摘要:
假冒和竊聽攻擊是無線通信面臨的主要威脅。在個(gè)人通信系統(tǒng)中,為了對(duì)無線鏈路提供安全保護(hù),必須對(duì)鏈路上所傳送的數(shù)據(jù)/話音進(jìn)行加密,而且在用戶與服務(wù)網(wǎng)絡(luò)之間必須進(jìn)行相互認(rèn)證。近年來,人們?cè)诓煌囊苿?dòng)通信網(wǎng)絡(luò)(如GSM,IS-41,CDPD,Wireless LAN等)中提出了許多安全協(xié)議。然而,這些協(xié)議在個(gè)人通信環(huán)境中應(yīng)用時(shí)存在不同的弱點(diǎn)。本文基于個(gè)人通信系統(tǒng)的雙鑰保密與認(rèn)證模型,設(shè)計(jì)了用戶位置登記認(rèn)證協(xié)議;并采用BAN認(rèn)證邏輯對(duì)協(xié)議的安全性進(jìn)行了形式化證明,也對(duì)協(xié)議的計(jì)算復(fù)雜性進(jìn)行了定性分析。分析表明,所提出的協(xié)議與現(xiàn)有的協(xié)議相比具有許多新的安全特性。
Abstract:
Impersonation and eavesdropping are the crucial threats in wireless communication systems. In personal communication systems (PCS), it is necessary to provide security protection on the voice/data transmitted over wireless links, and perform mutual authentication between mobile user and serving network. Recently, many protocols are proposed for different mobile networks, such as GSM, IS-41, CDPD and wireless LAN. However, these protocols have different weakness when they are applied in PCS environment. Based on the public-key PA
model proposed by M.J. Beller, et al.(1993), this paper presents an authentication protocol for
mobile user registration. Then the formalized security proof of the protocol using BAN authen-
tication logic, and the qualitative analysis about its computing complexity are given. Results show that many new security features are added to the proposed protocols when it is compared with the protocols available.