iMobile EE – An Enterprise Mobile Service Platform

iMobile is an enterprise mobile service platform that allows resource-limited mobile devices to communicate with each other and to securely access corporate contents and services. The original iMobile architecture consists of devlets that provide protocol interfaces to different mobile devices and infolets that access and transcode information based on device profiles. iMobile Enterprise Edition (iMobile EE) is a redesign of the original iMobile architecture to address the security, scalability, and availability requirements of a large enterprise such as AT&T. iMobile EE incorporates gateways that interact with corporate authentication services, replicated iMobile servers with backend connections to corporate services, a reliable message queue that connects iMobile gateways and servers, and a comprehensive service profile database that governs operations of the mobile service platform. The iMobile EE architecture was also extended to provide personalized multimedia services, allowing mobile users to remotely control, record, and request video contents. iMobile EE aims to provide a scalable, secure, and modular software platform that makes enterprise services easily accessible to a growing list of mobile devices roaming among various wireless networks.     

Secure service convergence based on scalable media coding

In multimedia services, security and privacy issues are urgent to be solved, such as the content security and service protection. To solve these issues, some means have been proposed, such as conditional access and digital rights management. However, for the latest application scenarios in convergent networks, there is still no solution. This paper focuses on the convergent multimedia broadcasting applications: the multimedia content, e.g., TV program, is encoded and packaged by the content provider, and is then transmitted to users through different communication networks, e.g., 3G network, DVB-H, ADSL, etc. Thus, the same multimedia content will be used for various services, i.e., mobile TV, Internet TV and home TV. Since different network channel support different bandwidths, the multimedia content should be transcoded before being transmitted through the networks. To protect the content and service in this application, we propose the content and service protection methods. In content protection, the content provider encrypts the scalable multimedia content with the manner denoted by Encryption Flag. The content distributor has no decryption keys, but can transcode the scalable content with the manner denoted by Layer Flag, and transmit the transcoded content to users. In service protection, the content provider combines the encryption key, Encryption Flag and the user right information, and transmits them, independent from the encrypted content, to certified users. At user side, the content is decrypted with the received key according to the Encryption Flag and Layer Flag. Thus, the content provider needs only to encrypt the content once, which can be transcoded by the content distributor in a secure manner and used for various networks. Additionally, the user rights need not to be changed when the service network is changed. Totally, the proposed scheme is secure and efficient for service convergence.     

Radio Network Aggregation for 5G Mobile Terminals in Heterogeneous Wireless and Mobile Networks

This paper provides a novel design concept for advanced mobile multi interface terminals with radio network aggregation capability and enhanced quality of service (QoS) provisioning for multimedia services (voice, video and data) in heterogeneous wireless and mobile networks. A new module is established which provides the best QoS and lowest cost for any given multimedia service by using simultaneously all available wireless and mobile access networks for a given traffic flow. This novel adaptive QoS module with adaptive QoS routing algorithm is called advanced QoS routing algorithm (AQoSRA), which is defined independently from any existing and future radio access technology. The performance of our proposal is evaluated using simulations and analysis with multi-interface mobile stations with AQoSRA within, carrying multimedia traffic in heterogeneous mobile and wireless environment with coexistence of multiple Radio Access Technologies, such as 3G, 4G as well as future 5G radio access networks. The analysis of the proposed framework for radio networks aggregation in advanced mobile terminals has shown overall better performances regarding the achievable throughput and multimedia access probability in heterogeneous wireless and mobile environment.     

Cross-layer architecture for scalable video transmission in wireless network

Multimedia applications such as video conference, digital video broadcasting (DVB), and streaming video and audio have been gaining popularity during last years and the trend has been to allocate these services more and more also on mobile users. The demand of quality of service (QoS) for multimedia raises huge challenges on the network design, not only concerning the physical bandwidth but also the protocol design and services. One of the goals for system design is to provide efficient solutions for adaptive multimedia transmission over different access networks in all-IP environment. The joint source and channel coding (JSCC/D) approach has already given promising results in optimizing multimedia transmission. However, in practice, arranging the required control mechanism and delivering the required side information through network and protocol stack have caused problems and quite often the impact of network has been neglected in studies. In this paper we propose efficient cross-layer communication methods and protocol architecture in order to transmit the control information and to optimize the multimedia transmission over wireless and wired IP networks. We also apply this architecture to the more specific case of streaming of scalable video streams. Scalable video coding has been an active research topic recently and it offers simple and flexible solutions for video transmission over heterogeneous networks to heterogeneous terminals. In addition it provides easy adaptation to varying transmission conditions. In this paper we illustrate how scalable video transmission can be improved with efficient use of the proposed cross-layer design, adaptation mechanisms and control information.     

Multicast Broadcast Services Support in OFDMA-Based WiMAX Systems [Advances in Mobile Multimedia]

Multimedia stream service provided by broadband wireless networks has emerged as an important technology and has attracted much attention. An all-IP network architecture with reliable high-throughput air interface makes orthogonal frequency division multiplexing access (OFDMA)-based mobile worldwide interoperability for microwave access (mobile WiMAX) a viable technology for wireless multimedia services, such as voice over IP (VoIP), mobile TV, and so on. One of the main features in a WiMAX MAC layer is that it can provide'differentiated services among different traffic categories with individual QoS requirements. In this article, we first give an overview of the key aspects of WiMAX and describe multimedia broadcast multicast service (MBMS) architecture of the 3GPP. Then, we propose a multicast and broadcast service (MBS) architecture for WiMAX that is based on MBMS. Moreover, we enhance the MBS architecture for mobile WiMAX to overcome the shortcoming of limited video broadcast performance over the baseline MBS model. We also give examples to demonstrate that the proposed architecture can support better mobility and offer higher power efficiency.     

Requirements for an IMS-based Quadruple Play Service Architecture

Quadruple play can be understood as the provisioning of high-speed voice, video (live broadcast or on demand services, such as video on demand), and data services over broadband connections with mobility support. Currently, there are several trials of the IP multimedia subsystem deployed worldwide that promise to provide telecommunication and advanced multimedia services. This article focuses mainly on the basic requirements of a cooperative service delivery platform for provisioning quadruple play services. As a result of this research, an IMS-based cooperative service delivery platform is presented. This supports various access technologies to acquire the streaming services. To validate our quadruple play architecture, we implemented a prototype based on DVB-H and UMTS as the access technologies. This prototype is part of the ongoing development of the proposed architecture     

Multimedia services interoperability in next-generation networks for the residential environment

This article presents an open and functional architecture based on a next-generation network solution in order to seize its converged nature to guarantee interoperability among different platforms and terminals. The defined architecture is an integrated solution for end-to-end communication of various IP multimedia subsystem platforms marketed by different vendors, belonging to several operators located in different countries across Europe and supporting multiple terminals and technologies in order to experiment with a new broadband telephony service for the residential environment. This work addresses, in particular, the interoperability problems of name resolution and implementation of the Session Initiation Protocol Interface at the terminal as a key use in such a scenario. Also, several advanced services are developed and tested within the proposed architecture as a proof of concept of the IMS capability for quick service creation and deployment. The architecture proposed contributes to the reduction of obstacles and barriers among the European countries in order to adopt NGN architectures, allowing a new type of communication that is more complete and flexible.     

移动视频电话业务平台的建设

移动视频电话业务是一种集视频、语音于一体的多媒体通信业务,移动用户之间能够进行实时音、视频的交互,本文阐述移动视频电话业务平台的体系架构、建设方案及新的多媒体业务的引入。     

基于指纹识别的云安全认证技术

在云计算环境中,作为云安全的第一道防线,用户身份认证有着至关重要的作用。分析了当前云服务系统的认证需求,考虑到指纹识别技术在云安全认证中的应用优势,提出了一种基于指纹识别的云安全认证系统。并对其系统架构、工作流程进行了深入研究,以通过更加安全的认证方式防止恶意用户的非法访问,保证云环境下用户数据的访问安全。     

普适计算环境下的安全访问模型

针对移动终端的普及和可信计算技术对移动终端通信模式的影响，为满足普适计算环境的安全访问需求，本文提出普适计算环境下的安全访问模型，该模型定义了普适计算环境下用户的本地注册、域内访问和域间漫游3种机制，并详细介绍了相应的工作流程.安全性证明表明本文机制是CK安全的；分析显示本文模型在匿名性、安全性和效率上的优势，使其更加适合在普适计算环境下使用.     

异构网络接入认证技术研究

各种无线传输技术在覆盖面积、频谱带宽及时延方面都有一定的局限性,能有效解决上述局限性的＂异构网络高速无线接入＂概念日益受到广泛关注,但是,要对异构网络的接入认证技术进行一体化设计是一项具有挑战性的课题。重点分析如何利用动态安全关联技术改善移动认证架构,研究异构网络和移动终端的统一认证及安全接入,有效提升移动终端在不同网络间切换的安全性能。     

Wireless ATM networks: technology status and future directions

The concept of “wireless ATM” (WATM), first proposed in 1992, is now being actively considered as a potential framework for new-generation wireless communication networks capable of supporting integrated, quality-of service (QoS) based multimedia services. In this review paper, we outline the technological rationale for wireless ATM, present a system-level architecture, and discuss key design issues for both mobile ATM switching infrastructure and radio access subsystems. The WATM radio access layer issues covered in this paper include: spectrum allocation; spectrum etiquette; modem technology; and medium access/data link control (MAC/DLC) protocols. Mobile ATM aspects such as ATM signaling extensions for handoff control, location management, and mobile QoS control are discussed. A summary of current wireless/mobile ATM technology development and standardization status is given, including an outline of our WATMnet prototype. The paper concludes with a discussion of future directions for wireless ATM technology such as Internet protocol (IP) integration and mobile multimedia terminals/applications     

支持移动多媒体的安全中间件

安全以其复杂性和高计算性成为移动通信和移动Internet、特别是移动电子商务发展的瓶颈。根据中间件屏蔽复杂性的特性,设计了一种支持移动多媒体通信的安全中间件模型。该模型主要实现2大安全性服务:基于3GPP标准建议实现移动终端和移动网络的安全通信,在此基础上基于WAP2.0标准实现移动终端与Internet等第3方服务提供商之间的安全通信。主要描述和分析了这个安全中间件模型,并在此基础上提出了一种实现移动终端到移动终端的端到端通信安全的方法。     

Content Protective Multi‐Agent Platform for MsMu Service and Pattern‐Based Content Management

Recent research on mobile Internet protocol television and digital right management (DRM) interconnections has focused on multimedia technologies designed to enhance content scalability and adaptive content distribution. However, due to the architectural and scalable limitations, recent systems are not flexible and securable with respect to their adaptive content distribution and protective policy management. Therefore, we propose a content protective multi‐agent platform that provides secure multimedia services, correlation management, pattern‐based management, and multisource multi‐use (MsMu)‐based services. Our architecture, supported by DRM, lets us create a rich set of MsMu‐based content protection and seamless multimedia services through the extension of one source multi‐use (OsMu)‐based content services. We have verified our platform, which provides scalable and securable services with a 17% lower service response time by using a testbed.     

CDMA EVDO网络中的QoS保障机制研究

随着3G无线分组网络的飞速发展,基于移动终端的实时多媒体业务需求也日趋广泛.如何保障诸如流媒体直播和可视通话等QoS要求较高的业务,必将成为一个重要的课题.对CDMA EVDO网络中的QoS保障机制进行了初步探讨,阐述了CDMA EVDO网络的QoS实现架构,并以终端MS源发呼叫的QoS协商过程为例,描述了其信令流程.     

Quality‐based charging solutions for wireless multimedia services

The evolution of mobile telecommunication networks and access bandwidth has enabled operators to deliver IPTV services for mobile customers; however, the existing mobile charging solutions are not effectively addressing the billing requirements of multimedia streams. This paper develops a quality‐based charging solution for 3GPP wireless networks with the aim of providing a fair pricing solution for multimedia services. An appropriate business model is selected and a streaming proxy‐based charging architecture is developed based on the quality of the multimedia service. The proposed algorithms are theoretically evaluated by the derivation of the formulas of the distribution and the expected value of the price discount. A testbed is built and the findings are evaluated and compared with traditional charging functions. Copyright © 2014 John Wiley & Sons, Ltd.     

协议组合逻辑安全的4G无线网络接入认证方案

针对4G无线网络中移动终端的接入认证问题,基于自证实公钥系统设计了新的安全接入认证方案,并运用协议演绎系统演示了该方案形成的过程和步骤,用协议组合逻辑对该方案的安全属性进行了形式化证明.通过安全性证明和综合分析,表明该方案具有会话认证性和密钥机密性,能抵御伪基站攻击和重放攻击,并能提供不可否认服务和身份隐私性,同时提高了移动终端的接入效率     

Compact multidimensional broadband wireless: the convergence of wireless mobile and access

Broadband wireless communications have gained increased interest during the last few years. This has been fuelled by a large demand on high-frequency utilization as well as a large number of users requiring simultaneous high-data-rate access for the applications of wireless mobile Internet and e-commerce. The convergence of wireless mobile and access will be the next storm in wireless communications, which will use a new network architecture to deliver broadband services in a more generic configuration to wireless customers, and support value-added services and emerging interactive multimedia communications. Large bandwidth, guaranteed quality of service, and ease of deployment coupled with the great advancements in semiconductor technologies make this converged wireless system a very attractive solution for broadband service delivery.     

Secure push for mobile airline services

In this paper, we propose an architecture for secure push services for mobile users that supports common-of-the-shelf (COTS) WLAN base stations. The architecture focuses on the creation of flexible access networks based on easily deployable base stations. The push functionality is realized using client-initiated connections with SIP, and TLS or dTLS for security. The central building block of the distributed system is the edge proxy, which manages and implicitly authenticates all inbound connections, and performs privacy enhancement. The main driving force of our architecture has been airline services, but the system is applicable also for other service domains.     

移动通信业务安全综述

本文通过分析移动通信业务所面临的各类安全威胁,提出了移动通信业务安全架构,并对业务安全总体架构、业务应用安全各层实现、手机终端安全、用户卡安全等技术进行了具体的介绍.