Security Analysis of Handover Key Management in 4G LTE/SAE Networks

Han, Chan-Kyu; Choi, Hyoung-Kee

doi:10.1109/tmc.2012.242

Cited by 66 publications

(66 citation statements)

References 20 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Therefore, an adversary can leave the Target eNB desynchronized and the session keys of the next handover processes vulnerable to compromise, then the adversary can decrypt all messages between the UE and eNB, this is known as the desynchronizing attack [10], [20].…”

Section: Security Drawbacks Of the X2 Handovermentioning

confidence: 99%

“…In 2014, Han and Choi [10] propose a scheme to overcome the desynchronization attack of the handover process in the LTE network. An algorithm to derive the key based on specific minimal interval time has introduced.…”

Section: Related Workmentioning

confidence: 99%

“…Moreover, the MME provides the Serving eNB through S1 interface the recent parameters as clear text to generate a new session key to perform the handover process with the UE [3]. Subsequently, once the adversary acquires these parameters, the adversary using a rogue base station can disrupt and modify the refresh values of the authentication parameters, this is known as the desynchronizing attack [6], [10].…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Synchronous Authentication Key Management Scheme for Inter-eNB Handover over LTE Networks

Nashwan¹

2017

ijacsa

View full text Add to dashboard Cite

Abstract-Handover process execution without active session termination is considered one of the most important attribute in the Long Term Evolution (LTE) networks. Unfortunately, this service always is suffered from the growing of security threats. In the Inter-eNB handover, an attacker may exploit these threats to violate the user privacy and desynchronize the handover entities. Therefore, the authentication is the main challenge in such issue. This paper proposes a synchronous authentication scheme to enhance the security level of key management during Inter-eNB handover process in LTE networks. The security analysis proves that the proposed scheme is secure against the current security drawbacks with perfect backward/forward secrecy. Furthermore, the performance analysis in terms of operations cost of authentication and bandwidth overhead demonstrates that the proposed scheme achieves high level of security with desirable efficiency. Keywords-LTE network; X2 handover; horizontal and vertical key derivations; desynchronizing attack

show abstract

Section: Security Drawbacks Of the X2 Handovermentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Synchronous Authentication Key Management Scheme for Inter-eNB Handover over LTE Networks

Nashwan¹

2017

ijacsa

View full text Add to dashboard Cite

show abstract

“…As eNodeBs are exposed to the public locations and the internet-protocol-architecture nature of the network, handover-key management process is vulnerable to attacks deployed by bogus eNodeBs [5]. Such attacks are referred to as desynchronization attacks [6], [7].…”

Section: Introductionmentioning

confidence: 99%

“…[6], [10], [11]. In [6], a mathematical model was developed to represent the average number of exposed packages (NEP) between two root key updates and the average value of signaling overhead rate (SOR) 3 . A heuristic algorithm was also proposed in [6] to search for an optimal root KUI based on empirical data.…”

Section: Introductionmentioning

confidence: 99%

On the Handover Security Key Update and Residence Management in LTE Networks

Vien

Lê

Yang

2017

2017 IEEE Wireless Communications and Networking Conference (WCNC)

View full text Add to dashboard Cite

Abstract-In LTE networks, key update and residence management have been investigated as an effective solution to cope with desynchronization attacks in mobility management entity (MME) handovers. In this paper, we first analyse the impacts of the key update interval (KUI) and MME residence interval (MRI) on the handover performance in terms of the number of exposed packets (NEP) and signaling overhead rate (SOR). By deriving the bounds of the NEP and SOR over the KUI and MRI, it is shown that there exists a tradeoff between the NEP and the SOR, while our aim is to minimise both of them simultaneously. This accordingly motivates us to propose a multiobjective optimisation problem to find the optimal KUI and MRI that minimise both the NEP and SOR. By introducing a relative importance factor between the SOR and NEP along with their derived bounds, we further transform the proposed optimisation problem into a singleobjective optimisation problem which can be solved via a simple numerical method. In particular, the results show that a higher accuracy of up to 1 second is achieved with the proposed approach while requiring a lower complexity compared to the conventional approach employing iterative searches.

show abstract

Novel secure VPN architectures for LTE backhaul networks

Liyanage

Kumar

Ylianttila

et al. 2016

Security Comm. Networks

View full text Add to dashboard Cite

In this paper, we propose two secure virtual private network architectures for the long-term evolution backhaul network. They are layer 3 Internet protocol (IP) security virtual private network architectures based on Internet key exchange version 2 mobility and multihoming protocol and host identity protocol. Both architectures satisfy a complete set of 3GPP backhaul security requirements such as authentication, authorization, payload encryption, privacy protection, and IP-based attack prevention. The security analysis and simulation results verify that the proposed architectures are capable enough to protect long-term evolution backhaul traffic against various IP-based attacks.The LTE transport network contains three segments, namely, radio access, backhaul, and core networks. The backhaul network further subdivides into two sections: access and aggregation networks. Figure 1 illustrates a simple LTE transport network.The access network connects eNBs sites to aggregation nodes. Usually, it has a tree and/or chain topology. The aggregation network very often has a ring and/or mesh topology. It is normally terminated at the core network where S-GWs and MME devices are located. Hence, the backhaul network extends from the first transport equipment connecting cell sites (e.g., eNBs sites) to the transport aggregation equipment connecting central sites (e.g., S-GWs/MME sites) [12]. In addition, the LTE backhaul network contains several traffic transport interfaces (e.g., S1 and X2). Security issues of long-term evolution backhaul network3GPP specifications propose an entirely new flatten and all-IP-based architecture for the LTE backhaul network. It distributes some of the control functionality throughout the network. Hence, it pushes more intelligence to end nodes such as eNBs. These properties redefine the security and other service requirements of the LTE backhaul network.Long-term evolution networks face new security threats that did not exist before or were harder to exploit in previous 2G/3G mobile backhaul networks. The security threats originate at various sections of LTE network, namely, customer nodes, backhaul network, customer provider interface network, radio access network, and core network. Hence, it is necessary to implement dedicated security mechanisms in each section to avoid these potential threats. This research focuses on the possible threats only on the Security Comm. Networks 2016; 9:1198-1215

show abstract

Security Analysis of Handover Key Management in 4G LTE/SAE Networks

Cited by 66 publications

References 20 publications

Synchronous Authentication Key Management Scheme for Inter-eNB Handover over LTE Networks

Synchronous Authentication Key Management Scheme for Inter-eNB Handover over LTE Networks

On the Handover Security Key Update and Residence Management in LTE Networks

Novel secure VPN architectures for LTE backhaul networks

Contact Info

Product

Resources

About