A key and certificate management for mobile MMS encryption system

Abstract

This thesis is all about how to establish key and certificate management for secure mobile messaging system. Although mobile messaging (i.e. SMS/MMS) becomes so popular into a daily life, it does not have a proper key and certificate management on mobile communication in order to protect secure information. This is because previous works had shown some deficiencies in key management systems. Therefore, there is a demand to have a proper key and certificate management to exchange key for securing communication between two parties. This demand can be assured by implementing a public key infrastructure (PKI) cryptosystem system due to its capability of digital signature and simplicity in key management. In this research, our PKI used RSA algorithm to generate and establish private key securely to mobile clients, who wants to use this system, and suggest a way to authenticating them to server. It is also responsible for registering the users through web application, administrating the certificates by employing revocation certificate list (RCL) as well as generating online certificate status protocol (OSCP) response to clients. Besides, this key and certificate management system also allows the administrator to produce the different reports based on key which generated or certificate’s requests in specific time or specific phone number. Lastly, this system was tested with the mobile emulator in order to show usability, reliability, validity and performance of the system. In conclusion, this study shows how to resolve the problem of key and certificate management system on mobile messaging. Thus, it is practical to use PKI in real atmosphere. In the near future, this key and certificate management can be integrated into encryption mobile messaging system.