臺灣博碩士論文加值系統

第三代(3G)行動通訊系統提供幾乎可全球性漫遊的廣大服務範圍，並且擁有非常完整的用戶管理系統，然而其受限於較低的資料傳輸速度(WCDMA最高的頻寬為2Mbps) 。無線區域網路(WLAN)提供熱點(Hot Spot)的服務範圍及較高的資料傳輸速度 (802.11a/g最高可達到54Mbps的頻寬)，但其服務範圍較小(僅約數百公尺)且無法提供全球性漫遊及行動管理的服務。從使用者的觀點來看，如果能夠將WLAN與3G整合起來，將會是一種更方便且吸引人的網路存取方式。當使用者高速移動時可使用3G的行動網路，當使用者慢速移動到某一特定地點時則可使用WLAN。然而現今整合WLAN與3G仍然有一些認證及安全方面的問題存在，例如:認證協定的效率問題、使用者的匿名性問題及帳單的否認性問題。
在本論文中，我們的研究方向以UMTS (Universal Mobile Telecommunications System)為主，首先我們將會探討由3GPP (3rd Generation Partnership Project)所定義3G/UMTS的認證協定以及整合WLAN與3G/UMTS時使用之認證協定，接下來我們將會提出一個於WLAN與3G/UMTS整合環境下具有不可否認性及區域性重認證的認證協定。區域性的重認證可以有效的改進原本每一次認證都需回到本籍網路所產生的時間延遲。另一方面，具有不可否認性的意義在於用戶可將需完全信任3G系統業者的假設刪除，同時網路服務提供者、3G客籍系統業者 (3G visited operator) 與3G本籍系統業者 (3G home operator)之間的信任關係也可以被刪除。換句話說，此具有不可否認性服務的認證協定可提供合法的憑證以預防3G系統業者對用戶產生帳單費用超收的欺騙行為, 並且可預防網路服務提供者與3G客籍系統業者對3G本籍系統業者產生帳單費用超收的欺騙行為。此外，我們也解決了原本在3GPP認證協定之中所存在的一些使用者匿名性的問題。

The third-generation (3G) mobile communication systems provide great coverage, completed subscriber management and nearly universal roaming. Nevertheless, 3G systems are subject to the low data rates (2Mbps highest for WCDMA). WLAN (Wireless Local Area Network) provides hot spot coverage with high data rates (reaches 54Mbps while 802.11 a/g), but is subject to short range (reaches 100m the furthest) and lacking a roaming and mobility support. From users’ point of view, the Integration of WLAN and 3G systems will provide a convenient and attractive way for user to access network. The users are able to access 3G mobile network while high speed traveling or access WLAN while moving slowly or entering a specific area. However, while integrating WLAN and 3G, there are still some problems should be concerned in terms of authentication and security, such as authentication efficiency, user identity privacy (anonymity) and repudiation problem.
In this thesis, we focus on the UMTS (Universal Mobile Telecommunications System). First, we review the authentication scheme for 3G/UMTS and WLAN and 3G/UMTS interworking which are specified by 3GPP (3rd Generation Partnership Project); moreover, we propose a robust localized authentication protocol with non-repudiation service for integrating WLAN and 3G/UMTS network. The localized re-authentication protocol can shorten the authentication time delay. On the other hand, with the non-repudiation service, the assumption that subscriber has to fully trust 3G home operator can be deleted, and the trust management among the independent WLAN operator, 3G visited operator, and 3G home operator can be eliminated. In other words, our proposed protocol provides legal evidences to prevent the 3G home operator from overcharging the subscribers, and also prevent the WLAN operator and 3G visited operator from overcharging the 3G home operator; furthermore, we also solve some user identity privacy problems in 3GPP authentication mechanism.

Chapter 1 Introduction 1
1.1 Research Motivation 1
1.2 Goals 2
Chapter 2 Related Theories and Schemes 4
2.1 Keyed-Hash Message Authentication Code (HMAC) 4
2.2 Digital Signature 5
2.3 Hash Chaining 6
Chapter 3 Literatures Review 7
3.1 UMTS Authentication and Key Agreement (AKA) 7
3.2 The 3GPP-WLAN Security Architecture 12
3.3 The EAP-AKA Authentication Mechanism 17
3.4 The EAP-AKA Fast Re-authentication Mechanism 20
Chapter 4 Proposed Robust Authentication Protocol with Non-repudiation Service 22
4.1 Notations 23
4.2 Protocols 24
4.2.1 Full Authentication Protocol 24
4.2.2 WLAN Fast Re-authentication Protocol 30
4.2.3 3GPP Visit Network PS Fast Re-authentication Protocol 32
4.2.4 3GPP Home Network PS Fast Re-authentication Protocol 33
4.3 Advantages 33
4.4 Security Analysis 34
4.5 Comparisons 39
Chapter 5 Conclusions and Future Works 41
5.1 Conclusions 41
5.2 Future Works 41
Bibliography 43
Vita 49

[1] 3GPP, Tech. Spec. Group, Service and System Aspects, “3G Security; Wireless Local Area Network (WLAN) interworking security (release 6),” Tech. Spec. 3GPP TS 33.234 V. 6.0.0 (2004-03), 2004.
[2] Geir M. Koien and Thomas Haslestad, “Security Aspects of 3G-WLAN Interworking,” IEEE Communications Magazine, 2003, Vol. 41, No. 5, pp. 82-88.
[3] Yuh-Min Tseng, Chou-Chen Yang and Jiann-Haur Su, “An Efficient Authentication Protocol for Integrating WLAN and Cellular Networks,” Advanced Communication Technology, The 6th International Conference on, 2004, pp. 416–420.
[4] G. Kambourakis, A. Rouskas, G. Kormentzas and S. Gritzalis, “Advanced SSL/TLS-based authentication for secure WLAN-3G interworking,” Communications, IEE Proceedings, 2004, Vol. 151, pp. 501–506.
[5] Lein Harn and Wen-Jung Hsin, “On the Security of Wireless Network Access with Enhancements,” Proceedings of the 2003 ACM workshop on Wireless security, 2003, pp. 88–95.
[6] H.Y. Lin and L. Harn, “Authentication protocols with nonrepudiation services in personal communication systems,” IEEE Communications Letters, 1999, Vol. 3, No. 8, pp. 236–238.
[7] L. Lamport, “Password authentication with insecure communication,” Communication of ACM, 1981, Vol. 24, No. 11, pp. 770–772.
[8] NIST FIPS PUB 186-1, Digital Signature Standard (DSS), Dec. 15, 1998.
[9] 3GPP, Tech. Spec. Group, Service and System Aspects, “3G Security; Security Architecture (release 6),” Tech. Spec. 3GPP TS 33.102 V. 6.2.0 (2004-09), 2004.
[10] J. Arkko and H. Haverinen, “Extensible Authentication Protocol Method for UMTS Authentication and Key Agreement (EAP-AKA),” draft-arkko-pppext-eap-aka-14, IETF, Nov. 2004.
[11] C. de Laat, G. Gross, L. Gommans, and J. Vollbrecht, D. Spence, “Generic AAA Architecture,” RFC 2903, IETF, Aug 2000.
[12] L. Blunk, and J. Vollbrecht, “PPP Extensible Authentication Protocol (EAP),” RFC 2284, IETF, Mar 1998.
[13] “Wireless LAN media access control (MAC) and physical layer (PHY) specifications”, ANSI/IEEE Std. 802.11:1999 (E) Part 11, ISO/IEC 880211, 1999.
[14] IEEE Std 802.11i/D7.0, October 2003: “Draft Supplement to Standard for Telecommunications and Information Exchange Between Systems – LAN/MAN Specific Requirements – Part 11: Wireless Medium Access Control (MAC) and physical layer (PHY) specifications: Specification for Enhanced Security”
[15] IEEE Std, 802.1X-2001, “IEEE Standard for Local an Metropolitan Area Networks—Port-Based Network Access Control,” July 2001.
[16] Haverinen, H and Salowey, J: “EAP-SIM authentication”.: < draft-haverinen-pppext-eap-sim-15.txt>, November 2004:.
[17] IETF RFC 2716, October 1999: “PPP EAP TLS Authentication Protocol”.
[18] Paul Funk: “EAP MD5 Authentication”. March 2003
[19] RFC 2486, January 1999: "The Network Access Identifier".
[20] “The Keyed-Hash Message Authentication Code (HMAC)”. Federal Information Processing Standards Publication. Draft. 2001.
[21] Juha Korhonen, Introduction to 3G mobile communications, Artech House, 2003.
[22] 3GPP, Tech. Spec. Group, Service and System Aspects, “Feasibility study on 3GPP system to Wireless Local Area Network (WLAN) interworking (release 6),” Tech. Spec. 3GPP TS 22.934 V. 6.2.0 (2003-09), 2003.
[23] 3GPP, Tech. Spec. Group, Svcs. and Sys. Aspects, “General Packet Radio Service (GPRS); Service Description,” Tech. Spec. 3G TS 23.060 V. 6.0.0 (2004-09), 2004.
[24] H. Holma and A. Toskala, Eds., WCDMA for UMTS, Wiley, 2000.
[25] 3GPP, Tech. Spec. Group, Core Network, “GPRS Tunneling Protocol (GTP) across the Gn and Gp Interface,” Tech. Spec. 3G TS 29.060 v. 6.6.0 (2004-09), 2004.
[26] 3GPP, Tech. Spec. Group, Service and System Aspects, “3GPP system to Wireless Local Area Network (WLAN) interworking; System description (release 6),” Tech. Spec. 3GPP TS 23.234 V. 6.1.0 (2004-06), 2004.
[27] Krawczyk, H., Bellare, M., and Canetti, R. “Keyed-Hashing for Message Authentication”. Internet Engineering Task Force, Request for Comments (RFC) 2104. February 1997.
[28] Madson, C., and Glenn, R. “The use of HMAC-MD5-96 within ESP and AH”. Internet Engineering Task Force. Request for Comments (RFC) 2403. November 1998.
[29] Madson, C., and Glenn, R. “The use of HMAC-SHA-1-96 within ESP and AH”. Internet Engineering Task Force. Request for Comments (RFC) 2404. November 1998.
[30] A.K. Salkintzis, “Interworking Techniques and Architectures for WLAN/3G Integration Toward 4G Mobile Data Networks,” IEEE Wireless Communications, 2004, Vol. 11, No. 3, pp. 50–61.
[31] Chrisos Xenakis and Lazaros Merakos. “ Security in third generation mobile networks”, Computer Communications, 2004, Vol. 27, Issue:7, pp. 308–313.
[32] Anderson, R., Manifavas, C., and Southerland, C., “NetCard-A Practical Electronic Cash System”. Proc. International Workshop on security Protocols. Cambridge, UK. 1996, pp. 49–57.
[33] Gennaro, R., and Rohatgi, P. “How to Sign Digital Streams”. Advances in Cryptography-Crypto’97. pp.180–197.
[34] Harn. L., and Lin, H. “A Non-repudiation Metering Scheme”. IEEE Communication Letters. 2001, Vol 5. No 12.
[35] Koien, G.M. “An introduction to access security in UMTS” IEEE Wireless Communications, 2004, Vol. 11, Issue: 1, pp.8–18.
[36] C. F. Grecas, S. I. Maniatis and I. S. Venieris, “Introduction of the Asymmetric Cryptography in GSM, GPRS, UMTS, and Its Public Key Infrastructure Integration,” Mobile Networks and Applications, 2003, Vol. 8, No. 2, pp. 145–150.
[37] T. ElGamal, “A public-key cryptosystem and a signature scheme based on discrete logarithms,” IEEE Transactions on Information Theory, 1985, Vol. 31, No. 4, pp. 469–472.
[38] W. A. Arbaugh, N. Shankar, Y.C. J. Wan, “Your 802.11 Wireless Network has No Clothes,” IEEE Wireless Communications, 2002, Vol. 9, No. 6, pp. 44–51.
[39] Minghui Shi, Xuemin Shen, and Mark, J.W. “IEEE802.11 Roaming and Authentication in Wireless LAN/Cellular Mobile Networks”, IEEE Wireless Communications, 2004, Vol, 11, Issue: 4, pp.66–75.
[40] Phone Lin, Yi-Bing Lin, Vincent Feng, Yen-Cheng Lai, “GPRS-based WLAN authentication and auto-configuration” Journal of Computer and Communications, 2004, Vol. 27, Issue: 8, pp. 739–742.
[41] 3GPP, Tech. Spec. Group, Service and System Aspects, “3GPP system to Wireless Local Area Network (WLAN) interworking; Functional and architectural definition (release 6),” Tech. Spec. 3GPP TS 23.934 V. 1.0.0 (2002-08), 2002.
[42] M. Buddhikot, G. Chandrannmenon, S. Han, Y. W. Lee, S. Miller and L. Salgarelli, “Integration of 802.11 and Third-Generation Wireless Data Networks,” in Proc. of Twenty-Second Annual Joint Conference of the IEEE Computer and Communications Societies (INFOCOM 2003), 2003, pp. 503–512.
[43] M. Buddhikot, G. Chandrannmenon, S. Han, Y. W. Lee, S. Miller and L. Salgarelli, “Integration of 802.11 and Third-Generation Wireless Data Networks,” in Proc. of Twenty-Second Annual Joint Conference of the IEEE Computer and Communications Societies (INFOCOM 2003), 2003, pp. 503–512.
[44] Rose, G.; Koien, G.M.; “Access security in CDMA2000, including a comparison with UMTS access security”, IEEE Wireless Communications, 2004, Vol. 11, Issue: 1, pp. 19–25.
[45] T. Newe and T. Coffey, “Security Protocol for 2G and 3G Wireless Communication”, ACM International Conference Proceeding Series, Proceeding of the 1st international symposium on Information and communication technologies, 2003, pp. 335–340.
[46] P. Prasithsangaree and P. Krishnamurthy., “A New Authentication Mechanism for Loosely Coupled 3G-WLAN Integrated Networks,” IEEE Vehicular Technology Conference, 2004, pp. 2998–3003.
[47] Muxiang Zhang and Yuguang Fang, “Security Analysis and Enhancements of 3GPP Authentication and Key Agreement Protocol,” IEEE Transactions on Wireless Communications, 2005, Vol. 4, No. 2, pp. 734–742.