Journal of the Korea Institute of Information Security & Cryptology (정보보호학회논문지)

Korea Institute of Information Security and Cryptology (한국정보보호학회)
권호 표지
DOI QR코드

DOI QR Code

Efficient mutual authentication and key distribution protocol for cdma2000 packet data service

cdma2000 패킷 데이터 서비스를 위한 효율적인 상호 인증과 키 분배 프로토콜

  • 신상욱 (한국전자통신연구원 정보보호연구본부) ;
  • 류희수 (한국전자통신연구원 정보보호연구본부)
  • Published : 2003.04.01
Download PDF
⟨ Previous Next ⟩

Abstract

In this paper, we propose an efficient mutual authentication and key distribution protocol for cdma2000 packet data service which uses Mobile U access method with DIAMETER AAA(Authentication, Authorization and Accounting) infrastructure. The proposed scheme provides an efficient mutual authentication between MN(Mobile Node) and AAAH(home AAA server), and a secure session-key distribution among Mobile If entities. The proposed protocol improves the efficiency of DIAMETER AAA and satisfies the security requirements for authentication and key distribution protocol. Also, the key distributed by the proposed scheme can be used to generate keys for packet data security over 1xEV-DO wireless interface, in order to avoid a session hijacking attack for 1xEV-DO packet data service.

본 논문에서는 DIAMETER AAA(Authentication, Authorization and Accounting) 하부 구조를 가지고 Mobile IP 액세스 기법을 사용하는 cdma2000 패킷 데이터 서비스에서 W(mobile node)와 AAAH(home AAA server)간의 상호 인증과 Mobile IP 개체들간에 안전한 세션키 분배를 위한 방법을 제안한다. 제안된 프로토콜은 DIAMETER AAA 하부 구조를 가정하며 c의 비효율성을 개선하고, 인증과 키 분배 프로토콜의 안전성 요구 사항들을 모두 만족한다. 또한 1xEV-DO에 대한 패킷 데이터 세션 하이재킹 공격을 방지하기 위해 제안된 기법에 의해 분배된 키를 1xEV-DO 무선 인터페이스 패킷 데이터 보안을 위한 키 생성에 적용한다.

Keywords

References

  1. 3GPP2 C.S00024 cdma2000 High Rate Packet Data Air Interface Specification
  2. 3GPP2 P.R0001 Wireless IP Architecture Based on IETF Protocols
  3. 3GPP2 P.S0001-A Wireless IP Network Standards
  4. RFC 1825 Security Architecture for the Internet Protocol R.Atkinson
  5. STOC'98 A modular approach to the design and analysis of authentication and key exchange protocols M.Bellare;R.Canetti;H.Krawczyk
  6. CRYPTO'93, LNCS v.773 Entity authentication and key distribution M.Bellare;P.Rogaway
  7. 3GPP2 TSG-S WG4 S4-20011203~003 cdma2000 Packet Data Security Assessment C.Carroll
  8. Work in Progress - Internet Draft Diameter Base Protocol Pat R.Calhoum;Haseeb Akhtar;Jari Arkko;Erik Guttman;Allan C.Rubens;Glez Zom
  9. RFC 2404 The Use of HMAC-SHA-1-96 within ESP and AH C.Madson
  10. 3GPP2 TSG-S WG4 S40-20020610-011 Enhanced Mobile IP Authentication and Shared Key Exchange protocol M.Marcovici;S.Mizikovsky
  11. RFC3220 IP Mobility Support for IPv4 C.Perkins(ed.)
  12. RFC 2865 Remote Authentication Dian In User Service(RADIUS) C.Rigney;S.Willens;A.Rubens;W.Simpson