Oracles Mobiler Hintergrund

Transcription

Startseite
Anya Elis
Manager Business Development Wireless
Deutschland GmbH
Oracles Mobiler Hintergrund
2001 • 2,5 Millionen Mobile Benutzer
“Die Ersten”
2000 • Wireless Application Hosting
1999 • Oracle9i Application Server Wireless Edition
1999 • WAP Portal in Europa
1998 • SMS Portal in Europa
1997 • Prototyp Lab mit Telia
1996 • Oracle8i Lite - 1MB Mobile Datenbank
1995 • Personal Oracle7 - Mobile Database
1995
2001
Page 1
1
Oracle9i Application Server Wireless
SMS G/W
TEXT
Jede WEB
Site
WAP G/W
WML
“Personalisiertes Portal”
XML Quellen
“Dynamische InhalteTransformation für alle
Geräte”
“XML basierte
Technologie”
HTML G/W
Tiny HTML
HDML G/W
HDML
Application
Server
Firmen
RDBMs
HTML
Any ML
Jedes “ML”Gerät
Oracle9iAS Wireless
• Jedes Gerät
• Jedes Gateway• Jede Markup Jede Applikation
• Jeder Inhalt
y
y
y
y
y
y
y
y
y
y
y
y
y
y
y
y
y
y
y
y
y
y
y
y
y
y
Nokia
Motorola
Ericsson
Palm
RIM Pagers
Blackberry
Any Network
…..
• Jeder Browser
S.E.S.A.
Nokia
Motorola
Ericsson
Phone.com
CMG
Tantau
Infinity
...
y
y
y
y
y
y
y
y
y
y
y
HTML
XML
HDML
WML
TinyHTML
TTML
CHTML
STKML
VoXML
VoiceXML
...
y Geräteunabhängig
y Personalisierbar
y Positionsbasiert
y Event-gesteuert
y Sicher
Jede Web Site
Jede HTML Page
Jede XML Seite
Jede Datenbank
Jedes Servlet
Jedes JSP
Jedes XSP
Jede E-mail
...
Page 2
2
Oracle Wireless Services
WML
Transformer
SMS
HDML
TTML
Personalisierungs
Portal
Adapter
Runtime
(User, Session
Management)
XML
Service
Manager
Oracle9i
Oracle9i AS
Prä
Präferenzen
Oracle9i •• User
Gerä
Gerätete-Information
Jede Web
Site, DB,
Enterprise
App, E-mail
System
Oracle9iAS Wireless Option
: die einzige vollständig
integrierte Lösung, um Multichannel Internet
Anwendungen zu entwickeln und einzusetzen
Anwendungen nur einmal entwickeln
Vorhandene Inhalte einsetzen
Personalisierte und ortsabhängige Dienste
Page 3
3
Oracle9iAS Wireless Edition
Marktdurchdringung

Grosse Carrier
` Sprint PCS, Telefonica Moviles, Telecom Italia Mobile
` 12-15 andere inkl. 9/12 Top Europäischen Carrier

Portale/ASPs
` LycosMobile (Asia), Telefonica, Telia
` 8-10 andere

Corporate
` DrugEmporium, Overseas Union Bank, DBS Bank
` 12-15 andere
Oracle
Location Based Services
Einfach mit Oracle9i Application Server Wireless
und 9i Spatial:
Spatial

Aware Services
`Nächstes Restaurant, Autowaschanlage, Verkehrshilfen

Lokalisationsabhängige Services
`Mein Wetter
`Meine Stadt Events

Car Internet Mobile Services
`Verkehr, Stadtpläne, Routing ...
Page 4
4
Oracle9iAS Wireless Partner
Content
Management
Calendering
Scheduling
Implementation
Location
Personalization
Wireless Edition
Oracle9i
Services
APPLICAT IO N SERVER
Payment
Advertising
E-Commerce
Billing
Version 2.0
Personal Information Management
`
`
`
`
`
`
`
Mobile Email
Mobile Directory
Mobile Address Book
Mobile Calendar
Instant Messaging
Document Management
Unified Messaging
Basierend auf Standard-Protokollen
M-Commerce
` M-Wallet
` Form Filler
` Payment Processing
back
Page 5
5
Beispiel Partner:
Eine vollständige Plattform für Lösungen über
mobiles und festes Internet mit dem höchsten
verfügbaren Sicherheits-Standard
Public Key Infrastruktur wird zum Teil der
Entwicklungsumgebung. Internationale
Standards werden unterstützt.
Für SIM-Karten und Smart Cards
+
+
PayCircle
HP, Lucent, Oracle, Siemens und Sun bilden ein Konsortium zur Standardisierung
mobiler Zahlung und Unterstützung der weltweiten Verbreitung von M-Commerce.
PayCircle Konsortium wird offene Schnittstellen für mobiles Bezahlen
entwickeln, verwenden und fördern.
Non-Profit Organisation
Mitgliedschaft für alle Aktiven im Mobile Payment Markt, wie
• Anwendungsentwickler
• Payment Service Provider
• Händler
• Inhalteanbieter
• Hersteller von Payment Systemen
• Hersteller fürr mobile Infrastruktur und mobile Endgeräte
• Netzbetreiber
• Banken & Kreditkartenfirmen
www.paycircle.org
Page 6
6
Trusted Operator – PKI integration in Oracle 9i
AS Wireless
Petter Bergström
[email protected]
SmartTrust Digital ID
©SmartTrust
SmartTrust Fact Sheet
History
Business
Offices
Ownership
Created by the mergers of Sonera SmartTrust, Across Wireless and iD2
Technologies in 2000 - operations since 1991
Infrastructure software for managing and securing e-services
Sweden, Finland, UK, Germany, Belgium, Italy, Spain, Malaysia, Hong Kong, Singapore,
US
~290 full-time employees
Currently 100% owned by Sonera Corporation (NASDAQ: SNRA)
Products
Delivery platform for mobile operators
PKI solutions with unique smart card support
Revenue
1999
2000
2001
2002FC
Customers
14 million
25 million
35 million
49 million, EBITDA positive
70+ mobile operator customers and 160+ corporate customers in 43 countries
©SmartTrust
1
SmartTrust’s Current Market Position
Established Mobile Operator Franchise
z
60+ delivery platform installations
z
67 million Service and Device Management end-user licenses
z
~75% market share in SDM
z
15 million Wireless Internet Gateways end-user licenses sold
z
All major SIM-cards inter-operate with SmartTrust technology
Strong Presence in Digital Identity Technology
z
>50% market share in Trust Service Provider segment in Europe (high-end smart
card based PKI security)
z
1,5 million licenses SmartTrust Personal
z
9 smart card brands supported covering market share >75%
z
40+ CM installations
Source: Dataquest, SmartTrust management estimates
©SmartTrust
Customer Examples for Digital ID
Segment
Customer examples
Trust
Service
Providers
Bank/FI
Telecom
Government
& Corporate
©SmartTrust
2
Product overview
Content
Content
Provider
Provider
HTTPS
Internet
(SSL)
ST
ST Personal
Personal
• GSM/GPRS
• UMTS
• WLAN
(11,5 G)
SIM/UICC
SIM/UICC with
with Wireless
Wireless
Internet
Internet Browser
Browser (WIB)
(WIB)
&
& signature
signature plug-ins
plug-ins
ST
ST Delivery
Delivery
Platform
Platform
ST
ST Security
Security
Center
Center
Directory
Directory
Service
Service
Mobile
Mobile
Operator
Operator
ST
ST Certificate
Certificate
Manager
Manager
ST
ST OCSP
OCSP
Responder
Responder
Trust
Trust Service
Service
Provider
Provider
©SmartTrust
Mobile
Digital ID
Partner(s)
The Challenge
“On the Internet nobody knows you’re a dog.”
©SmartTrust
3
The Security Trend
Certificates / PKI
Trend
One-time
password
(High level)
On a Smart Card
Complex
installation
In a token
Complex
usage
On diskette
Password
On paper list
On hard disk
1
4
Unlimited
No. of applications
©SmartTrust
PKI Products from SmartTrust
Certification Authority
Certificate Repository
Directory with LDAP protocol
SmartTrust
SmartTrust
Certificate
CertificateManager
Manager
Certificates &
revocation information
Certificates
“PKI cards”
Revocation information
(e.g. CRLs)
“PKI-enabling” software
“PKI-enabling” software
Secure
connection
SmartTrust
SmartTrustPersonal
Personal
End-users (subjects)
SmartTrust Security Center
SmartTrust Servant OCSP
End-entities
©SmartTrust
4
PKI Security
Users
Banks and
financial institutions
Government
Telecom
Large Enterprises
Secure email & file encryption with standard email products
Applications
Extranet/intranet, VPN, remote access, Single Sign On
Internet banking/E-commerce document processing, workflow
SmartTrust
products
Standards
CA system
RSA
PKCS
Client side PKI
SSL
S/MIME
SEIS
Server side PKI
X.509
LDAP
SET
©SmartTrust
A Typical Web Solution
SmartTrust Certificate Manager
Certificate and CRL distribution
Certificate
distribution
CRL retrieval/checking
CLIENT
SERVER
Web Browser
SmartTrust
SmartTrustServant
Servant
Check
CheckCRL
CRL
Verify
Verifysignature
signature
Parse signature
Parse signature
Parse certificate
Parse certificate

SmartTrust
SmartTrust Personal
Personal
Authentication
Authentication&&digital
digitalsignatures
signatures
including
includingextensive
extensivesupport
supportfor
for
Smart
SmartCards
Cardsand
andsoft
softtokens
tokens
Directory

SSL
version
3.0
WWWserver
Application
©SmartTrust
5
The Mobile Ecosystem
Mobile Ecosystem
Co-operation by different types of service providers to offer mobile e-services to end users using the
mobile terminal as a trusted personal device
Mobile
Operator
Infrastructure/
Technology
Providers
Provides mobile subscriber management,
access and VAS. Currently in hub position in
the mobile ecosystem.
Billing
Relationship
Provides products/services
for sale (e.g. software,
tickets)
Provides corporate IT services
(e.g., ERP, Intranet, e-mail)
Retailer/
Merchant
Corporate/
Enterprise
End-User
Media
Company
Financial
Institution
Trust Service
Provider
Provides information
and content (e.g.,
music, news)
Facilitating savings,
credit, payments
Provides digital identities and
trust services (e.g.,
authentication)
©SmartTrust
Trusted Operator
A Trusted Operator is an operator that
achieves acceptance of the mobile phone
as a trusted personal device
The mobile phone is the most
deployed device for security tokens in
the world!
©SmartTrust
6
Addressing the entire market?
Dedicated devices
Special tokens
WAP
Varying signature support
Trusted Operator
Supports tokens (and
potentially seamlessly replaces
tokens)
Supports and enhances
WAP
Multi browsing
environment
©SmartTrust
Trusted Operator - Services and Revenue
Digital Signatures
Assumption:
Orders, Payments
1 000 000 subscribers,
eMail
avg. 20 extra
messages/user/month,
0.04
Authentication
VPN connection
Wallet Services
Web-login
/message
Decrease churn by 1%
ARPU of 500 /year
Certificate fee 3
New
Revenue
New Services
Services Revenue
240 000
Confidentiality
Account, Stock, Voting
information
One-time passwords
/year (30%)
in msg/month
900 000 in cert/year
Reduced
Reduced Churn
churn
5 000 000
in retained
revenue/year
©SmartTrust
7
Oracle9i Application Server Wireless and
SmartTrust
HTML
Oracle 9iAS WE
P7
Web
server
Adapters
Client browsers
and signature plug-ins
Content:
XML, HTML,
WML, DB etc...
P7, ISO9797
WIG WML
ST
STDP5
DP5
WIG
WIG
XML Sign tag
P7, ISO9797
ST/ACI
SDK
Transformers
ST/Oracle
SDK
WIG WML XSLT
New in iAS WE v2
HTML
Available at
ST partner web
P7
ACI
ACI
payment
paymentgw
gw
Content transformation
Harmonized signature interface
Payment clearing with ACI
ST
STServant
Servant
OCSP
OCSP
ST
STSecurity
Security
Center
Center
©SmartTrust
Systems Architecture
HTML
Oracle 9iAS Wireless
P7
Web
server
Adapters
P7, ISO9797
ST
STDP5
DP5
WIG
WIG
WIG WML
XML Sign tag
P7, ISO9797
ST/Oracle
SDK
HTML
P7
ST
STServant
Servant
OCSP
OCSP
ST
STWireless
Wireless
Certificate
CertificateEnrollment
Enrollment
Server
Server
ST
STCertificate
Certificate
Manager
Manager
ST
STSecurity
Security
Center
Center
Oracle
OID X500
©SmartTrust
8
Example: B2C using wireless PKI
Telecom Operator
Request signature
Bank
Notify Merchant
and process payment
Sign Transaction
use private key
on SIM
Request order confirmation
Place Order,
specify mobile payment
©SmartTrust
Solution Highlights
¾A complete platform to implement solutions over the mobile
and fixed Internet using the highest security standard available.
¾Any content or application becomes available on any device.
¾Create Once – Publish Everywhere
¾Personalized Content
¾Secure Portal Services
¾Harmonized Signature Interface
¾Leverage SMS channel
¾Public Key Infrastructure becomes a part of the development
environment. International standards are supported.
¾Digital certificates can be stored on any device: smart card,
SIM-card or as a soft certificate.
¾Certificate issuing and management
©SmartTrust
9
More information
www.smarttrust.com
or
[email protected]
©SmartTrust
Background
What is required is the equivalent to:
©SmartTrust
10
The four elements of security
Confidentiality
Integrity
Eavesdropping
Modification
Authentication
Faked identify
Non-repudiation
Not sent
Claims
Receipt
©SmartTrust
PKI - Public Key Infrastructure
Juliet’s Private
Key
Romeo’s Private
Key
Juliet’s Public
Key
Romeo’s Public
Key
©SmartTrust
11
Signing the message
Meet me at the balcony, Juliet
Clear Text Message
Juliet’s Private
Key
Sign
Signed data
Meet me at the balcony, xa7a1
©SmartTrust
Encrypting it
Signed data
Romeo’s Public
Key
Encrypt
Encrypted and signed data
8duqhj482aq29#1ej&2aVhd2#¤2
Deliver to Romeo...
©SmartTrust
12
Decrypting it
8duqhj482aq29#1ej&2aVhd2#¤2
Encrypted and signed data
Romeo’s Private
Key
Decrypt
Signed data
©SmartTrust
Checking the signature
Signed data
Juliet’s Public
Key
Verify
Clear Text Message
Meet me at the balcony, Juliet
©SmartTrust
13