Title :
Content authentication in enterprises for mobile devices
Author :
Kappes, Martin ; Krishnan, P.
Author_Institution :
Avaya Labs Res., Basking Ridge, NJ, USA
Abstract :
Most recent work in enterprise security has targeted the area of securing systems and networks from external hackers. We present new security challenges that arise in such networks from a mobile workforce. We argue that future threats to the network will likely come from inside the network; specifically, from legitimate devices and users that roam and reconnect to the enterprise. Fundamentally, most current and past work tackles the issue of authenticating a user or a machine (its hardware) before allowing access to enterprise resources. However, we expect that the critical issue going forward will be to authenticate the content of a device and ensure that the content is in-line with the enterprise´s security polices. In this paper, we present a framework for authenticating the contents of devices connecting to an enterprise and also propose a new token-based scheme for indirect content authentication.
Keywords :
business communication; computer crime; mobile computing; security of data; telecommunication security; token networks; device mobility; enterprise security; enterprise security polices; external hackers; indirect content authentication; mobile device enterprises; network security; token-based scheme; Authentication; Communication system security; Computer hacking; Hardware; Information security; Intelligent networks; Joining processes; Protection; USA Councils; Virtual private networks;
Conference_Titel :
Advances in Wired and Wireless Communication, 2004 IEEE/Sarnoff Symposium on
Print_ISBN :
0-7803-8219-6
DOI :
10.1109/SARNOF.2004.1302857
