W3C home > Mailing lists > Public > www-mobile@w3.org > March 2000

RE: E-commerce using WAP (...WTLS...)

From: John Fallon <JFallon@baltimore.com>
Date: Mon, 6 Mar 2000 10:57:11 -0000
Message-ID: <0949AF853902D311AF530008C7C9AE22553444@irlbdc.cdsemea.baltimore.com>
To: Mukul Gandhi <mgandhi@bhartitelesoft.com>, www-mobile@w3.org
Cc: jain@cs.purdue.edu
I think the question here was more to do with the device WTLS support

- Nokia have WTLS class 2 in their 7110 (and 7190 in US)
- Phone.com have WTLS class 1 in their browser

use of certificates implies use of WTLS class 2 (server certs only) or WTLS
class 3 (both client and server certs).

The Nokia emulator has WTLS class 2 support. 

Baltimore Technologies (http://www.baltimore.com/telepathy) whom I work for
have a WTLS toolkit and I am sure would be interested to here from other
providers of the emulators to have them include WTLS as it makes sense to be
testing with a full implementation and we are happy to promote the wide use
of certificates from the early stages with WAP.

Baltimore are organizing a worldwide seminar series on WAP and wireless
security and there may be some dates that make sense
(http://www.baltimore.com/telepathy/events/), slides are on the website

regards
John

> -----Original Message-----
> From:	Mukul Gandhi [SMTP:mgandhi@bhartitelesoft.com]
> Sent:	03 March 2000 05:06
> To:	www-mobile@w3.org
> Cc:	jain@cs.purdue.edu
> Subject:	Re: E-commerce using WAP (...WTLS...)
> 
> Hi Sandeep ,
> Verisign issues WAP Server Certificates to enable WTLS security between
> WAP
> servers and client wireless devices such as digital cellular phones and
> other mobile client devices. You must install the certificate from
> Verisign
> on the WAP Server to enable it with WTLS. VeriSign supports the following
> WAP servers: Motorola, Nokia, and Phone.com . The procedure to apply for
> WAP Server Certificate is very much the same as for normal SSL
> Certificates. www.verisign.com has details . 
> 
> regards
> -mukul
> 
> 
> At 06:34 AM 3/2/00 -0500, jain@cs.purdue.edu wrote:
> >Hi all...
> >
> >I am developing a secure WAP application for e-commerce.
> >I am facing a problem.....I dont know if any of the available
> >WAP terminal simulators....have an implementaion of WTLS...they need not
> >in a sense as they are only simulators.
> >
> >My questions are:
> >1. Is there any vendor (Motorola,Ericsson,Phone.com,Nokia....etc.)
> >   having a secure implementation of WAP (i.e. WTLS) on the WAP
> >   enabled cell-phones?
> >2. Is anybody currently implementing WTLS?
> >3. Are there any e-commerce application being used currently
> >   anywhere?
> >
> >I dont see how one can develop e-commerce applications using WAP
> >without making sure that the data on the wireless channel being
> >"overheard". We can have hardware encryption...but that is vendor 
> >and bearer technology specific.
> >
> >Thanks
> > 
> >
> >-------------------------------------------------------------------------
> ---
> >Sandeep Jain                    Office: MTH 405
> >Graduate Student                Phone : 765-494-5006
> >Computer Science Department     URL: http://www.cs.purdue.edu/homes/jain/
> >Purdue University
> >West Lafayette, IN 47907-1398.                   
> 
> 
> --------------------------------------------------------------
> Bharti Cellular Limited, New Delhi, India
Received on Monday, 6 March 2000 05:56:02 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 6 January 2015 20:16:02 UTC