Mobile Security for Mobile JSF Kit provides an end-to-end security solution for mobile applications based on JSF.

For the WAP 2.0 protocol, a wireless profile of the Transport Layer Security (TLS) protocol permits interoperability for secure transactions. This profile defines the method for TLS tunneling to support end-to-end security at the transport level, which is not mature in the WAP 1.0 protocol.






WAP 2.0 security architecture
The end-to-end security makes a lot of enhanced level mobile applications possible, such as mobile banking, mobile payment and mobile stock trading. And the mobile security sample application demonstrates an end-to-end security solution between the mobile device and the server application using a signed Secure Socket Layer (SSL) connection based on the WAP 2.0 protocol.

Mobile security sample application
The developer's guide introduces how to generate a certificate for a server application using OpenSSL, establish the SSL connection between the mobile device and the server, protect content using security roles and add component-based authorization based on JSF.

By Daning Yang & Peter Yeung

 

Previous versions of Mobile Security for Mobile JSF Kit