Reducing Signaling Traffic for the Authentication and Key Agreement Procedure in an IP Multimedia Subsystem
- 77 Downloads
- 6 Citations
Abstract
In the IP multimedia subsystem (IMS) of UMTS, two authentication procedures are necessary for IMS subscribers before accessing IMS services: (i) packet-switch domain authentication using the authentication and key agreement of the 3rd Generation Partnership Projects (3GPP AKA), and (ii) IMS authentication using IMS AKA. However, since IMS AKA is based on 3GPP AKA, almost all of the operations are the same. Besides, IMS AKA needs two round-trips to carry out. Therefore, it is inefficient that almost all involved steps in IMS AKA are duplicated. Therefore, we propose a one-pass IMS AKA instead of IMS AKA. The one-pass IMS AKA can keep the security properties of IMS AKA, such as mutual authentication and key agreement. Furthermore, the one-pass IMS AKA not only has at least 45% improvement over IMS AKA in terms of authentication signaling, but also has 76.5% improvement over IMS AKA in terms of storage space.
Keywords
3GPP AKA Authentication IMS IMS AKA SIPPreview
Unable to display preview. Download preview PDF.
References
- 1.3GPP TS 23.228: Technical Specification Group Services and Systems Aspects; IP Multimedia Subsystem Stage 2.Google Scholar
- 2.3GPP TS 29.228: Technical Specification Core Network; IP Multimedia Subsystem Cx and Dx Interfaces; Signaling Flows and Message Contents (Release 5).Google Scholar
- 3.PP TS 29.229: Technical Specification Core Network;Cx and Dx Interfaces Based on the Diameter Protocol; Protocol Details.Google Scholar
- 4.3GPP TS 33.203: Technical Specification Group Services and Systems Aspects; 3G Security; Access security for IP-based services (Release 6).Google Scholar
- 5.3GPP TS 33.210: Technical Specification Group Services and System Aspects; 3G Security; Network Domain Security; IP network layer security (Release 7).Google Scholar
- 6.3GPP TS33.102: Technical Specification Group Services and System Aspects; 3G Security; Security Architecture.Google Scholar
- 7.Camarillo G., Kauppinen T., Kuparinen M., Ivars I. (2007) Towards an innovation oriented ip multimedia subsystem. IEEE Communications Magazine 45(3): 130–136CrossRefGoogle Scholar
- 8.Franks, J., Hallam-Baker, P. M., Hostetler, J. L., Lawrence, S. D., Leach, P. J. (1999).HTTP authentication: Basic and digest access authentication, RFC 2617, IETF.Google Scholar
- 9.Huang C.M., Li J.W. (2005) Authentication and key agreement protocol for UMTS with low bandwidth consumption. Proc International Conference on advanced Information Networking and Applications (AINA) 1: 392–397Google Scholar
- 10.Huang C.M., Li J.W. (2007) Efficient and provably secure ip multimedia subsystem authentication for umts. The Computer Journal 50(6): 739–757CrossRefGoogle Scholar
- 11.Lin Y., Chen Y. (2004) Reducing authentication signaling traffic in third generation mobile network. IEEE Transactions on Wireless Communications 2(3): 493–501Google Scholar
- 12.Lin Y.B., Chang M.F., Hsu M.T., Wu L.Y. (2005) One-pass GPRS and IMS authentication procedure for UMTS. IEEE Journal on Selected Areas in Communications 23(6): 1233–1239CrossRefGoogle Scholar
- 13.Niemi, A., Arkko, J., Torvinen, V. (2002). Hypertext Transfer Protocol (HTTP) digest Authentication Using Authentication and Key Agreement (AKA).RFC 3310.Google Scholar
- 14.Rosenberg, J., Schulzrinne, H., Camarillo, G., Johnston, A., Peterson, J., Sparks, R., Handley, M., Schooler, E. (2002). SIP Session Initiation Protocol.RFC 3261, IETF.Google Scholar
- 15.Torvinen, V., Arkko, J., Naeslund, M. (2005). Hypertext Transfer Protocol Digest Authentication Using Authentication and Key Agreement Version-2.RFC 4169.Google Scholar