: Present-day handheld devices, such as PDAs, are a useful blend of hardware and software oriented toward the mobile workforce. While they provide the capability to review documents, correspond via electronic mail, manage appointments and contacts, etc., they typically lack a number of important security features. Concerned individuals and organizations aware of the associated risks involved, mitigate them with such add-on mechanisms as improved user authentication, content encryption, organizational policy controls, virus protection, firewall and intrusion detection filtering, and virtual private network communication. Unfortunately, such piecemeal solutions often present problems in software integration, usability, and administration. This paper describes a framework for incorporating core security mechanisms in a unified manner that avoids these problems. Keywords Mobile Security, User Authentication, Policy Enforcement, File Encryption, Security Frameworks
Wayne A. Jansen, Serban I. Gavrila, Vlad Korolev