Handover mechanisms in next generation heterogeneous wireless ...

More documents

Recommendations

Info

SECURITY FOR HANDOVER ACROSS HETEROGENEOUS WIRELESS NETWORKS requires that the two operators have a trust relationship in between each other, and have agreed on a charging scheme. When a user requests access through the network of a foreign operator, the foreign operator forwards the access request to the user’s home network. The user’s authorisation profile maintained by its home operator will then be consulted for further actions. The foreign operator must ensure that the access provided to the user is within the established roaming agreement with its home operator. The final authorisation decision is made by the home operator, and the results will be sent back to the foreign operator. In this case, the services and the trust relationships are taken into account in the authorisation. Accounting Accounting measures the resources a mobile user consumes during access, and makes the corresponding bill according to the service agreement between the mobile user and the network operator. This can include the amount of connection time or the amount of data usage a user has incurred during a session. Accounting is carried by keeping records of usage information, and involves a number of activities including auditing and reporting. � Auditing: the act of verifying the correctness of an invoice submitted by a network operator, or the conformance to usage policy, security guidelines, and so on [40]. � Reporting: the act of providing a ‘trail’ in the event that the system is compromised or found faulty. 3.2.2 Authentication in Cellular Networks One-way Authentication Method In GSM, authentication takes place in one direction. The network always verifies the identity of a mobile user, but the mobile user is unable to verify the identity of the network. One-way authentication is widely employed in the 2G wireless systems, e.g. GSM. GSM security is addressed in three aspects: authentication, confidentiality and anonymity. Authentication is carried by network operator through verifying the user’s knowledge of a subscriber authentication key K i that is stored in both the - 36 -
SECURITY FOR HANDOVER ACROSS HETEROGENEOUS WIRELESS NETWORKS Authentication Centre (AuC) and the Subscriber Identity Module (SIM). Confidentiality and anonymity on the radio path is provided by encrypting data streams between mobile user and access network. However, GSM was not designed to protect against active attacks on the radio path, because they would require an attacker to masquerade as a GSM network [44]. In a GSM network, authentication is often involved in many system operations such as mobile registration, mobile handover and so forth. To initiate an authentication process, the AuC in the home network generates a 128-bit random number (RAND). This random number RAND will be sent to the Mobile Host (MH) as a challenge. Then, both the MH and the AuC produce a 32-bit signed response SRES by applying a vendor- specific A3 algorithm, 3( , i ) K RAND A SRES � . The MH sends its SRES to the HLR for verification. The HLR checks whether the SRES from the MH is identical to what it has obtained from the AuC. Alternatively, the SRES and the RAND could be provided to the VLR in advance. In this case, the SRES comparison can be done locally at the VLR on the visited network. If the MH is accepted for access, an encryption key K c is generated by another vendor- specific algorithm A8, K c � A8( RAND, K i ) . The K c is produced by the MH and the AuC separately. Then, the AuC sends its copy of K c to the visited network. The visited network applies an A5 encryption algorithm to cipher the data streams between the BS and the MH. The ciphering * � A5( K , F ) XOR data will be applied on both data c n directions. F n is a 22-bit frame number, and 114-bit data are used as input. Although GSM provides many security measures to protect against some typical attacks such as eavesdropping, unauthorised access and masquerade, it is still vulnerable to false base station attacks [44]. As the costs of mobile base equipments reduce greatly and such kind of attacks become easier to implement, GSM mobile users would inevitably be at a risk when roaming globally. Mutual Authentication Method - 37 -
Page 1 and 2: Handover Mechanisms in Next Generat
Page 3 and 4: ACKNOWLEDGMENT First of all, I woul
Page 5 and 6: TABLE OF CONTENTS 4.4.2 Power Save
Page 7 and 8: LIST OF FIGURES LIST OF FIGURES Fig
Page 9 and 10: LIST OF FIGURES Figure 7.2 A generi
Page 11 and 12: ABSTRACT New access technologies su
Page 13 and 14: Chapter 1 INTRODUCTION New access t
Page 15 and 16: INTRODUCTION becomes available. Han
Page 17 and 18: INTRODUCTION The above multipliciti
Page 19 and 20: INTRODUCTION network trust pattern
Page 21 and 22: INTRODUCTION 1.3 Related Publicatio
Page 23 and 24: INTRODUCTION TECHNICAL REPORTS XIII
Page 25 and 26: HANDOVER MANAGEMENT horizontally. H
Page 27 and 28: HANDOVER MANAGEMENT The objective o
Page 29 and 30: HANDOVER MANAGEMENT air interface,
Page 31 and 32: HANDOVER MANAGEMENT proposed archit
Page 33 and 34: HANDOVER MANAGEMENT Access point (A
Page 35 and 36: HANDOVER MANAGEMENT users. Moreover
Page 37 and 38: HANDOVER MANAGEMENT For IEEE 802.11
Page 39 and 40: HANDOVER MANAGEMENT The two schemes
Page 41 and 42: HANDOVER MANAGEMENT When a MH is mo
Page 43 and 44: 3.1 Introduction Chapter 3 HANDOVER
Page 45 and 46: SECURITY FOR HANDOVER ACROSS HETERO
Page 47: SECURITY FOR HANDOVER ACROSS HETERO
Page 69 and 70: DYNAMIC NEIGHBOUR TRUST INFORMATION
Page 93 and 94: Chapter 5 TRUST ASSISTED HANDOVER A
Page 95 and 96: TRUST ASSISTED HANDOVER ALGORITHM F
Page 97 and 98: TRUST ASSISTED HANDOVER ALGORITHM F
Page 99 and 100:
TRUST ASSISTED HANDOVER ALGORITHM F
Page 101 and 102:
Page 103 and 104:
Page 105 and 106:
Page 107 and 108:
Page 109 and 110:
Page 111 and 112:
Page 113 and 114:
Page 115 and 116:
Page 117 and 118:
Page 119 and 120:
Page 121 and 122:
Page 123 and 124:
Chapter 6 PROXY BASED AUTHENTICATIO
Page 125 and 126:
PROXY BASED AUTHENTICATION LOCALISA
Page 127 and 128:
Page 129 and 130:
Page 131 and 132:
Page 133 and 134:
Page 135 and 136:
Page 137 and 138:
Page 139 and 140:
Page 141 and 142:
Page 143 and 144:
Page 145 and 146:
Page 147 and 148:
MULTI-INTERFACE MOBILE MODEL FOR ME
Page 149 and 150:
Page 151 and 152:
Page 153 and 154:
Page 155 and 156:
Page 157 and 158:
Page 159 and 160:
Page 161 and 162:
Page 163 and 164:
Page 165 and 166:
Page 167 and 168:
Page 169 and 170:
CONCLUSIONS AND FUTURE RESEARCH WOR
Page 171 and 172:
Page 173 and 174:
Page 175 and 176:
ABBREVIATIONS 3G 3rd Generation Wir
Page 177 and 178:
ABBREVIATIONS LS Location Server MH
Page 179 and 180:
ABBREVIATIONS THOA Trust Assisted H
Page 181 and 182:
REFERENCES [12] C. Politis, T. Oda,
Page 183 and 184:
REFERENCES [37] Wi-Fi Alliance, "Wi
Page 185 and 186:
REFERENCES presented at IEEE Intern
Page 187 and 188:
REFERENCES [90] R. Verdone and A. Z
Page 189:
REFERENCES [116] K. E. Malki and H.
show all

Handover mechanisms in next generation heterogeneous wireless ...

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?