基于密钥参数加密的LTE/SAE X2切换密钥管理改进

2014 Ninth International Conference on P2P, Parallel, Grid, Cloud and Internet Computing Pub Date : 2014-11-08 DOI:10.1109/3PGCIC.2014.73

Qinshu Xiao, Wen’an Zhou, Baojiang Cui, Lingrong Li

{"title":"基于密钥参数加密的LTE/SAE X2切换密钥管理改进","authors":"Qinshu Xiao, Wen’an Zhou, Baojiang Cui, Lingrong Li","doi":"10.1109/3PGCIC.2014.73","DOIUrl":null,"url":null,"abstract":"The security of handover key management in Long Term Evolution (LTE) /System Architecture Evolution (SAE) has been a popular topic in recent years. In this paper we first describe the security architecture and key hierarchy of LTE/SAE, clarifying security requirements of key management in handover. Next, we analyze security of key management in X2 handover (intra-MME handover), and point out the current key management mechanism in X2 handover only satisfy two-hops forward security and one-hop backward security, but not one-hop security. And then, aimed at the security vulnerability of lacking one-hop forward security in current X2 handover key management, we proposed a new scheme for key management in X2 handover based on ciphering some key parameters with the local master root key. At last, the proposed new scheme is analyzed under three adversary models. The analysis shows that one-hop forward security and one-hop backward security could be maintained in our new proposal.","PeriodicalId":395610,"journal":{"name":"2014 Ninth International Conference on P2P, Parallel, Grid, Cloud and Internet Computing","volume":"140 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2014-11-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"12","resultStr":"{\"title\":\"An Enhancement for Key Management in LTE/SAE X2 Handover Based on Ciphering Key Parameters\",\"authors\":\"Qinshu Xiao, Wen’an Zhou, Baojiang Cui, Lingrong Li\",\"doi\":\"10.1109/3PGCIC.2014.73\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The security of handover key management in Long Term Evolution (LTE) /System Architecture Evolution (SAE) has been a popular topic in recent years. In this paper we first describe the security architecture and key hierarchy of LTE/SAE, clarifying security requirements of key management in handover. Next, we analyze security of key management in X2 handover (intra-MME handover), and point out the current key management mechanism in X2 handover only satisfy two-hops forward security and one-hop backward security, but not one-hop security. And then, aimed at the security vulnerability of lacking one-hop forward security in current X2 handover key management, we proposed a new scheme for key management in X2 handover based on ciphering some key parameters with the local master root key. At last, the proposed new scheme is analyzed under three adversary models. The analysis shows that one-hop forward security and one-hop backward security could be maintained in our new proposal.\",\"PeriodicalId\":395610,\"journal\":{\"name\":\"2014 Ninth International Conference on P2P, Parallel, Grid, Cloud and Internet Computing\",\"volume\":\"140 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2014-11-08\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"12\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2014 Ninth International Conference on P2P, Parallel, Grid, Cloud and Internet Computing\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/3PGCIC.2014.73\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2014 Ninth International Conference on P2P, Parallel, Grid, Cloud and Internet Computing","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/3PGCIC.2014.73","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 12

摘要

长期演进(LTE) /系统架构演进(SAE)技术中切换密钥管理的安全性是近年来研究的热点问题。本文首先描述了LTE/SAE的安全体系结构和密钥层次结构，阐明了密钥管理在切换中的安全要求。其次，分析了X2切换(intra-MME切换)中密钥管理的安全性，指出当前X2切换中的密钥管理机制只满足两跳前向安全性和一跳后向安全性，而不满足一跳安全性。然后，针对当前X2切换密钥管理中缺乏前一跳安全性的安全漏洞，提出了一种基于本地主根密钥对部分密钥参数进行加密的X2切换密钥管理新方案。最后，在三种对手模型下对新方案进行了分析。分析表明，新方案可以保持一跳前向安全性和一跳后向安全性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

An Enhancement for Key Management in LTE/SAE X2 Handover Based on Ciphering Key Parameters

The security of handover key management in Long Term Evolution (LTE) /System Architecture Evolution (SAE) has been a popular topic in recent years. In this paper we first describe the security architecture and key hierarchy of LTE/SAE, clarifying security requirements of key management in handover. Next, we analyze security of key management in X2 handover (intra-MME handover), and point out the current key management mechanism in X2 handover only satisfy two-hops forward security and one-hop backward security, but not one-hop security. And then, aimed at the security vulnerability of lacking one-hop forward security in current X2 handover key management, we proposed a new scheme for key management in X2 handover based on ciphering some key parameters with the local master root key. At last, the proposed new scheme is analyzed under three adversary models. The analysis shows that one-hop forward security and one-hop backward security could be maintained in our new proposal.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2014 Ninth International Conference on P2P, Parallel, Grid, Cloud and Internet Computing

自引率

0.00%

发文量