摘要
为了保护用户身份隐私,提出一种用户身份保密加强的LTE认证与密钥协商方案。通过分析EPS AKA的具体流程以及LTE认证与密钥协商(AKA)协议机制,发现其存在安全缺陷,提出了用户身份保密AKA(UICE-AKA)方案。方案中在HSS增加RMM,用以产生RIC,以生成动态移动用户身份识别码(DMSI),设计一种LTE用户身份保密加强方案并进行安全性分析。分析结果表明:该方案有效保护了IMSI,减小了其被攻击者截获的危险性,能够进一步保护LTE中的用户身份。
In order to protect the user privacy, a LTE user identity enhanced authentication and key agreement scheme isproposed. By analyzing the specific process of EPS AKA and the mechanism of LTE AKA protocol, it is found that thereare security flaws, and the user identity secret AKA (UICE-AKA) scheme is proposed. In the scheme, the HSS is added toRMM, which is used to generate RIC, to generate dynamic mobile user identity identification code (DMSI), and to design aLTE user identity privacy enhancing scheme and security analysis. Analysis results show that the proposed scheme caneffectively protect the IMSI, reduce the risk of the attacker’s interception, and can further protect the user identity in LTE.
作者
朱诗兵
周赤
李长青
Zhu Shibing;Zhou Chi;Li Changqing(Department of Information Equipment, Academy of Equipment, Beijing 101416, China;Department of Command, Army Aviation School, Beijing 101100, China)
出处
《兵工自动化》
2016年第11期47-51,共5页
Ordnance Industry Automation