Tech-invite3GPPspaceIETFspace
21222324252627282931323334353637384‑5x

Content for  TR 33.860  Word version:  13.1.0

Top   Top   Up   Prev   None
0…   4…
4 Cellular IoT5 Key Issues6 Solutions7 Evaluation8 ConclusionsA Solution #A: Early solution for EASEB  Analysis of data efficient rekeyingC  Access security related functions for enhanced General Packet Radio Service (GPRS) in relation to Cellular Internet of Things (CIoT)D Comparison of authenticated encryption schemes$ Change History

 

4  Cellular IoTp. 8

4.1  Overview of Cellular IoTp. 9

4.2  The baseline architecture for Cellular IoT servicesp. 9

4.2.1  User plane (Gb mode)p. 9

4.3.2  Control plane (Gb mode)p. 9

5  Key Issuesp. 9

5.1  Key Issue #1: Entity authentication and key agreementp. 10

5.1.1  Key issue detailsp. 10

5.1.2  Security threatsp. 10

5.1.3  Potential security requirementsp. 10

5.2  Key Issue #2: Eavesdroppingp. 11

5.2.1  Key issue detailsp. 11

5.2.2  Security threatsp. 11

5.2.3  Potential security requirementsp. 11

5.3  Key Issue #3: Unauthorized modification of signalling datap. 12

5.3.1  Key issue detailsp. 12

5.3.2  Security threatsp. 12

5.3.3  Potential security requirementsp. 12

5.4  Key Issue #4: Unauthorized modification of user datap. 12

5.4.1  Key issue detailsp. 12

5.4.2  Security threatsp. 13

5.4.3  Potential security requirementsp. 13

5.5  Key Issue #5: Null-encryption and unauthorized transmission of user plane datap. 13

5.5.1  Key issue detailsp. 13

5.5.2  Security threatsp. 13

5.5.3  Potential security requirementsp. 13

6  Solutionsp. 14

6.1  Solution #1: Integrity protection of signalling and algorithm negotiationp. 14

6.1.1  Generalp. 14

6.1.2  Control Plane (Gb mode)p. 14

6.1.3  Protection of algorithm negotiationp. 14

6.1.4  Integrity algorithmsp. 16

6.1.5  Integrity key derivationp. 16

6.1.6  Interworking with legacy GPRSp. 16

6.1.7  Message Authentication Codep. 16

6.2  Solution #2: Data efficient rekeyingp. 17

6.2.1  Generalp. 17

6.2.2  Generation of Kmedp. 17

6.2.3  Generation of Ktc and Ktip. 17

6.2.4  Key derivation in the networkp. 18

6.2.5  Further details and analysisp. 18

6.3  Solution #3: Algorithms for ciphering and integrity protectionp. 19

6.3.1  Generalp. 19

6.3.2  Null ciphering algorithmp. 19

6.3.3  Ciphering algorithmp. 19

6.3.3.1  Inputs and outputsp. 19

6.3.3.2  GEA5p. 20

6.3.4  Integrity algorithmp. 20

6.3.4.1  Inputs and outputsp. 20

6.3.4.2  GIA4p. 21

6.3.4.3  GIA5p. 21

6.4  Solution #4: Protection for CIoT enhanced GPRS Layer 3 - GMM messagesp. 22

6.4.1  Generalp. 22

6.5  Solution #5: Activating integrity protection for user data in bearer layerp. 25

6.5.1  Generalp. 25

6.5.2  Solutionp. 25

6.6  Solution #6: Authenticated encryptionp. 25

6.6.1  Generalp. 25

6.6.2  Conclusionp. 26

6.7  Solution #7: GIA with INPUT-I and CONSTANT-Fp. 26

6.7.0  Generalp. 26

6.7.1  Integrity algorithmp. 26

6.7.1.1  Inputs and outputsp. 26

6.7.1.2  INPUT-Ip. 27

6.7.1.3  CONSTANT-Fp. 27

6.8  Solution #8: Implementation of integrity protection in LLC protocolp. 27

6.8.1  Generalp. 27

6.8.2  Integrity protection bit, integrity mode bit and MACp. 27

7  Evaluationp. 29

7.1  Authentication and key agreementp. 29

8  Conclusionsp. 30

A  Solution #A: Early solution for EASEp. 31

A.1  Generalp. 31

A.2  Control Plane (Gb mode)p. 31

A.3  Authenticationp. 31

A.4  Protection of algorithm negotiationp. 31

A.5  Interworking with legacy GPRSp. 32

A.6  Security considerationsp. 32

B  Analysis of data efficient rekeyingp. 34

B.1  Battery life cost of existing AKAp. 34

B.1.1  Assumptions on power budget and power consumptionp. 34

B.1.2  Analysis of existing AKAp. 34

B.2  Possible details of a data efficient rekeying approachp. 36

B.2.1  Use of key sequence numbersp. 36

B.2.2  Derivation of Kmed from Kp. 37

B.2.3  Derivation of session keys from Kmedp. 38

B.2.4  Battery impactp. 39

C  Access security related functions for enhanced General Packet Radio Service (GPRS) in relation to Cellular Internet of Things (CIoT)p. 40

C.1  Introductionp. 40

C.1.1  Generalp. 40

C.1.2  Considerations on bidding down attacksp. 40

C.2  Authentication and key agreementp. 40

C.3  Ciphering and integrity mode negotiationp. 40

C.4  Protection of GMM messagesp. 42

C.5  Algorithms for ciphering and integrity protectionp. 42

C.5.1  Null ciphering algorithmp. 42

C.5.2  Ciphering algorithmp. 43

C.5.2.1  Inputs and outputsp. 43

C.5.2.2  GEA5p. 43

C.5.3  Integrity algorithmp. 43

C.5.3.1  Inputs and outputsp. 43

C.5.3.2  GIA4p. 44

C.5.3.3  GIA5p. 44

C.6  Derivation of Kc128 and Ki128p. 44

C.7  Integrity protection of user planep. 45

D  Comparison of authenticated encryption schemesp. 46

D.1  Feature comparisonp. 46

D.2  Performance comparisonp. 46

$  Change Historyp. 47

Up   Top