Ping Dong,Namin Hou,Yuting Tang,Yushi Cheng,Xiaoyu Ji

DOI: https://doi.org/10.1016/j.hcc.2024.100222

2024-01-01

High-Confidence Computing

Abstract:The development of wireless communication network technology has provided people with diversified and convenient services. However, with the expansion of network scale and the increase in the number of devices, malicious attacks on wireless communication are becoming increasingly prevalent, causing significant losses. Currently, wireless communication systems authenticate identities through certain data identifiers. However, this software-based data information can be forged or replicated. This article proposes the authentication of device identity using the hardware fingerprint of the terminal’s Radio Frequency (RF) components, which possesses properties of being genuine, unique, and stable, holding significant implications for wireless communication security. Through the collection and processing of raw data, extraction of various features including time-domain and frequency-domain features, and utilizing machine learning algorithms for training and constructing a legal fingerprint database, it is possible to achieve close to a 97% recognition accuracy for Fifth Generation (5G) terminals of the same model. This provides an additional and robust hardware-based security layer for 5G communication security, enhancing monitoring capability and reliability.

Cong Wang,Maode Ma,Lei Zhang

DOI: https://doi.org/10.1109/access.2017.2706738

IF: 3.9

2017-01-01

IEEE Access

Abstract:The IEEE 802.22 standard regulates wireless regional area network (WRAN) operating at the very high frequency and ultrahigh frequency television white space (TVWS) bands. WRAN supports extensible authentication protocol (EAP)-based authentication schemes. However, due to its public key cryptography operations, a full EAP-based authentication scheme is time-consuming, which is unacceptable for the WRAN handover process. In this paper, an efficient EAP-based pre-authentication scheme for inter-WRAN handovers (EPW) in TVWS is proposed. By applying the proposed pre-authentication scheme, the customer premises equipment and the target secondary user base station can accomplish a seamless handover using symmetric key. Through logic derivation by Burrows, Abadi, and Needham logic and formal verification by automated validation of Internet security protocols and applications, we conclude that the proposed EPW scheme can obtain mutual authentication and maintain key secrecy with a high resistance to attack. Additionally, the performance of the EPW scheme has been investigated by simulation experiments. The results show that the EPW scheme provides a lower computation delay than that mandated by the security scheme regulation of the IEEE 802.22 standard.

Rongxing Lu,Xiaodong Lin,Zhiguo Shi,Xuemin (Sherman) Shen

DOI: https://doi.org/10.1109/wcnc.2013.6554840

2013-01-01

Abstract:The increasing demands for improving transmission reliability and efficiency have brought us a wide interest in smart grid. In current smart grid research, one of challenges is its security issue. If the security is not well addressed, the concept of smart grid cannot be widely accepted. In this paper, in order to simultaneously resolve the security and efficiency challenges in smart grid communications, we propose an efficient aggregate authentication protocol, called EATH, which is characterized by eliminating the Map-To-Hash hash and reducing the pairing operations in aggregation and verification to improve the computational efficiency. Detailed security analysis has shown that the proposed EATH protocol is secure in terms of source authentication and data integrity in smart grid communications. In addition, performance evaluation also demonstrates its efficiency in terms of low computation and communication overheads.

Namin Hou,Yushi Cheng,Xiaoyu Ji,Wenyuan Xu

DOI: https://doi.org/10.1109/ICCCS61882.2024.10603286

2024-01-01

Abstract:The advancement of Fifth-Generation (5G) technology has greatly enriched individuals' access to a broad array of convenient services, offering significant benefits in mobile communications, autonomous driving, smart homes, and the Internet of Things. However, with the increase in the number of network access devices, large and frequent data interactions have brought potential security risks to wireless networks, which are related to user privacy security, traffic safety, and even social security. Malicious intrusions targeting wireless communications have resulted in significant disruptions and incurred substantial losses. Presently, user identities in wireless communications rely on software-based data identifiers, which can be forged easily. This paper proposes a hardware-level device authentication mechanism that uses the intrinsic hardware characteristics of the transmitter (shown as impairments in the radio signal of the transmission link) for identity authentication. The resulting fingerprint is naturally distinctive and highly resistant to counterfeiting attempts. We use 5 devices across different models and 10 devices of the same model for experimental evaluation. Then we apply machine learning algorithms to construct a fingerprint database and device authentication, achieving an average of 82.4% precision, 89.9% recall, and 85.9% F1-score, which can help to safeguard the security of 5G communication.

Rui Wang,Xin Liu,Donglan Liu,Hao Zhang,Lei Ma,Yong Wang,Han Liu,Jianfei Chen,Zhenghao Li

DOI: https://doi.org/10.1142/s0218126623500949

2022-01-01

Journal of Circuits Systems and Computers

Abstract:As the latest generation of cellular mobile communication technology, the fifth-generation (5G) mobile communication technology is proposed to build a network-based society. As a result, industry and academia are placing great emphasis on security research for 5G technology. 5G technology has higher security requirements than previous systems and the secondary authentication is an important technology to ensure the security of 5G. In this paper, we propose to incorporate the SM9 encryption algorithm with 5G secondary authentication to provide higher security assurance. Due to the high computational overhead of the SM9 algorithm, we further propose an acceleration strategy for the SM9 algorithm based on the non-adjacent form (NAF) representation method to improve the performance of the entire system.

David Basin,Jannik Dreier,Lucca Hirschi,Saša Radomirović,Ralf Sasse,Vincent Stettler

DOI: https://doi.org/10.48550/arXiv.1806.10360

2018-06-27

Cryptography and Security

Abstract:Mobile communication networks connect much of the world's population. The security of users' calls, SMSs, and mobile data depends on the guarantees provided by the Authenticated Key Exchange protocols used. For the next-generation network (5G), the 3GPP group has standardized the 5G AKA protocol for this purpose. We provide the first comprehensive formal model of a protocol from the AKA family: 5G AKA. We also extract precise requirements from the 3GPP standards defining 5G and we identify missing security goals. Using the security protocol verification tool Tamarin, we conduct a full, systematic, security evaluation of the model with respect to the 5G security goals. Our automated analysis identifies the minimal security assumptions required for each security goal and we find that some critical security goals are not met, except under additional assumptions missing from the standard. Finally, we make explicit recommendations with provably secure fixes for the attacks and weaknesses we found.

Liu Tian,Wu Fan,Li Xiong,Chen Chaoyang

DOI: https://doi.org/10.1007/s11235-021-00815-9

2021-01-01

Telecommunication Systems

Abstract:Authentication and key agreement (AKA) protocol is an important security mechanism for access services in mobile communication systems. The 3GPP group has standardized the AKA protocol for 5G mobile communication systems. Even though 5G AKA protocol has improved security compared with 3G and 4G AKA protocols, several studies have shown that some critical goals are still not fulfilled, such as violation of untracebility and lack of session key confirmation. In this article, we propose a security enhanced AKA protocol for 5G to overcome the previous identified weaknesses. In our protocol, random number based challenge-response mechanism is used to resist replay attacks, which also saves the communication cost since our protocol has no sequence number de-synchronization problem. Besides, our protocol guarantees the feature of session key confirmation, which allows the subscriber and serving network confirm that they share a session key after successful authentication. Through the formal verification of Proverif, the security of our proposed protocol is proved. Moreover, elliptic-curve Diffie–Hellman mechanism is adopted by our protocol, and therefore the property of perfect forward secrecy can be achieved.

YANG Jinxiang,PENG Yonggang,CAI Tiantian,XI Wei,DENG Qingtang

DOI: https://doi.org/10.11930/j.issn.1004-9649.202204082

2023-01-01

Abstract:Edge computing effectively relieves the computing pressure of cloud platform and reduces the consumption of network transmission bandwidth, but it brings new security problems as well, the traditional authentication mechanism no longer applies to“cloud-edge-end” network architecture. We proposed a lightweight two-way authentication protocol based on cloud-edge collaboration. In view of the limited resources of massive power terminal, the protocol is only based on a Hash and XOR operation to achieve certification, so it reduces the pressure of terminal calculation and transmission bandwidth. Its security was successfully verified by AVISPA tool together with informal analysis. The analysis and simulation results show that the protocol can resist replay attack, impersonation attack and so on. In addition, the comparison with similar protocols shows that the protocol has less computation and communication overhead.

Yao Zhao,Chuang Lin,Hao Yin

DOI: https://doi.org/10.1109/aina.2006.300

2006-01-01

Abstract:With the development of wireless Internet, the interworking of the Third Generation (3G) wide area wireless networks and Wireless Local Area Networks (WLAN) has become a focus of research. 3G systems have their advantages in charging management, roaming, and security facilities, and WLAN systems have the advantages of high bandwidth and low investment cost. Interworking of 3G-WLAN offers characteristics that complement each other perfectly. Several authentication protocols have been proposed to improve security. In this paper, we firstly introduce the architectures of 3G-WLAN interworking and discuss existing problems related to authentication and key agreement procedures. Then, we present two schemes by applying authentication based on EAP-TLS (Extensible Authentication Protocol - Transport Layer Security) and EAP-TTLS (Tunneled TLS) into integrated 3G and WLAN to achieve high end-to-end security and authentication for the users. Finally, we conduct a series of performance evaluation on the energy consumption and latency of standard authentication protocols.

Zhiping Yan,Chonglin Gu,Hejiao Huang

DOI: https://doi.org/10.1109/icct52962.2021.9657852

2021-01-01

Abstract:Using 5G Authentication and Key Agreement (AKA) protocol in communication is extremely critical to ensure the security of personal data. In this paper, we apply formal method and automated verification tools to analyze the security properties of 5G AKA protocol. Petri net is applied to model the protocol for its advantages such as having graphical nature and firm mathematical foundation. CPN Tools is used for verification. Based on the reasonable assumptions in this paper, two attack methods mainly occurring in wireless channel and utilizing fake serving network (SN) are proposed. Our automated analysis identifies the effectiveness of each attack method. Finally, in order to improve the reliability of the 5G AKA protocol, we give an enhancement scheme with provably secure fixes. In our novel scheme, the unique id (UNI) is designed for reinforcing the security of messages transmitted in wireless channel, while the challenge-response authentication mechanism is used for ensuring the security of SN.

Jie CHEN,Hong WEN,Song-lin CHEN,Wen-jie LIU,Jin-ling ZHANG

DOI: https://doi.org/10.3969/j.issn.1002-0802.2017.12.025

2017-01-01

Abstract:In the era of 5G, a large number of wireless terminal devices connected to the Internet of things are connected to the network. The openness of the wireless network makes it vulnerable to various attacks. Authentication is usually the first line of defense for secure communications to identify the identity and message authenticity of the sender and receiver. At present, there are several problems in the authentication of communication systems: The traditional password based authentication is not suitable for lightweight devices, and cannot be used in the Internet of things terminal on a large scale. Many authentication mechanisms are usually single and do not apply to mobile terminals. In view of the above problems, a cooperative identity detection mechanism for mobile terminals in the Internet of things is proposed. Specifically, physical layer authentication is suitable for lightweight devices, and combines the authentication mechanism based on radio frequency fingerprint and channel information to authenticate the identity and data of mobile terminals, aiming to achieve lightweight, safer and wider range of authentication.

Zhiping Yan,Chonglin Gu,Yue Gu,Hejiao Huang

DOI: https://doi.org/10.1109/ICCC52777.2021.9580325

2021-01-01

Abstract:Ensuring the security of 5G Authentication and Key Agreement (5G AKA) is utmost important in the context of the upcoming widespread use of 5G. In this paper, we focus on the formal specification and security verification of 5G AKA. We propose three attack methods including: Sequence Number (SQN) mismatch attack, Subscription Concealed Identifier (SUCI) replay attack and bogus serving network (SN) ...

Aidong Xu,Yixin Jiang,Yunan Zhang,Xiaoyun Kuang,Jiaxiao Meng,Wenlong Han

DOI: https://doi.org/10.1109/ei250167.2020.9347120

2020-01-01

Abstract:This paper analyzes the security issues in the smart grid. According to the characteristics of wireless signal transmission, combined with the existing physical layer authentication technology, we apply the physical layer authentication technology to resource-constrained power terminals, this paper proposes a device location fixed multi-channel frequency intensity authentication scheme. This scheme mainly utilizes the space-time uniqueness characteristics of the wireless channel when the location of the wireless device is fixed. The signal intensity of the device is used as the unique identification information of the wireless device. The similarity of channel characteristics is used to identify the device and determine whether it is legal. Tests show that this scheme has better recognition performance.

Ilsun You,Gunwoo Kim,Seonghan Shin,Hoseok Kwon,Jongkil Kim,Joonsang Baek

DOI: https://doi.org/10.3390/s24010159

2023-12-27

Abstract:5G acts as a highway enabling innovative digital transformation and the Fourth Industrial Revolution in our lives. It is undeniable that the success of such a paradigm shift hinges on robust security measures. Foremost among these is primary authentication, the initial step in securing access to 5G network environments. For the 5G primary authentication, two protocols, namely 5G Authentication and Key Agreement (5G-AKA) and Improved Extensible Authentication Protocol Method for 3rd Generation Authentication and Key Agreement (EAP-AKA'), were proposed and standardized, where the former is for 3GPP devices, and the latter is for non-3GPP devices. Recent scrutiny has unveiled vulnerabilities in the 5G-AKA protocol, exposing it to security breaches, including linkability attacks. Moreover, mobile communication technologies are dramatically evolving while 3GPP has standardized Authentication and Key Management for Applications (AKMA) to reuse the credentials, generated during primary authentication, for 5G network applications. That makes it so significant for 5G-AKA to be improved to support forward secrecy as well as address security attacks. In response, several protocols have been proposed to mitigate these security challenges. In particular, they tried to strengthen security by reusing secret keys negotiated through the Elliptic Curve Integrated Encryption Scheme (ECIES) and countering linkability attacks. However, they still have encountered limitations in completing forward secrecy. Motivated by this, we propose an augmentation to 5G-AKA to achieve forward security and thwart linkability attacks (called 5G-AKA-FS). In 5G-AKA-FS, the home network (HN), instead of using its static ECIES key pair, generates a new ephemeral key pair to facilitate robust session key negotiation, truly realizing forward security. In order to thoroughly and precisely prove that 5G-AKA-FS is secure, formal security verification is performed by applying both BAN Logic and ProVerif. As a result, it is demonstrated that 5G-AKA-FS is valid. Besides, our performance comparison highlights that the communication and computation overheads are intrinsic to 5G-AKA-FS. This comprehensive analysis showcases how the protocol effectively balances between security and efficiency.

Su, Li,Du, Haitao

DOI: https://doi.org/10.1007/s00500-023-09486-x

IF: 3.732

2024-01-11

Soft Computing

Abstract:The security context, generally stored in the universal subscriber identity module card or the baseband chip, is the critical information applied by the subscriber to access the 5G network during the fast authentication procedure. Once exposed or illegally used, the security context can be exploited to derive various keys for authentication and encryption. Despite its importance, challenges and questions still remain in the previous relevant research. To fill this gap, by adopting the security protocol verification tool ProVerif, we provide a comprehensive formal model of the fast authentication procedure based on the security context to analyze whether security goals can be met. Unfortunately, we uncover two vulnerabilities, including one never reported before. Our analysis shows that these vulnerabilities stem from fundamental design flaws in the cellular network protocol and thus apply to the 4G network. These vulnerabilities could be exploited to launch several attacks, including impersonation and eavesdropping. We have validated these attacks using 5 mobile phones from 5 different baseband manufacturers through experimentation in three mobile carriers. We find an insecure implementation of one of these phones, which exposed it to replay attacks. And we further discuss the security threats posed by the impersonation attack, such as location spoofing and one-tap authentication bypass, which is verified on 10 popular apps. We finally propose several countermeasures to eliminate these security issues. Actually, we have reported the novel vulnerability to the GSM Association and received a confirmation in the form of a coordinated vulnerability disclosure (CVD) number CVD-2022-0057.

computer science, artificial intelligence, interdisciplinary applications

Zigang Chen,Jin Ao,Wenjun Luo,Zhiquan Cheng,Yuhong Liu,Kai Sheng,Long Chen

DOI: https://doi.org/10.1016/j.jisa.2022.103247

IF: 4.96

2022-08-01

Journal of Information Security and Applications

Abstract:5G and Internet of Things (IoT) are closely related and promote each other. Network Slice (NS) technology based on Software Defined Network (SDN) and Network Function Virtualization (NFV) have changed the traditional network architecture. Subsequently, the secure access authentication of IoT terminals for 5G networks and the selection of network slice services have become important issues for the deep integration of 5G and IoT. In this paper, we propose a dual-factor access authentication scheme for IoT terminal in 5G environments with network slice selection. To be specific, IoT terminals first use Physical Unclonable Function (PUF) to ensure their own security, then use secure one-way hash function, XOR calculation, and pseudo-identities to achieve anonymous authentication, and finally establish a secure connection with the 5G core network as well as the Management Architecture and Network Orchestration (MANO) to access customized network slices. The proposed protocol can eventually realize session key negotiation between IoT terminals, 5G core network elements and MANO entities to ensure data transmission security. We verify the security of the protocol through simulation and security analysis, and demonstrate the efficiency of the protocol by comparing it with state-of-the-art schemes.

computer science, information systems

Yu-Sheng Yang,Shih-Hsiung Lee,Jie-Min Wang,Chu-Sing Yang,Yuen-Min Huang,Ting-Wei Hou

DOI: https://doi.org/10.3390/s23104970

IF: 3.9

2023-05-23

Sensors

Abstract:With the promotion of Industry 4.0, which emphasizes interconnected and intelligent devices, several factories have introduced numerous terminal Internet of Things (IoT) devices to collect relevant data or monitor the health status of equipment. The collected data are transmitted back to the backend server through network transmission by the terminal IoT devices. However, as devices communicate with each other over a network, the entire transmission environment faces significant security issues. When an attacker connects to a factory network, they can easily steal the transmitted data and tamper with them or send false data to the backend server, causing abnormal data in the entire environment. This study focuses on investigating how to ensure that data transmission in a factory environment originates from legitimate devices and that related confidential data are encrypted and packaged. This paper proposes an authentication mechanism between terminal IoT devices and backend servers based on elliptic curve cryptography and trusted tokens with packet encryption using the TLS protocol. Before communication between terminal IoT devices and backend servers can occur, the authentication mechanism proposed in this paper must first be implemented to confirm the identity of the devices and, thus, the problem of attackers imitating terminal IoT devices transmitting false data is resolved. The packets communicated between devices are also encrypted, preventing attackers from knowing their content even if they steal the packets. The authentication mechanism proposed in this paper ensures the source and correctness of the data. In terms of security analysis, the proposed mechanism in this paper effectively withstands replay attacks, eavesdropping attacks, man-in-the-middle attacks, and simulated attacks. Additionally, the mechanism supports mutual authentication and forward secrecy. In the experimental results, the proposed mechanism demonstrates approximately 73% improvement in efficiency through the lightweight characteristics of elliptic curve cryptography. Moreover, in the analysis of time complexity, the proposed mechanism exhibits significant effectiveness.

engineering, electrical & electronic,chemistry, analytical,instruments & instrumentation

Dongdong Liu,Tiantian Ji

DOI: https://doi.org/10.1038/s41598-024-73480-y

IF: 4.6

2024-10-27

Scientific Reports

Abstract:The Internet of Things technology allows you to transfer data to any asset through communication networks such as the Internet or intranet. One of the most important problems is security, which includes confidentiality, authenticity validation, and completeness. Among security problems, the most important ones are ensuring authenticity and protecting privacy. The elliptic curve encryption algorithm is famous protocols for maintaining privacy and verifying authenticity. Despite the capabilities they have and provide good security against network attacks, they face challenges such as response time, delay in the authentication and authentication process, as well as the amount of memory consumed. Two-factor authentication (2FA) is a security process where users provide two different authentication factors to authenticate themselves. It also provides a higher level of security than authentication methods that rely on single-factor authentication (SFA). This article presents two novel methods for 2FA that use encryption techniques, scramble architecture, and chord architecture. These methods allow for the authentication process to be initiated by both parties involved in the communication. Three scenarios and three metrics of reaction time, memory usage, and connection latency were used to assess the efficacy of the suggested approach. The average reaction time is improved and is 0.012 s when the lengths of the finger table in the chord structure are increased to 10, 15, and 20. The findings show that the suggested approach reduces computing complexity, reaction time, and communication latency. It has an average reaction time of 0.016 s, an average memory use of 30,360 kb, and an average connection latency of 0.042 s.

multidisciplinary sciences

Fei Pan,Hong Wen,Huanhuan Song,Tang Jie,Longye Wang

DOI: https://doi.org/10.1109/ICCChinaW.2015.7961587

2015-01-01

Abstract:The concept of future 5G (the 5 <sup xmlns:mml="http://www.w3.org/1998/Math/MathML" xmlns:xlink="http://www.w3.org/1999/xlink">th</sup> generation of mobile networks) widely spreads in industry, but the related standards are still unclear. The definition of 5G is to provide adequate RF coverage, more bits/Hz and to interconnect all wireless heterogeneous networks to provide seamless, consistent telecom experience to the user. In this paper we have surveyed 5G network architecture and proposed a multi-tier security architecture and a lightweight authentication measure for 5G. The proposed scheme aims at achieving fast authentication and minimizing the packet transmission overhead without compromising the security requirements.

Zhishuo Zhang,Wei Zhang,Zhiguang Qin,Sunqiang Hu,Zhicheng Qian,Xiang Chen

DOI: https://doi.org/10.1109/acie51979.2021.9381081

2021-01-01

Abstract:The 5G technology brings the substantial improvement on the quality of services (QoS), such as higher throughput, lower latency, more stable signal and more ultra-reliable data transmission, triggering a revolution for the wireless mobile network. But in a general traffic channel in the 5G-based wireless mobile network, an attacker can detect a message transmitted over a channel, or even worse, forge or tamper with the message. Building a secure channel over the two parties is a feasible solution to this uttermost data transmission security challenge in 5G-based wireless mobile network. However, how to authentication the identities of the both parties before establishing the secure channel to fully ensure the data confidentiality and integrity during the data transmission has still been a open issue. To establish a fully secure channel, in this paper, we propose a strongly secure pairing-free certificateless authenticated key agreement (PF-CL-AKA) protocol with two-way identity-based authentication before extracting the secure session key. Our protocol is provably secure in the Lippold model, which means our protocol is still secure as long as each party of the channel has at least one uncompromised partial private term. Finally, By the theoretical analysis and simulation experiments, we can observe that our scheme is practical for the real-world applications in the 5G-based wireless mobile network.