Skip to main content
Conference Proceedings

Analyzing security of korean USIM-based PKI certificate service

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (2015) 8909 95-106
DOI: 10.1007/978-3-319-15087-1_8
2Citations
Citations of this article
19Readers
Mendeley users who have this article in their library.
Get full text

Abstract

This paper analyzes security of Korean USIM-based PKI certificate service. Korean PKI certificate consists of public key and password encrypted private key on disk. Due to insufficient security provided by single password, Korean mobile operators introduced USIM-based PKI system.We found several vulnerabilities inside the system, including private key’s RSA prime number leakage during certificate installation. We also suggest possible improvments on designing secure authentication system (Preliminary work of this paper was published previously [1]. This work was responsibly disclosed to the vendor and associated government organizations.).

Cite

CITATION STYLE

APA

Park, S., Park, S., Yun, I., Kim, D., & Kim, Y. (2015). Analyzing security of korean USIM-based PKI certificate service. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 8909, pp. 95–106). Springer Verlag. https://doi.org/10.1007/978-3-319-15087-1_8

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free