3G-WLAN融合:漏洞、攻击可能性和安全模型

The Second International Conference on Availability, Reliability and Security (ARES'07) Pub Date : 2007-04-10 DOI:10.1109/ARES.2007.1

M. Sher, T. Magedanz

{"title":"3G-WLAN融合:漏洞、攻击可能性和安全模型","authors":"M. Sher, T. Magedanz","doi":"10.1109/ARES.2007.1","DOIUrl":null,"url":null,"abstract":"In this paper we present the vulnerability, threats and attacks for third generation (3G) networks converged with WLAN and propose the security model addressing the roaming and non-roaming security scenarios. Many threats against 3G network resources can be realised by attacking the WLAN access network, therefore it is important to identify the security requirements for 3G-WLAN interworking and choose a security solution that is robust and dynamic to different levels of WLAN access network. The proposed architecture is based on the extensible authentication protocol (EAP) for USIM authentication & key agreement (AKA) and authorization procedures, and secure tunnel establishment using IKEv2 (Internet key exchange) protocol to minimize security threats. We will also discuss the termination of fake or forge WLAN session to protect the user confidential information on vulnerable wireless link. The development is part of secure service provisioning (SSP) framework of IP multimedia system (IMS) at 3Gb Testbed of Fokus Fraunhofer","PeriodicalId":383015,"journal":{"name":"The Second International Conference on Availability, Reliability and Security (ARES'07)","volume":"203 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2007-04-10","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"13","resultStr":"{\"title\":\"3G-WLAN Convergence: Vulnerability, Attacks Possibilities and Security Model\",\"authors\":\"M. Sher, T. Magedanz\",\"doi\":\"10.1109/ARES.2007.1\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In this paper we present the vulnerability, threats and attacks for third generation (3G) networks converged with WLAN and propose the security model addressing the roaming and non-roaming security scenarios. Many threats against 3G network resources can be realised by attacking the WLAN access network, therefore it is important to identify the security requirements for 3G-WLAN interworking and choose a security solution that is robust and dynamic to different levels of WLAN access network. The proposed architecture is based on the extensible authentication protocol (EAP) for USIM authentication & key agreement (AKA) and authorization procedures, and secure tunnel establishment using IKEv2 (Internet key exchange) protocol to minimize security threats. We will also discuss the termination of fake or forge WLAN session to protect the user confidential information on vulnerable wireless link. The development is part of secure service provisioning (SSP) framework of IP multimedia system (IMS) at 3Gb Testbed of Fokus Fraunhofer\",\"PeriodicalId\":383015,\"journal\":{\"name\":\"The Second International Conference on Availability, Reliability and Security (ARES'07)\",\"volume\":\"203 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2007-04-10\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"13\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"The Second International Conference on Availability, Reliability and Security (ARES'07)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ARES.2007.1\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"The Second International Conference on Availability, Reliability and Security (ARES'07)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ARES.2007.1","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 13

摘要

本文介绍了与WLAN融合的第三代(3G)网络的漏洞、威胁和攻击，并提出了针对漫游和非漫游安全场景的安全模型。针对3G网络资源的许多威胁都可以通过攻击WLAN接入网来实现，因此明确3G-WLAN互联的安全需求，选择针对不同级别WLAN接入网的鲁棒性和动态性的安全解决方案非常重要。该架构基于可扩展认证协议EAP (extensible authentication protocol)，用于USIM的认证与密钥协议(AKA)和授权过程，并使用IKEv2 (Internet key exchange)协议建立安全隧道，以最大限度地减少安全威胁。我们还将讨论终止虚假或伪造的WLAN会话，以保护易受攻击的无线链路上的用户机密信息。该开发是Fokus Fraunhofer 3Gb试验台IP多媒体系统(IMS)安全服务供应(SSP)框架的一部分

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

3G-WLAN Convergence: Vulnerability, Attacks Possibilities and Security Model

In this paper we present the vulnerability, threats and attacks for third generation (3G) networks converged with WLAN and propose the security model addressing the roaming and non-roaming security scenarios. Many threats against 3G network resources can be realised by attacking the WLAN access network, therefore it is important to identify the security requirements for 3G-WLAN interworking and choose a security solution that is robust and dynamic to different levels of WLAN access network. The proposed architecture is based on the extensible authentication protocol (EAP) for USIM authentication & key agreement (AKA) and authorization procedures, and secure tunnel establishment using IKEv2 (Internet key exchange) protocol to minimize security threats. We will also discuss the termination of fake or forge WLAN session to protect the user confidential information on vulnerable wireless link. The development is part of secure service provisioning (SSP) framework of IP multimedia system (IMS) at 3Gb Testbed of Fokus Fraunhofer

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

The Second International Conference on Availability, Reliability and Security (ARES'07)

自引率

0.00%

发文量