key to be shared with client appKey = app.getKsNaf(btid); // Use the shared key to authenticate the mobile client Digest.verify(authorization, appKey) © Ericsson AB 2010 | Page 8

9. Possible applications Identity Management Authentication Single Sign-On Integrity Confidentiality Key Management © Ericsson AB 2010 | Page 9

Mobile Web Security Bootstrap on Ericsson Labs

Recommended

Recommended

More Related Content

What's hot

What's hot (18)

Viewers also liked

Viewers also liked (8)

Similar to Mobile Web Security Bootstrap on Ericsson Labs

Similar to Mobile Web Security Bootstrap on Ericsson Labs (20)

More from Ericsson Labs

More from Ericsson Labs (18)

Recently uploaded

Recently uploaded (20)

Mobile Web Security Bootstrap on Ericsson Labs