3GPP LTE MAC Layer - EventHelix.com

EventHelix.com• telecommunication design• systems engineering• real-time and embedded systemsLTE SecurityEncryption and Integrity Protection inLTE© 2012 EventHelix.com Inc. 1

LTE Security: Key ConceptsEventHelix.com• telecommunication design• systems engineering• real-time and embedded systemsAuthentication• The LTE Network verifiesthe UE’s identity bychallenging the UT usethe keys and report aresult.• The network checks theresult against theexpected resultIntegrity• Signaling messagereceiver verifies that thereceived message isexactly the message thatthe transmitter sent• This is done using anintegrity checksum• Guards against “man inthe middle” attackswhere the sendersmessages andintercepted by a hackerand a modified messageis relayed to the receiverEncryption• The sender encrypts thedata with a secret keythat is only known to thereceiver• Only the receiver is ableto decode the message• Guards against hackerslistening in on the data© 2012 EventHelix.com Inc. 2

LTE Security Key HierarchyEventHelix.com• telecommunication design• systems engineering• real-time and embedded systemsUSIM and AuCKUE and HSSCK, IKUE and MMEK ASMEUE and MMEK NASint K NASenc K eNBUE and eNodeBK UPenc K RRCint K RRCenc© 2012 EventHelix.com Inc. 3

Encryption and IntegrityProtection in the LTE Control PlanEventHelix.com• telecommunication design• systems engineering• real-time and embedded systemsMMENAS• K NASint• K NASenceNodeBRRC• K RRCint• K RRCencUENAS• K NASint• K NASencRRC• K RRCint• K RRCenc• LTE supports two levels onsecurity on the controlplane– The NAS traffic between theMME and the UE is protectedwith NAS level keys– The RRC connection trafficbetween the MME and theUE is protected with RRC levelkeys• This means that the NAStraffic is being protectedwith NAS as well as RRClevel security© 2012 EventHelix.com Inc. 4

Encryption and IntegrityProtection in the LTE UsereNodeBPlaneUEEventHelix.com• telecommunication design• systems engineering• real-time and embedded systems• User plane data isencrypted with theK UPenc keyUserPlaneUserPlane• K UPenc• K UPenc© 2012 EventHelix.com Inc. 5

LTE NAS Key Derivation atthe MME and UEK NASint : Integrity protection keyfor NAS signaling messagesEventHelix.com• telecommunication design• systems engineering• real-time and embedded systemsK NASenc : Encryption key for NASsignaling messagesKKCK, IKCK, IKK ASMEK NASintK ASMEK NASenc© 2012 EventHelix.com Inc. 6

LTE RRC Key Derivation atthe eNodeB and UEEventHelix.com• telecommunication design• systems engineering• real-time and embedded systemsK RRCint : Integrity protection key for K RRCenc : Encryption key for RRCRRC signaling messagessignaling messagesKKCK, IKCK, IKK ASMEK eNBK RRCintK ASMEK eNBK RRCenc© 2012 EventHelix.com Inc. 7

LTE User Plane KeyDerivation at the eNodeBKCK, IKand UEEventHelix.com• telecommunication design• systems engineering• real-time and embedded systems• K UPenc : User planeencryption keyK ASMEK eNBK UPenc© 2012 EventHelix.com Inc. 8

Key Stream ComputationEventHelix.com• telecommunication design• systems engineering• real-time and embedded systemsCipheringIntegrity ProtectionBearerMessageCountDirectionCountBearerKeyKeyStreamLengthKeyKeyStreamDirection© 2012 EventHelix.com Inc. 9

3GPP SecuritySpecificationsEventHelix.com• telecommunication design• systems engineering• real-time and embedded systemsLTE Security• 33.401: System ArchitectureEvolution (SAE); Security architecture• 33.402: System ArchitectureEvolution (SAE); Security aspects ofnon-3GPPLawful Interception• 33.106: Lawful interceptionrequirements• 33.107: Lawful interceptionarchitecture and functions• 33.108: Handover interface forLawful InterceptionKey Derivation Function• 33.220: GAA: Generic BootstrappingArchitecture (GBA)Backhaul Security• 33.310: Network Domain Security(NDS); Authentication Framework(AF)Relay Node Security• 33.816: Feasibility study on LTE relaynode security (also 33.401)Home (e) Node B Security• 33.320: Home (evolved) Node BSecurity© 2012 EventHelix.com Inc. 10

Thank YouEventHelix.com• telecommunication design• systems engineering• real-time and embedded systemsThank you for visiting EventHelix.com. The following links provide more informationabout telecom design tools and techniques:LinksEventStudio System DesignerVisualEther Protocol AnalyzerTelecom Call FlowsTCP/IP Sequence DiagramsTelecom • Networking • SoftwareDescriptionSequence diagram based systems engineeringtool.Wireshark based visual protocol analysis andsystem design reverse engineering tool.GSM, SIP, H.323, ISUP, LTE and IMS call flows.TCP/IP explained with sequence diagrams.Real-time and embedded systems, call flows andobject oriented design articles.© 2012 EventHelix.com Inc. 11

3GPP LTE MAC Layer - EventHelix.com

Create successful ePaper yourself

Delete template?

Save as template?