可携式通讯系统的漫游机制与安全
- 格式:pdf
- 大小:1.15 MB
- 文档页数:52
Authenticating MS needs the help of HLR for each communication.
16
3GPP AKA(第三代手機通訊)
通訊安全嗎?
17
3GPP AKA
Conclusions
2
Three-Party Authenticated Key Agreements
An authenticated key agreement protocol is an interactive method for two or more parties to determine session keys based on their secret keys or public/private keys.
AAA:
Authentication, Authorization and Accounting
6
RFID Protocol
Tag
Reader
Database Server
Service Request
Authen.
7
E-Payment Protocol
E-Bank
Buyer
Authen.
Distribution of Authentication Vector (認證向量 的分送)
Authentication and Key Agreement (認證與金 鑰協商)
Security Analysis on Portable Communication Systems Roaming Protocols
可攜式通訊系統漫遊機制之安全分析與探討
Speaker: 李添福 (Tian-Fu Lee) 國立成功大學資訊工程博士 立德大學 資訊傳播學系 助理教授 Cryptography/ Network security/ Wireless networks communication/ Algorithmic graph theory/ Database and data engineering
PCSs Roaming Services
Application 1: GSM Application 2: 3GPP AKA Application 3: Authentication Technique for the Global Mobility Network Application 4: Delegation-Based Authentication Protocol for PCSs
1
Outlines
Three-Party Authenticated Key Agreements (3PAKA) Applications
Portable Communication Systems (PCSs) Roaming Services RFID Protocol E-Payment Protocol Electronic Medical Record Security and Privacy Vehicular Mobile Network
H (Kuh, Kvh)
roaming-service-provision phase (roaming
services)
Ui (Kauth)
V (Kauth)
12
GSM (第二代手機通訊)
通訊安全嗎?13来自 Architecture of GSM
14
Authentication protocol for GSM
Vehicular Mobile Network
Authen.
10
PCSs Roaming services
11
Roaming services
roaming-service-setup phase
(authentication)
Ui (Kuh)
V (Kvh)
=> Kauth belong to Ui and V
Mobile Station
PDA Visited Network
Home Network
Service Request
Authen.
cellular phone
notebook
4
Portable Communication Systems Roaming Protocol (Cont.)
5
Portable Communication Systems Roaming Protocol (Cont.)
MS (Ki)
VLR
Authen. request(TMSI, LAI)
IMSI
HLR (Ki)
RANDj SRESj
(Ki,RANDj)-A3->SRESj (Ki,RANDj)-A8->Kci
n copies (RANDj , SRESi ,Kci) (Ki,RANDj)-A3->SRESj (Ki,RANDj)-A8->Kci
Trusted server
Authentication
Authentication
Client A
Key agreement / key exchange SK
Secure communication
Client B
3
Portable Communication Systems Roaming Services
Authen.
Seller
Request Deal
8
醫療資訊安全-電子病歷安全與隱私
(Electronic Medical Record Security and Privacy)
健保機關
政府衛生行政單位 電子病歷Database
IC card
一般民眾
Authen.
Authen.
Hospital
9
15
Drawbacks of the authentication protocol for GSM
No mutual authentication between MS and VLR.
a bandwidth consumption between VLR and HLR if MS stays in HLR for a long time.