Qingzhang Chen,Qiaoyan Chen,Min Yao,Jianhua Mo

DOI: https://doi.org/10.1109/ICECENG.2011.6057724

2011-01-01

Abstract:The paper presented a lightweight high-level encryption algorithm for Wireless Sensor Network, referred to as the IAES. The algorithm conducted a variety of improvements form AES, mainly in three areas. At first, fewer algorithm rounds from 10 to 7; secondly, the polynomial coefficients transformation in Mix Column operations; finally, utilization of polynomial generator of the finite field designs and implements a look-up table methods to improve the speed multiplication of polynomial. In the experimental validation stage, we analysis the proposed improved algorithm with the AES algorithm from the RAM and ROM storage space overhead, CPU clock cycles, network latency in CC2430 wireless node platform. The experimental results show that the improved algorithm in the node RAM and ROM storage space overhead have a small increase, its CPU clock cycles and network latency are superior to AES algorithm.

Imran Memon,Ibrar Hussain,Rizwan Akhtar,Gencai Chen

DOI: https://doi.org/10.1007/s11277-015-2699-1

IF: 2.017

2015-01-01

Wireless Personal Communications

Abstract:Past few years, the mobile technology and location based services have experienced a great increment in number of its users. The privacy issues related to these services are becoming main concerns because of the leakage of users' private information and contents. To prevent revelation of private information, many researchers have proposed several secure and authentication schemes which apply various technologies to provide integral security properties, such as symmetric encryption, digital signature, timestamp, etc. Unfortunately, some of these schemes still exhibit security and efficiency issues. In this research paper, we proposed an efficient and secure anonymous communication for location based service using asymmetric cryptography scheme over the wireless system was attempted missing some system detail. We also proposed the prevent user private information and secure communication by asymmetric cryptography scheme. We solved the wireless communication problem in A3 algorithm such as eavesdropping and this problem solved by asymmetric cryptography scheme because of its robustness against this type of attack by providing mutual authentication make the system more secure. Finally, performance and cost analysis show our scheme is more suitable for low-power and resource limited wireless system and thus availability for real implementation. According to our security analysis and performance, we can prove that our proposed asymmetric cryptography scheme is able to improve wireless communication system security and enhance efficiency in comparison to previous schemes.

Ali Elouafiq

DOI: https://doi.org/10.48550/arXiv.1204.1651

2012-04-07

Abstract:Mobile communication touches every aspect of our life, it become one of the major dependencies that the 21st Century civilizations rely on. Thereby, security is a major issue that should be targeted by communication technologies. In this paper we will target authentication and encryption in GSM and 3G/UMTS. In order to understand clearly how things work, we will start by presenting the architecture of each network, its major components, its authentication algorithms, protocols used, and KASUMI Block Cipher.

Cryptography and Security,Networking and Internet Architecture

Mohammed Ramadan,Guohong Du,Fagen Li,Chun Xiang Xu

DOI: https://doi.org/10.14257/ijsia.2016.10.6.22

2016-01-01

International Journal of Security and Its Applications

Abstract:GSM system is widely used by hundreds of millions of people. In fact there is no encryption scheme provides the reasonable security level (user-to-user encryption), it's just provide the Air-interface encryption i.e. between the mobile station and the base station. Furthermore, there are other wireless links are vulnerable to attacks. It is therefore of great importance to provide reasonable security techniques to ensure the privacy of the mobile users especially circuit switching-based services, as well as prevent unauthorized use of the service. In this paper, a new approach is proposed to provide end-to-end encryption for the GSM system (EEE-GSM). This is achieved by using CL-PKC with some modifications and follow some assumptions in GSM system architecture in order to make the scheme compliant to the GSM cellular system. However, the proposed scheme not only efficient due to end-to-end security, but can also provide a secure system against IMSI catcher, man-in-the-middle, and replay attacks.

Ming-Feng Lee,Nigel P. Smart,Bogdan Warinschi,Gaven J. Watson

DOI: https://doi.org/10.1007/s10207-014-0231-3

2014-03-19

International Journal of Information Security

Abstract:The UMTS/LTE protocol for mobile phone networks has been designed to offer a limited form of anonymity for mobile phone users. In this paper, we quantify precisely what this limited form of anonymity actually provides via a formal security model. The model considers an execution where the home and roaming network providers are considered as one entity. We consider two forms of anonymity, one where the mobile stations under attack are statically selected before the execution, and a second where the adversary selects these stations adaptively. We prove that the UMTS/LTE protocol meets both of these security definitions. Our analysis requires new assumptions on the underlying keyed functions for UMTS, namely that a set of pseudorandom functions are “agile”. This assumption, while probably true, has not previously been brought to the fore.

computer science, information systems, theory & methods, software engineering

Rajakumar Arul,Gunasekaran Raja,Ali Kashif Bashir,Junaid Chaudry,Amjad Ali

DOI: https://doi.org/10.48550/arXiv.1905.07607

2019-05-18

Networking and Internet Architecture

Abstract:The growing popularity of multimedia applications, pervasive connectivity, higher bandwidth, and euphoric technology penetration among the bulk of the human race that happens to be cellular technology users, has fueled the adaptation to Long Term Evolution (LTE)/ System Architecture Evolution (SAE). The LTE fulfills the resource demands of the next generation applications for now. We identify security issues in the authentication mechanism used in LTE that without countermeasures might give superuser rights to unauthorized users. The LTE uses static LTE Key (LTE-K) to derive the entire key hierarchy such as LTE follows Evolved Packet System-Authentication and Key Agreement (EPS-AKA) based authentication which discloses user identity, location, and other Personally Identifiable Information (PII). To counter this, we propose a public key cryptosystem named International mobile subscriber identity Protected Console Grid-based Authentication and Key Agreement (IPG-AKA) protocol to address the vulnerabilities related to weak key management. From the data obtained from threat modeling and simulation results, we claim that the IPG-AKA scheme not only improves the security of authentication procedures, it also shows improvements in authentication loads and reduction in key generation time. The empirical results and qualitative analysis presented in this paper proves that IPG-AKA improves security in authentication procedure and performance in the LTE.

Mohammed Ramadan,Fagen Li,Chunxiang Xu,Abdeldime Mohamed,Hisham Abdalla,Ahmed Abdalla Ali

DOI: https://doi.org/10.6633/ijns.201607.18(4).17

2016-01-01

Abstract:Long Term Evolution LTE is the first technology that provides exclusively packet-switched data and modifies the security architecture of the 2G and 3G systems. The LTE security architecture offers confidentiality, access control, a kind of obscurity and mutual authentication. However, numerous types of attacks can be encountered during the mutual authentication process which is a challenge-response based technique. Therefore, a high secure public key algorithm can be implemented to improve the network security services. As the network operator is often considered as not being a highly trusted party and can thus face threats, the communications ends are the only secure parties to provide such security features. This paper pro- poses a secure mutual authentication and key agreement scheme for LTE cellular system with user-to-user security. The network side in this scheme operates as a proxy and non-trusted party to provide the security architecture with more exibility and reliability. This is achieved by using designated verifier proxy signature and key agreement protocol based bilinear pairing with some changes in both security algorithms and LTE security architecture within the LTE standardization. Our security and performance analysis demonstrated that the proposed scheme is more secure compared to the basic authentication and key agreements schemes.

Mohammed Ramadan,Fa-Gen Li,Chun-Xiang Xu,Abubaker Wahaballa

2015-01-01

Abstract:The GSM system is used by hundreds of millions of people. In fact there is no encryption scheme provides the reasonable security level (user-to-user encryption) it's just provide the Air-interface encryption (between the mobile station and the base station. Furthermore, there are other wireless links are vulnerable to attacks. It is therefore of great importance to provide reasonable technological security measures to ensure the privacy of mobile phone users (Voice, Data), as well as prevent unauthorized use of the service. In this paper, a new approach is proposed to provide end-to-end encryption for the GSM system. This is achieved by implementing some modifications in both CL-PKC and GSM system in order to make the scheme compliant to the GSM system architecture.

Xue Jun Li,Maode Ma,Jiecheng Xie

DOI: https://doi.org/10.1007/978-3-319-94965-9_1

2018-01-01

Abstract:Evolved Packet System-Authentication and Key Agreement (EPS-AKA) is the security protocol in Long-Term Evolution (LTE). However, it is still vulnerable to user identity attacks and fake eNBs. Efficient EPS-AKA (EEPS-AKA) was proposed with some improvements. Nevertheless, the EEPS-AKA is vulnerable to denial-of-service (DoS) attacks and fake eNBs, despite of some minor flaws in its procedures. In this paper, we propose Temporary Internet Access (TIA)-AKA to: (1) prevent user identity disclosure by implementing some additional steps, which allows a user equipment (UE) to request a temporary UE identity to access Internet; and (2) authenticate the Mobility Management Entity (MME) through the validity of the assigned IP address. Physical address and simple password exponential key exchange (SPEKE) method are combined into the proposed TIA-AKA. Efficiency analysis suggests the TIA-AKA provides a fully protection on the user identity and prevent the DoS attack, at the expense of increased bandwidth consumption and processing delay.

Mohammed Ramadan,Guohong Du,Fagen Li,Chunxiang Xu

DOI: https://doi.org/10.3390/sym8090085

2016-01-01

Symmetry

Abstract:Mobile communication security techniques are employed to guard the communication between the network entities. Mobile communication cellular systems have become one of the most important communication systems in recent times and are used by millions of people around the world. Since the 1990s, considerable efforts have been taken to improve both the communication and security features of the mobile communications systems. However, these improvements divide the mobile communications field into different generations according to the communication and security techniques such as A3, A5 and A8 algorithms for 2G-GSM cellular system, 3G-authentication and key agreement (AKA), evolved packet system-authentication and key agreement (EPS-AKA), and long term evolution-authentication and key agreement (LTE-AKA) algorithms for 3rd generation partnership project (3GPP) systems. Furthermore, these generations have many vulnerabilities, and huge security work is involved to solve such problems. Some of them are in the field of the public key cryptography (PKC) which requires a high computational cost and more network flexibility to be achieved. As such, the public key infrastructure (PKI) is more compatible with the modern generations due to the superior communications features. This paper surveys the latest proposed works on the security of GSM, CDMA, and LTE cellular systems using PKI. Firstly, we present the security issues for each generation of mobile communication systems, then we study and analyze the latest proposed schemes and give some comparisons. Finally, we introduce some new directions for the future scope. This paper classifies the mobile communication security schemes according to the techniques used for each cellular system and covers some of the PKI-based security techniques such as authentication, key agreement, and privacy preserving.

Abdelrhman Hassan,Rashad Elhabob,Nabeil Eltayieb,Yong Wang

DOI: https://doi.org/10.1002/ett.4361

IF: 3.6

2021-01-01

Transactions on Emerging Telecommunications Technologies

Abstract:The widespread adoption of social network applications and smart mobile devices has yielded a massive amount of data transmitted through the networks. Fortunately, social network service providers offer a wide range of storage capacity and data management functionality. Accordingly, the data can be uploaded to the social servers for processing and then accessible elsewhere. Nevertheless, considering the untrusted nature of the social servers, it becomes crucial to protect the data before uploading it to the server. Unfortunately, encryption incurs another severe problem in providing search functionality on encrypted data stored on the server. In addition, most of the existing solutions are inefficient to deploy on mobile devices due to the limited resources and computing capabilities. To address this issue, we propose an authorized equality test on identity‐based cryptosystem (AET‐IBC) scheme in this article. The scheme allows the server to test if two different ciphertexts encapsulate the same message. Besides, it supports different authorization methods to enhance the privacy. Furthermore, based on the random oracle model, we prove the security of the proposed scheme to be equivalent to the modified bilinear Diffie‐Hellman intractable assumption. Finally, the efficiency analysis shows that the AET‐IBC scheme is practicable and convenient for mobile social networking applications.

Wang Jian,Liu Xu,Ji Xiaoyong

DOI: https://doi.org/10.1109/ICEE.2010.898

2010-01-01

Abstract:Information security is a necessary safeguard for mobile e-commerce and a secure communication system to obtain high quality secure communication in wireless environment is introduced, which is integrating three kinds of encryption algorithms including AES, RSA and CPRS chaos encryption. Secure communication framework based on three-layer encryption model is proposed: (1) AES layer of system code decrypt, system boot and the system self-destruct; (2) RSA layer of authentication, key negotiation and key management functions; (3) CPRS layer of communication data stream encryption and decryption. The implementation and optimization of the above-mentioned three kinds of algorithms are discussed. The experiments show the three kinds of encryption algorithms are safe and reliable to achieve a high degree of secure communication.

Shaik Rasool,G. Sridhar,K. Hemanth Kumar,P. Ravi Kumar

DOI: https://doi.org/10.48550/arXiv.1110.1701

2011-10-08

Cryptography and Security

Abstract:This paper puts forward a safe mechanism of data transmission to tackle the security problem of information which is transmitted in Internet. The encryption standards such as DES (Data Encryption Standard), AES (Advanced Encryption Standard) and EES (Escrowed Encryption Standard) are widely used to solve the problem of communication over an insecure channel. With advanced technologies in computer hardware and software, these standards seem not to be as secure and fast as one would like. In this paper we propose a encryption technique which provides security to both the message and the secret key achieving confidentiality and authentication. The Symmetric algorithm used has two advantages over traditional schemes. First, the encryption and decryption procedures are much simpler, and consequently, much faster. Second, the security level is higher due to the inherent poly-alphabetic nature of the substitution mapping method used here, together with the translation and transposition operations performed in the algorithm. Asymmetric algorithm RSA is worldwide known for its high security. In this paper a detailed report of the process is presented and analysis is done comparing our proposed technique with familiar techniques

Xin Mao,Yang Liu,Song Feng Lu,You Li

DOI: https://doi.org/10.4028/www.scientific.net/aef.6-7.932

2012-01-01

Advanced Engineering Forum

Abstract:Data privacy and integrity will be the crucial and significant factors in recent times for network applications. To deal with these security problems related to symmetric and asymmetric key types have been framed. In this paper, we suggest a new secure communications solution for a secure channel that combines the digital envelopes and digital signatures and implements with symmetric key algorithm of AES and the asymmetric key algorithm of ECC. The experiment result shows it’s a more perfect choice.

Yi-Li Huang,Fang-Yie Leu,Ilsun You,Yao-Kuo Sun,Cheng-Chung Chu

DOI: https://doi.org/10.1007/s11227-013-0958-z

IF: 3.3

2013-06-14

The Journal of Supercomputing

Abstract:In broadband wireless technology, due to having many salient advantages, such as high data rates, quality of service, scalability, security, mobility, etc., LTE-A currently has been one of the trends of wireless system development. This system provides several sophisticated authentication and encryption techniques to enhance its system security. However, LTE-A still suffers from various attacks, like eavesdropping and replay attacks. Therefore, in this paper, we propose a novel security scheme, called the security system for a 4Genvironment (Se4GE for short), which as an LTE-A-based system integrates the RSA and Diffie–Hellman algorithms to solve some of LTE-A’s security drawbacks where LTE-A stands for LTE-Advance which is a 4G system. The Se4GE is an end-to-end ciphertext transfer mechanism which dynamically changes encryption keys to enforce the security of data transmission in an LTE-A system. The Se4GE also produces several logically connected random keys, called the intelligent protection-key chain, which invokes two encryption/decryption techniques to provide users with broader demands for security services. The analytical results show that the Se4GE has higher security level than that of an LTE-A system.

Xidong Zhang,Weiming Tong,Zhongwei Li

DOI: https://doi.org/10.1145/3058060.3058071

2017-01-01

Abstract:The paper proposed a security communication solution which was suitable for Ethernet network in order to realize the secure transmission of the cipher texts in exchanging information process of the advanced metering infrastructure. Firstly, Ethernet communication network of advanced metering infrastructure was established based on the characteristics of high speed Ethernet communication technology, including the local Ethernet network and wide area network. Secondly, the application of elliptic curve cryptography fusion algorithm was realized by applying IPSec real-time secure communication protocol and incorporating into Ethernet/IP protocol in this paper. Finally, the Ethernet security communication network infrastructure was constructed by configuring ITU-TX.86 protocol for Ethernet/IP protocol, and the local Ethernet frames and wide area network frames was constructed for information exchange of the advanced metering infrastructure, according to the structures of ESP frames and LAPS frames. The research results show that the proposed solution which applies elliptic curve cryptography fusion algorithm and real time security protocol, and is suitable for Ethernet communication, can realize the information security exchange of the advanced metering infrastructure.

Chen Tianzhou,Mao Haixia,Dai Hongjun

2006-01-01

Abstract:This paper briefly analyzes the security mechanisms of GSM/UMTS and finds their security defects, such as unidirectional authentication and cipher key transmission without encryption. For these defects, existing mobile communication systems can not prevent hostile attacks to satisfy high-level security demands. To solve these problems, we propose the robust Middleware Architecture for Mobile Communication Security (MAMCS), which employs new Authentication and Key Agreement (AKA) protocols, chooses different encryption algorithms for different applications and implements integrity control mechanism. In the end, we analyze the performance of MAMCS and show that MAMCS gets a 200%~2% improvement in security only at the cost of 1.51% descent in bandwidth and 18.14 ms extra latency.

Mohammed Ramadan,Fagen Li,Chun Xiang Xu,Ahmed Abdalla,Hisham Abdalla

DOI: https://doi.org/10.1109/icbda.2016.7509848

2016-01-01

Abstract:The security architecture of the mobile networks provides different security features such as authentication, confidentiality, and integrity for both users and network operator. Moreover, the security of mobile communications becomes a hot topic and always need security improvements. GSM cellular system has many weaknesses, especially in the authentication process due to the lack of the physical protection mechanisms in both user and network sides. This paper analyses an existing GSM authentication scheme based on CL-PKC which was proposed in 2014, and it has many weaknesses since it used the basic CL-PKC scheme which has many weaknesses itself. And this paper also proposes an efficient end-to-end scheme for GSM mutual authentication using the concept ofa secure CL-PKC, with some modifications in both security and GSM network architectures.

Chi-Chun Lo,Yu-Jen Chen

DOI: https://doi.org/10.1109/30.809184

1999-01-01

IEEE Transactions on Consumer Electronics

Abstract:With the advance of wireless communications technology, mobile communications has become more convenient than ever. However, because of the openness of wireless communications, the protection of the privacy between communicating parties is becoming a very important issue. We focus on the security of the Global System for Mobile communication (GSM) networks. A secure communication architecture for the GSM network is proposed. In the proposed architecture, we use public-key cryptography for user authentication and stream cipher for message encryption and decryption. An authentication protocol and a key generation method are presented in conjunction with the proposed architecture. Cryptanalysis and operational analysis show that the authentication protocol is secure and efficient. Simulation results indicate that the key generation method can always produce key strings of evenly distributed 0s and 1s and with infinite period.

telecommunications,engineering, electrical & electronic

L Min,B Hai,ZJ Feng

DOI: https://doi.org/10.1109/tencon.2002.1180245

2002-01-01

Abstract:The security architecture and mechanism of 3rd generation mobile communication are discussed in this paper. Five UMTS security features are given. Then the security architecture is introduced. We analyzed the basic network access security mechanism and give the flow description regarding to the signalling procedure. For the integrity protection and data confidentiality, the corresponding algorithm is also discussed.