Dependability Analysis of 5G-AKA Authentication Service From Server and User Perspectives

Jiang, Lili; Chang, Xiaolin; Bai, Jing; Mišić, Jelena; Chen, Zhi

doi:10.1109/access.2020.2993111

Cited by 11 publications

(6 citation statements)

References 25 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In cell coverage, the eNB uses the C-RNTI to update the location of UE. e C-RNTI is constant in the same cell coverage area, whereas it changes if the UE moves from one coverage area to another as shown in Figure 2 [17,18].…”

Section: User and Location Privacymentioning

confidence: 99%

A Novel Variable Pseudonym Scheme for Preserving Privacy User Location in 5G Networks

Saeed

Mokhtar

et al. 2022

Security and Communication Networks

View full text Add to dashboard Cite

Due to the development in 5G mobile communications, user privacy becomes the main challenge, especially with the multiplicity of services and applications that can be accessed. Location privacy is related to the user privacy in terms of the possibility of tracking and unwanted advertisements, as well as the possibility of exposure to suspicious activities and terrorist attacks based on the user location. Accordingly, previous mobile systems use pseudonyms instead of a permanent identity to preserving the user’s location privacy in mobile networks, by what is known as the Cellular Radio Network Temporary Identifiers (C-RNTIs). The C-RNTI protects the user privacy relatively, but it faces some problems due to the clear text of the user in CRNI exchange, which will make the user easily trackable by man-in-the-middle attack. This article aims at proposing a new algorithm that improves the user’s location privacy and enhances the capabilities of the 5G infrastructure in terms of confidentiality and privacy. The idea is based on the use of a novel variable pseudonym (V-RNTI) algorithm that acts as a radio channel identifier for the user, which improves the allocation of pseudonyms to identify users. The proposed algorithm uses different V-RNTI values by the UE and can be changed frequently to improve the pseudonym allocation procedure. This approach can be implemented in 3GPP standard architecture by upgrading UEs and eNB by minor modifications. During this study, the proposed 5G V-RNTI authentication protocol model was built. And then, the automated analysis of the protocol model is performed by using ProVerif Model Checker. The results showed that the model works well without any noticeable problems.

show abstract

Section: User and Location Privacymentioning

confidence: 99%

A Novel Variable Pseudonym Scheme for Preserving Privacy User Location in 5G Networks

Saeed

Mokhtar

et al. 2022

Security and Communication Networks

View full text Add to dashboard Cite

show abstract

“…Conversely, some researchers have assumed the same architecture of 4G for 5G networks with new proposals for enhanced user identity privacy. Two groups are working on security architecture and AKA proposal in 5G using the standard guideline [9]. Low computation complexity and communication overhead have been achieved due to the consideration of similar security architecture for the previous generations; the proposal can also fit easily in the preceding generations and the current architecture.…”

Section: Figure 1: Authentication and Key Agreement (Aka) In 4gmentioning

confidence: 99%

“…(8) The sequence number SQN UE is updated, and the IK, CK, and response RES are computed. (9) The VMSI updates to s.V NEW . (10) The keys IK and CK are stored in the UE, and the RES is sent back to the MME.…”

Section: Algorithmmentioning

confidence: 99%

Preserving Privacy of User Identity Based on Pseudonym Variable in 5G

Saeed¹,

Hasan²,

Hassan³

et al. 2022

Computers, Materials &Amp; Continua

View full text Add to dashboard Cite

The fifth generation (5G) system is the forthcoming generation of the mobile communication system. It has numerous additional features and offers an extensively high data rate, more capacity, and low latency. However, these features and applications have many problems and issues in terms of security, which has become a great challenge in the telecommunication industry. This paper aimed to propose a solution to preserve the user identity privacy in the 5G system that can identify permanent identity by using Variable Mobile Subscriber Identity, which randomly changes and does not use the permanent identity between the user equipment and home network. Through this mechanism, the user identity privacy would be secured and hidden. Moreover, it improves the synchronization between mobile users and home networks. Additionally, its compliance with the Authentication and Key Agreement (AKA) structure was adopted in the previous generations. It can be deployed efficiently in the preceding generations because the current architecture imposes minimal modifications on the network parties without changes in the authentication vector's message size. Moreover, the addition of any hardware to the AKA carries minor adjustments on the network parties. In this paper, the ProVerif is used to verify the proposed scheme.

show abstract

“…When UEA wants to deliver message M to UEB by employing symmetric encryption and decryption, M passes through RANA-UPFA-ECA-DN-ECB-UPFB-RANB to UEB. The message delivery consists of two stages: session establishment 1 and message transmission 2 .…”

Section: Symmetric Cryptographymentioning

confidence: 99%

“…In a 5G network, when user equipment (UE) is switched on and connected to a base station (BS), the 5G core (5GC) of this network will authenticate this UE [1,2]. After authentication, the 5GC provides encryption and decryption services individually in its access stratum (AS) and non-access stratum (NAS) [3], aiming to confirm UE's security and prevent data from leakage when packets are transmitted via these two stratums.…”

Section: Introductionmentioning

confidence: 99%

Hybrid Intelligent Security Mechanism for Data Transmission among UPFs belonging to Different 5G Networks

Leu

Liu

et al. 2022

Preprint

View full text Add to dashboard Cite

Recently, 5G networks have gradually surrounded our living environments to color our everyday lives and make our daily activities more convenient than before. However, in 5G networks, packet P transmitted from local UPFA of a 5G network, e.g., 5G-A, to UPFB in P’s destination 5G network, e.g., 5G-B, is not secure, even not encrypted, particularly via the Internet, A ≠ B. This conducts a risk of data leakage along the connection established between UPFA and UPFB. To solve this problem, in this study, we propose an architecture that encrypts/decrypts P to prevent it from being attacked. P is encrypted by an edge computer, e.g., ECA in 5G-A before it is sent to its destination, and decrypted by another edge computer, e.g., ECB in 5G-B. In this paper, the scenario includes data transmission between two users or among n-party users, n > 2. For the former, the cryptography systems used are symmetric and asymmetric encryption/decryption approaches. For the n-party scheme, we adopt Initial Key Agreement (IKA) mechanism which employs Upflow and Downflow processes to establish a secret key for all participating ECs. Besides, message authentication code, and time stamp are also utilized to enhance the security level of data transmission. Our analyses show that this proposed approach can effectively avoid some types of attacks.

show abstract

Dependability Analysis of 5G-AKA Authentication Service From Server and User Perspectives

Cited by 11 publications

References 25 publications

A Novel Variable Pseudonym Scheme for Preserving Privacy User Location in 5G Networks

A Novel Variable Pseudonym Scheme for Preserving Privacy User Location in 5G Networks

Preserving Privacy of User Identity Based on Pseudonym Variable in 5G

Hybrid Intelligent Security Mechanism for Data Transmission among UPFs belonging to Different 5G Networks

Contact Info

Product

Resources

About