MobiSecServ 2015 - First Conference On Mobile And Secure Services, 20-21 February 2015

University of Florida,Gainesville, FL 32611

20-21 February 2015

MobiSecServ is sponsored by the The IEEE Gainesville Florida IEEE Section.

Papers will be published in the IEEE Xplore Digital Library
ISBN: 978-1-4799-7428-3

The submission link for EDAS is the following

An early version of MobiSecServ was organized in February 2014 at the Gainesville University, see the workshop website

A video of this previous event is available at this link

The registration is opened
Here is the link to register

The University of Florida (UF) is a major, public, comprehensive, land-grant, research university. With more than 50,000 students, UF is now one of the largest universities in the nation. UF has a 2,000-acre campus and more than 900 buildings (including 170 with classrooms and laboratories).

Final Agenda

Location: 101 Stuzin Hall, University of Florida Campus, Gainesville,Florida, 32601, USA
The conference room has been moved to 102 Stuzin Hall


Friday February 20th 2015

9h15: Coffee and Breakfast

9h45: Conference Welcome

10h00-11h00: Tutorial 1: "Secure Elements and NFC/HCE technologies: the foundations of trusted mobile services based on the emerging Cloud of Secure Elements (CoSE)".
Speaker: Pr Pascal Urien, CoFounder of the EtherTrust Company
EtherTrust is a French spin-off from research carried out at major research institutes (Telecom ParisTech) and French Universities (University Paris 6). The company is a software editor that designs innovative strong security solutions based on secure elements, dedicated to cloud and mobile applications.
Pascal Urien is full professor at Telecom ParisTech, and coFounder of the EtherTrust Company. He graduated from Ecole Centrale de Lyon, and received a PHD in computer science. His main research interests include security and secure elements, especially for networks and distributed computing architectures. He wrote about one hundred papers dealing with these topics and holds fifteen patents.

11h00-12h00: Tutorial 2: "Sim-Servers, Past, Present, Future".
Speaker: Andreas Lux, CEO of the Implementa Company
Implementa gmbh is a german privately held company founded in 1977. Implementa provides industrial-strength communication products and solutions. For more than 15 years implementa has been specializing in wireless and smartcard technologies. Implementa is the market leader for cloud-based SIM and Secure Element solutions.
Andreas Lux is the CEO of implementa. He studied computer science and economy at Universität Göttingen. His diploma thesis was about fault tolerant search algorithms for text retrieval in full-text databases. Before joining Implementa in 1994 he worked as a consultant for industrial automation and communication systems. His technical background is software and hardware development for embedded systems and Smartcards.

12h00-13h30: Lunch

13h30- 14h15: Keynote Speech : "Smart Card based Mobile Device Security"
Speaker: Nizar Jamal, CTO of the Tyfone Company
Founded in 2004, Tyfone´s corporate office is in Portland, Oregon and its Asia-Pacific office is in Bangalore, India.
Tyfone’s mobile apps, transaction software and our patented The Connected Smart Card™ (CSC) security hardware, enable ID and transaction security on any mobile OS or device. Tyfone’s investors include In-Q-Tel and its customers include the Intelligence Community of the US Government.
Tyfone has more than 550 issued invention claims and has more than 90 issued and pending patents that enable ID and transaction security on any (mobile) device.
As CTO of Tyfone, Nizar is responsible for technology direction and roadmap of Tyfone and contributes to strategic planning, sales, engineering process and operational execution of the company. Nizar is a technologist and entrepreneur with diverse experience in the Software, Security, Telecommunications, Marketing, Publishing and Financial services industries in US, India and Europe.
Previously, Nizar was a Managing Director at UBS, responsible for implementing shared mobile and social platforms across UBS. Prior to UBS, he co-founded Impelsys where he conceptualized a cloud-based software as a services platform and transformed the company from a service organization to a software as a service, products and services organization. Nizar has held progressively responsible positions in technology startups prior to Impelsys.
Nizar received an MS in Computer Science from the University of Wisconsin and a BE in Electrical and Electronics Engineering from Annamalai University in India.

14h30-16h30: Session 1, Secure Element and Secure Service

14h30: Manage your own security domain on your smartphone
Arne Munch-Ellingsen, Sigmund Akselsen, Telenor Research, Tromso, Norway
Anders Andersen, Department of Computer Science, UiT The Arctic University of Norway

15h00: Over-the-Internet: Efficient Remote Content Management for Secure Elements in Mobile Devices
Mohamed Sabt, Mohammed Achemlal, Orange Labs, Caen, France
Abdelmadjid Bouabdallah, Universite de technologie de Compiegne, Compiegne, France

15h30: Two-factor Authentication for Android Host Card Emulated Contactless Cards
Arne Munch-Ellingsen, Sigmund Akselsen, Telenor Research, Tromso, Norway
Richard Karlsen, Anders Andersen, Department of Computer Science, UiT The Arctic University of Norway

16h00: Leveraging COBIT5 in NFC-Based Payment Technology: Challenges and Opportunities for Security Risk Mitigation and Audit
Tebug Mba Techoro, Sergey Butakov, Shaun Aghili, Ron Ruhl, Department of Information Systems Security and Assurance Management, Concordia University College of Alberta, Canada

16h30-17h00 Break

17h00-17h40 Short Papers Session

17h00: Towards Token-Requestor for ePayment based on Cloud of Secure Elements and HCE mobiles
Pascal Urien, Telecom ParisTech, Paris, France

17h20: An Automated Virtual Security Testing Platform for Android Mobile Apps
Yong Wang, College of Business and Information Systems Dakota State University

17h45-18h30: Panel, Market opportunities for Secure Mobile Services
Nizar Jamal, CTO of the Tyfone Company; Pascal Urien coFounder of the Ethertrust Company; Andreas Lux, CEO of the Implementa Company.

19h30: Social Event, dinner in Gainesville offered to all participants.
Restaurant Liquid Ginger
101 SE 4th Ave, Gainesville, , FL 32601, +1 352-371-2323

Saturday February 21st 2015

8h30: Coffee and Breakfast

9h15-12h30: Session 2 Secure Mobile Services

9h15: Handling Cross Site Scripting Attacks using Cache Check to Reduce Webpage Rendering Time with Elimination of Sanitization and Filtering in Light Weight Mobile Web Browser
Biswajit Panja, Tyler Gennarelli, University of Michigan-Flint Michigan, USA
Priyanka Meharia, Eastern Michigan University, Ypsilanti, Michigan, USA

9h45: Sesame: A Secure and Convenient Mobile Solution for Passwords
Mehrdad Aliasgari, Nick Sabol, Ashutosh Sharma, Department of Computer Engineering and Computer Science,California State University, Long Beach, CA, USA

10h15: Mobile Security Testing Approaches and Challenges
Yong Wang, Yazan Alshboul, College of Business and Information System Dakota State University

10h45: Break

11h00: An Authentication Architecture for Cloud-Based Firewalling Service
Fouad Amine Guenane, Ahmed Serhrouchni, Telecom ParisTech, Paris, France
Guy Pujolle, University Pierre et Marie Curie - University Paris 6, Paris, France

11h30 : Low-power Wireless Climate Monitoring System with RFID Security Access Feature for Mosquito and Pathogen
Byul Hur, William R. Eisenstadt, Department of Electrical and Computer Engineering, University of Florida, Gainesville, Florida

12h00: Performance Variation in Host-Based Card Emulation Compared to a Hardware Security Element
Assad Umar, Keith Mayes, Konstantinos Markantonakis, Information Security Group, Smart Card Centre, Royal Holloway, University of London, Surrey. United Kingdom

12h30-14h00: Lunch

Conference End

Important Dates

December 1st 2014, Papers submission deadline

Due to numerous requests the papers deadline submission has been extended to December 8th 2014

December 16th 2014 December 29th 2014 January 2nd 2015, Papers Acceptance/Rejection notification

December 29th 2014 January 5th 2015, Registration Open

December 31th 2014 January 5th 2015 January 18th 2015, Paper Camera Ready and authors registration deadline

The conference will be held on February friday 20th and saturday 21th 2015


The goal of the "Conference on Mobile Applications, Security, and Services" is to explore the challenges, issues and opportunities both for academic researchers and industrial innovators. We are looking for both research papers on new applications and presentations of deployment experiments or new business opportunities. In an always-on context, mobile applications (as an illustration in 2013, more tablets were sold than laptops) are more and more interacting with sensitive or personal resources hosted in cloud computing infrastructures; as a consequence, security and trust are critical issues. Among other, the NFC technology enables communication in close proximity.
Today, one million NFC smartphones are sold every week. With NFC mobiles surfacing the market so quickly, mobile operating systems are prepared for support with dedicated frameworks. This offers researchers and developers a great opportunity for getting quick traction with novel applications. So far, the main NFC-enabled services deal with payment, access control, or ticketing. Commercial applications today mainly target contactless payments, i.e., eWallets or eTickets managed by transportation companies. The broad availability of NFC-technology fertilizes research and development of novel applications and can go well beyond these intended applications.
This conference aims to bring researchers and industrial experts together to discuss the latest frontiers of mobile technology and also novel applications that have not been thought of before.

The workshop welcomes contributions addressing (but not limited to) the following topics:

Proximity communication technologies for mobile (NFC, Low Power Bluetooth,…), secure transactions over proximity communications;

Trust for mobile applications and services, Secure Elements, SIM frameworks; SecureSD platforms; Single Wire Protocol (SWP); Trusted Service Manager (TSM); Secure over the air (OTA) services;

New mobile secure architectures. Host Card Emulation (HCE). Trusted Execution Environment (TEE).

New services and business perspectives New payment applications; Apple Pay Services; secure tokenisation technologies; proximity communication for access control; automotive industry perspectives; applications for the consumer industry; applications for smart cities; Internet Of Things (IoT) new perspectives;

Mobile Applications for Social Networks.

Deployment experiments and testing Payments, transport, ticketing, access control, couponing, macro localization (Tags).

Conference Organizers

Selwyn Piramuthu, University Of Florida, FL, USA -

Pascal Urien, Télécom ParisTech, Paris, France -


MobiSecServ Conference