An experimental security analysis of two satphone standards

Driessen, Benedikt; Hund, Ralf; Willems, Carsten; Paar, Christof; Holz, Thorsten

doi:10.1145/2535522

Cited by 5 publications

(8 citation statements)

References 14 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Firstly, we describe attacks in the existing public literature: a guess and determine attack presented as the preliminary cryptanalysis of the keystream [3], and an improved version in [4] that uses keystreams from multiple frames. Then we discuss the application of a generic time-memory attack to the cipher.…”

Section: Attacking A5-gmr1mentioning

confidence: 99%

“…Initialisation using K and E must be performed before a keystream segment of the required length can be generated and used for encryption or decryption of the frame. An outline of the initialisation process is provided in [3] with additional detail given in [4]. A good initialisation process should ensure that each (K,E) pair generates a distinct and unpredictable keystream sequence, and that multiple sequences produced with the same key but different frame numbers appear unrelated.…”

Section: Introductionmentioning

confidence: 99%

“…In this paper, we consider the description of A5-GMR-1 gleaned from [3] and [4]. We investigate vulnerabilities introduced by poor design choices in the initialisation process.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Initialisation flaws in the A5-GMR-1 satphone encryption algorithm

Bhartia

Simpson

2016

Proceedings of the Australasian Computer Science Week Multiconference

View full text Add to dashboard Cite

A5-GMR-1 is a synchronous stream cipher used to provide confidentiality for communications between satellite phones and satellites. The keystream generator may be considered as a finite state machine, with an internal state of 81 bits. The design is based on four linear feedback shift registers, three of which are irregularly clocked. The keystream generator takes a 64-bit secret key and 19-bit frame number as inputs, and produces an output keystream of length berween 2 8 and 2 10 bits.Analysis of the initialisation process for the keystream generator reveals serious flaws which significantly reduce the number of distinct keystreams that the generator can produce. Multiple (key, frame number) pairs produce the same keystream, and the relationship between the various pairs is easy to determine. Additionally, many of the keystream sequences produced are phase shifted versions of each other, for very small phase shifts. These features increase the effectiveness of generic time-memory tradeoff attacks on the cipher, making such attacks feasible. CCS Concepts•Security and privacy → Symmetric cryptography and hash functions; Block and stream ciphers; Cryptanalysis and other attacks;

show abstract

Section: Attacking A5-gmr1mentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Initialisation flaws in the A5-GMR-1 satphone encryption algorithm

Bhartia

Simpson

2016

Proceedings of the Australasian Computer Science Week Multiconference

View full text Add to dashboard Cite

show abstract

“…The Authentication process lies before the ciphering process, and it is a most important process in the GSM security, because it is ensured that the ciphering scheme achieved for the right party. There are many works took GSM security, some of them are only analytic study, and some of these studies are improvements of GSM security, and in the following section the most important related works are posted [4] and described the attacks over the IP networks and their suggested solutions to counter measures for the attacks in 2.5G and 3G Cellular IP Networks. Forsgren et al [5] Proposed Security and Trust of Public Key Cryptography Options for Host Identity Protocol to give verified identities to host using public key certificates and certificate-less public key cryptography (CL-PKC).…”

Section: Related Workmentioning

confidence: 99%

“…* The inverse of a point (x, y) is (x, −y), where −y is the additive inverse of y. For example, if we have a curve y 2 = x 3 − 4x, and p = 13, the inverse of (4, 2)is (4,11). Because 2+11 mod 13 = 0 * ECDLP: is a "hard" problem, equivalent to solving the discrete logarithm: • Q = k P, where Q, P belong to a prime curve.…”

Section: Ecc Propertiesmentioning

confidence: 99%

Design and Implementation to Authentication over a GSM System Using Certificate-Less Public Key Cryptography (CL-PKC)

Memon

Mohammed

Akhtar

et al. 2014

Wireless Pers Commun

View full text Add to dashboard Cite

Recent years, the mobile technology has experienced a great increment in the number of its users. The GSM's architecture provides different security features like authentication, data/signaling confidentiality and secrecy of user yet the channel is susceptible to replay and interleaved. It always remains relevant as it is important in all types of application. Global system for mobile (GSM) communications has become the most popular standard for digital cellular communication. The GSM security system depends on encryption, authentication algorithms and information from SIM card. In this research paper, we proposed the design and implementation of a new authentication scheme by using certificate-less public key cryptography (CL-PKC) over the GSM system was attempted to miss some system detail. This research paper, we also proposed the GSM system and its security and public key cryptography with a focus in the CL-PKC; the CL-PKC is a simple, useful and robust security scheme designed and implemented over GSM. Our approach is more efficient than other competing topologies. We solved the GSM problem in A3 algorithm such as eavesdropping and this problem solved by CL-PKC because of its robustness against this type of attack by providing mutual authentication make the system more secure.

show abstract

Enhanced Privacy and Authentication: An Efficient and Secure Anonymous Communication for Location Based Service Using Asymmetric Cryptography Scheme

Memon

Hussain

Akhtar

et al. 2015

Wireless Pers Commun

110

View full text Add to dashboard Cite

Past few years, the mobile technology and location based services have experienced a great increment in number of its users. The privacy issues related to these services are becoming main concerns because of the leakage of users' private information and contents. To prevent revelation of private information, many researchers have proposed several secure and authentication schemes which apply various technologies to provide integral security properties, such as symmetric encryption, digital signature, timestamp, etc. Unfortunately, some of these schemes still exhibit security and efficiency issues. In this research paper, we proposed an efficient and secure anonymous communication for location based service using asymmetric cryptography scheme over the wireless system was attempted missing some system detail. We also proposed the prevent user private information and secure communication by asymmetric cryptography scheme. We solved the wireless communication problem in A3 algorithm such as eavesdropping and this problem solved by asymmetric cryptography scheme because of its robustness against this type of attack by providing mutual authentication make the system more secure. Finally, performance and cost analysis show our scheme is more suitable for lowpower and resource limited wireless system and thus availability for real implementation. According to our security analysis and performance, we can prove that our proposed & Imran Memon asymmetric cryptography scheme is able to improve wireless communication system security and enhance efficiency in comparison to previous schemes.

show abstract

An experimental security analysis of two satphone standards

Cited by 5 publications

References 14 publications

Initialisation flaws in the A5-GMR-1 satphone encryption algorithm

Initialisation flaws in the A5-GMR-1 satphone encryption algorithm

Design and Implementation to Authentication over a GSM System Using Certificate-Less Public Key Cryptography (CL-PKC)

Enhanced Privacy and Authentication: An Efficient and Secure Anonymous Communication for Location Based Service Using Asymmetric Cryptography Scheme

Contact Info

Product

Resources

About