A study and improvement of the Unlicensed Mobile Access security mechanism
| Autor: | Ying-Long Chen, 陳盈龍 |
|---|---|
| Rok vydání: | 2008 |
| Druh dokumentu: | 學位論文 ; thesis |
| Popis: | 96 Unlicensed Mobile Access (UMA) is a new technology that provides access to GSM/UMTS voice or data services over Wireless LAN or Bluetooth networks. It uses IPsec to ensure the security of data transmission in IP networks. The major advantage of IPsec is that it can provide encryption and authentication protocols to secure IP communications. The specifications of IPsec indicate that two-way IKE authentication is required before an IPsec Tunnel can be established. The latest version of IKE is IKEv2. However, in order to facilitate the integration with the existing authentication mechanisms of GSM or UMTS, it has been noted in the specifications of UMA that an integrated authentication method with IKEv2 and EAP-SIM/EAP-AKA will be adopted. Both authentication methods are based on challenge/response authentication and symmetric cryptography. The former is used in GSM(2G) and authenticates with the SIM card, while the latter is used in UMTS(3G) and authenticates with USIM. Both methods have the risk of exposing user ID to forged responders. As GSM/UMTS are closed networks, such attack is hard to implement. However, UMA is built on public IP networks, so attackers have the opportunity to retrieve user ID via IP networks. Therefore, this study proposed to use Public Key to improve UMA authentication (EAP-SIM/EAP AKA) and avoid leaking user ID to forged responders. |
| Databáze: | Networked Digital Library of Theses & Dissertations |
| Externí odkaz: |
|