Abstract :
[en] The current challenge for several applications is to
guarantee the user’s privacy when using personal data. The
broader problem is to transfer and process the data without
exposing the sensitive content to anyone, including the service
provider(s). In this paper, we address this challenge by proposing
a protocol to combine secure frameworks in order to exchange
and process sensitive data, i.e. respecting user’s privacy. Our
contribution is a protocol to perform a secure exchange of data
between a mobile application and a trusted execution environment.
In our experiments we show independent implementations
of our protocol using three different encryption modes (i.e., CBC,
ECB, GCM encryption). Our results support the feasibility and
importance of an end-to-end secure channel protocol.
Scopus citations®
without self-citations
2