An Example of Secure Java Based Mobile Application
In this paper, a design and implementation of a JAVA application on mobile phones that securely connect to Web services is described. The authors considered a Web service scenario where mobile phone user produces a cryptographic signature in the JAVA application using the PKI SIM smart card. Data is encrypted using a crypto MIDlet or Xlet JAVA application installed on mobile phone with CLDC or CDC configurations. The user uses standard WSS signature mechanism (Web Service Security) to wrap a cryptographic signature into the SOAP request and sends the request over to the remote Web service endpoint implementation. Web service performs request processing and sends SOAP response back to the Java based mobile phone application.