Improving LTE EPS-AKA using the security request vector

Apostol, Cristian-Gabriel; Racuciu, Ciprian

doi:10.1109/ecai.2015.7301207

Cited by 3 publications

(2 citation statements)

References 9 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Therefore, a contradiction occurs when a HSS cannot retrieve the IMSI, implying that it cannot read the messages from a UE at all. In [5], a solution was proposed to prevent DoS attacks that UE is required to attach its physical address to the authentication request.…”

Section: Related Workmentioning

confidence: 99%

“…Table 1 summarizes the length of authentication parameters [14]. For EPS-AKA, the bandwidth requirement [18] is given by BW EP S−AKA = (963 + 608n) N avg,AEP H (5) where N avg,AEP H is the average number of authentication event per HSS. Similarly, for the proposed TIA-AKA, the bandwidth requirement is given by where N avg,AEP M is the average number of authentication event per MME.…”

Section: Proposed Tia-akamentioning

confidence: 99%

See 1 more Smart Citation

Temporary Internet Access for Authentication and Key Agreement for LTE Networks

Xie

2018

Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering

View full text Add to dashboard Cite

Evolved Packet System-Authentication and Key Agreement (EPS-AKA) is the security protocol in Long-Term Evolution (LTE). However, it is still vulnerable to user identity attacks and fake eNBs. Efficient EPS-AKA (EEPS-AKA) was proposed with some improvements. Nevertheless, the EEPS-AKA is vulnerable to denial-of-service (DoS) attacks and fake eNBs, despite of some minor flaws in its procedures. In this paper, we propose Temporary Internet Access (TIA)-AKA to: (1) prevent user identity disclosure by implementing some additional steps, which allows a user equipment (UE) to request a temporary UE identity to access Internet; and (2) authenticate the Mobility Management Entity (MME) through the validity of the assigned IP address. Physical address and simple password exponential key exchange (SPEKE) method are combined into the proposed TIA-AKA. Efficiency analysis suggests the TIA-AKA provides a fully protection on the user identity and prevent the DoS attack, at the expense of increased bandwidth consumption and processing delay.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Proposed Tia-akamentioning

confidence: 99%