Securing Mobile Banking Transactions using WAP Application-Layer Security

S. Itani and A. Kayssi (Lebanon)


WAP and Privacy, Secure MobileBanking Transactions.


This paper presents an end-to-end security solution at the WAP application layer for mobile banking transactions. The privacy of such transactions is compromised at the WAP gateway due to security protocol translation between WTLS and SSL/TLS. Given the limitations of the current handsets, the proposed solution is based on symmetric encryption using IDEA to encrypt sensitive transactions. The encryption/decryption code is downloaded from the server to the handset using WMLScript.

Important Links:

Go Back