Abstract-Wireless technologies such as the Wireless Local Area Network (WLAN), the Worldwide Interoperability for Microwave Access (WiMAX), and the Third-Generation (3G) mobile communications system complement each other to support a variety of services suited for the home, urban, and global environments. As roaming users expect a seamless handover (HO) experience when switching from one wireless network to another, fast and secure HO operations must be supported by the networks. In this paper, we present and analyze five reauthentication protocols for HOs between WiMAX and WLANs by subscribers of networks conforming to the 3G Partnership Project (3GPP) standards. Our proposed protocols achieve outstanding performance results compared to standard protocols in terms of reauthentication signaling traffic and reauthentication delay, while fulfilling essential HO security requirements such as the provision of mutual authentication and forward and backward secrecy.
SummaryInterworking third-generation (3G) mobile communications systems and wireless local area networks (WLANs) is advantageous for both service providers and end users. However, securing such interworking architectures is a challenging task. EAP-AKA is the security protocol adopted by 3GPP to achieve authentication in 3G-WLAN interworking architectures. This paper proposes enhancements to EAP-AKA to improve performance and security during re-authentication. A novel protocol named local fast re-authentication (LFR) is proposed to replace the reauthentication protocols in EAP-AKA. The EAP-AKA key hierarchy is restructured to suit the needs of LFR. Evaluations show that LFR is superior to the re-authentication protocols in EAP-AKA in terms of performance and security. LFR has been tested by the automated validation of internet security protocols and applications (AVISPA) security verification tool and proved to be secure.
Interworking Universal Mobile Telecommunication Systems (UMTS) and IEEE 802.11 wireless local area networks (WLANs) introduces new challenges in the design of secured and fast vertical handover (VH) protocols. VU operations must not compromise the security of the network. In addition, VH delays must be minimized to maintain the quality of service of the applications running on the User Equipment (UE). Reauthentication is normally required during UMTS-WLAN VU. Existing re-authentication protocols invoked in UMTS-WLAN VH are either inadequately secure or introduces unacceptable delays. This paper proposes couple of re-authentication protocols that reduce re-authentication delays during UMTS-WLAN VHs compared to existing protocols by substantially reducing message signaling. Additionally, they achieve secured key management and mutual authentication between the UE and authentication servers in the 3G Home Network.
Mobile Nodes (MNs) in the Mobile Ad hoc Network (MANET) employ multi-hop relaying techniques to exchange messages. These MNs are not globally reachable by nodes in the Internet. Adding Mobile IP protocol capabilities to MANETs grants the MNs the required Internet reachability. Several security and performance issues are introduced as a result of incorporating MANETs with Mobile IP. In this paper, we propose a secure and efficient multi-hop Mobile IP registration scheme for the MANET-Internet integrated architecture. Our proposed scheme is designed to defend against common security attacks affecting the integrated architecture. Additionally, the scheme outperforms closely competitive schemes reported in the literature in terms of registration delay.
scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.