ericssonhistory.com

More documents

Recommendations

Info

Communications security in an all-IP worldLuis Barriga, Rolf Blom, Christian Gehrmann, and Mats NaslundThe increased use of the IP suite creates a strong need for comprehensivesecurity solutions. In an all-IP world, users will have connectivity viaresidential LANs, at work, at public kiosks or Internet cafes, at hotels, andwhile on the move, over the air via the mobile Internet.In this article, the authors exemplify the need for security in differentcommunications scenarios. They also give an overview of basic protectionmechanisms and protocols and describe how security has beenincorporated into various applications and products. Finally, they discussfuture trends in the field of security.IntroductionThe increased use of the Internet protocol(IP) suite creates a strong need for comprehensivesecurity solutions. Packet networks,such as the Internet and intranets, introducemany new security threats. Today, malicioususers can easily tap (eavesdrop) IP traffic,redirect traffic, insert false packets, modifypackets, mount denial of service attacks,and introduce harmful software into systems.One way of countering these attacksis to maintain strict control of access to thenetwork by restricting access to trustedusers. This kind of control can be achievedusing• firewalls to control packet flows at the networkborder; and• secure login procedures.Most corporations currently protect theirintranets in this way. However, it is usuallydifficult to maintain security in the networksimply by restricting access. In thefirst place, the main objective of the networkis to give easy and open access to the Internet.What is more, in a large network withmany users it is difficult to maintain strictcontrol of each user and each machine. Andsecurity-related problems proliferate asusers become mobile—users will soon enjoycontinuous, anywhere IP connectivity, employingmany different methods to accessthe Internet and intranets.To complement access control and obtainthe necessary level of security, the traffic itselfmust be protected. Cryptography providesthe basic techniques needed to buildsecure communications solutions. Protectionmechanisms authenticate users, encryptpackets, and protect them from beingmodified. Security mechanisms of this kindare already part of Ericsson's products. Forexample, the GSM system contains mechanismsfor authenticating users in the net-BOX A, ABBREVIATIONS3GPPA5/1AAAACCAESCADESDHCPEESSIESPGGSNGPRSGSMHLRHMACIETFIKEIPIPsecIPv4ISAKMPISPIVLANMACThird-generation Partnership ProjectStream-cipher in GSMAuthentication, authorizationand accountingAdvanced computercommunicationsAdvanced encryption standardCertificate authorityData encryption standardDynamic host configuration protocolEuropean Electronic SignatureStandardization InitiativeEncapsulation security payloadGateway GPRS support nodeGeneral packet radio serviceGlobal system for mobilecommunicationHome location registerKeyed-hashing for messageauthenticationInternet Engineering Task ForceInternet key exchangeInternet protocolIP securityIP version 4Internet security association and keymanagement protocolInternet service providerInitialization vectorLocal area networkMessage authentication codeNESSIENISTPKIPKIXPoPPOPRADIUSRC4RC5RSASASGSNSMGS/MIMESSHSSLTLSUDPURLVPNWAPWLANWPKIWTLSX.509New European schemes forsignatures, integrity, and encryptionNational Institute of Standards andTechnology (US)Public-key infrastructurePublic-key infrastructure (X.509)Point of presencePost office protocolRemote authentication dial-in userservicePopular stream cipherPopular block cipherRivest-Shamir-Adleman public-keysystemSecurity associationServing GPRS support nodeSecure mail gatewaySecure multipurpose Internet mailextensionSecure shellSecure socket layerTransport layer securityUser datagram protocolUniversal resource locatorVirtual private networkWireless application protocolWireless LANWireless PKIWireless TLSITU standard for public keycertificatesEricsson Review No. 2, 2000
work and for protecting traffic over the airlink. However, for a communication systemto use crypto-based security mechanisms,these mechanisms must be packaged intoprotocols and supported by key distributionprotocols or key infrastructures. Furthermore,the security mechanisms must nothinder usability. Obviously, the user of thecommunication system must also set up anduse the communication equipment correctly.In practice, however, this is a problem—misconfigurations often leave big holes inthe security system.It is difficult to build efficient and practicalsecurity systems. In particular, becauseof its size and availability to the public, theInternet constitutes a major security challenge.Notwithstanding, several protocolsand system architectures have been designedto protect IP traffic.ScenariosIn an all-IP world, users will have IP connectivityeverywhere (Figure 1): at home,they will connect via residential local areanetworks (LAN); at work, they will connectvia the corporate intranet; they will also beable to connect at public kiosks or Internetcafes and at hotels; and while on the road,they will be able to connect over the air (mobileInternet). The roaming experience thatthe cellular phone industry has given itsusers will also apply to IP users when, forexample, they temporarily use a foreign domainto access the Internet. Furthermore,thanks to wireless communications, userswill enjoy always-connected service (alwaysconnected, always online). Users will thusexperience seamless IP services when movingacross wireless and fixed access. The servicesthemselves will span across differentnetworks, allocating along their paths variousresources, such as proxies, mobilityagents, and brokers.Throughout this article, we use the termadministrative domain to denote an IP serviceprovider—either an operator or Internet serviceprovider (ISP). In the all-IP world, boththe user's IP device and the administrativedomain need to protect their resources frompotential attacks, since hostile mobile hostsin any domain might attack other mobilehosts or network nodes or abuse resources.To prevent this from happening, serviceproviders need a mechanism for regulatingaccess to their domains and for getting paid.The most straightforward mechanism forregulating access consists of building trustFigure 1An all-IP world In which IP is run over all kinds of access network—wireless or wireline aswell as core networks and intranets.relationships: each user, host, and service isassigned an Internet identity and associatedcredentials. In this way, any actor can beidentified and authorized to use a tesource.Service providers can then allocate resourcesto authenticated users and charge for theirusage. Roaming agreements between administrativedomains allow users to visit anduse foreign network resources. Arrangementsof this kind imply a certain amountof trust between administrative domains;that is, they must exchange information ontheir subscribers, in order to authorize andallocate resources.In an important business scenario, the administrativedomain is a corporate networkto which employees can connect when awayfrom the office. In this case, two separatemodels of trust relationships can be adoptedto provide secure remote access to the corporateintranet via the Internet.• The corporate domain signs an agreementwith a service provider that handles securetunnels between remote employees andthe corporate network.• If the enterprise can solely trust its employees,then only end-to-end security isacceptable, in which case employees musthandle secure tunnels from their IP devicesto the corporate intranet.Ericsson Review No. 2, 2000 97
Page 1: Ericsson 2/2000REVIEWTHE TELECOMMUN
Page 4 and 5: ContributorsIn this issueLuis Barri
Page 6 and 7: Ericsson Review is also published o
Page 8 and 9: Evolving from cdmaOne to third-gene
Page 10 and 11: Figure 2Operators Harmonization Agr
Page 12 and 13: more features, and greater reliabil
Page 14 and 15: Figure 7Ericsson's third-generation
Page 16 and 17: Figure 11Ericsson's timeline for ev
Page 18 and 19: Third-generation TDMAChristofer Lin
Page 20 and 21: TABLE 1 MODULATION AND CODING SCHEM
Page 22 and 23: Figure 3An example of a cell patter
Page 24 and 25: Figure 5Curves illustrating maximum
Page 26 and 27: TABLE 3. DYNAMIC PACKET DATA SIMULA
Page 28 and 29: erage can be achieved in existing c
Page 30 and 31: Business solutions for mobile e-com
Page 32 and 33: Figure 2Comparison of traditional a
Page 34 and 35: BOX B, THE E-COMMERCE TIMELINE1999E
Page 36 and 37: Figure 6Mobile e-Pay end-user servi
Page 38 and 39: Figure 8Access features with push-a
Page 40 and 41: AuthenticationTo verify that end-us
Page 42 and 43: BOX C, MARKET HARMONIZATIONOn Tuesd
Page 44 and 45: Figure 2The footprint of the RBS 22
Page 48 and 49: BOX B, SYMMETRIC KEY SYSTEMSGood sy
Page 50 and 51: Figure 4Construction of an ESP-prot
Page 52 and 53: Figure 7An X.500 database structure
Page 54 and 55: Figure 9GPRS VPN scenarios.Figure 1
Page 56 and 57: TRADEMARKSRC4 and RC4 are registere
Page 58 and 59: HIPERLAN type 2 for broadband wirel
Page 60 and 61: Figure 3Typical usage of communicat
Page 62 and 63: Figure 6Mapping of higher layer pac
Page 64 and 65: TABLE 1PHYSICAL LAYER MODES OF HIPE
Page 66 and 67: Queen City WaterfrontEMERGING PROJE
Page 68 and 69: TABLE 2. IMPORTANT PARAMETERS FOR N
Page 70: Previous issuesNo. 1,2000IPv6—The

ericssonhistory.com

Create successful ePaper yourself

Delete template?

Save as template?