Smart Grid and Innovative Frontiers in Telecommunications. Third International Conference, SmartGIFT 2018, Auckland, New Zealand, April 23-24, 2018, Proceedings

Research Article

Temporary Internet Access for Authentication and Key Agreement for LTE Networks

  • @INPROCEEDINGS{10.1007/978-3-319-94965-9_1,
        author={Xue Li and Maode Ma and Jiecheng Xie},
        title={Temporary Internet Access for Authentication and Key Agreement for LTE Networks},
        proceedings={Smart Grid and Innovative Frontiers in Telecommunications. Third International Conference, SmartGIFT 2018, Auckland, New Zealand, April 23-24, 2018, Proceedings},
        proceedings_a={SMARTGIFT},
        year={2018},
        month={7},
        keywords={Wireless communications Long Term Evolution Security attack DoS attack Authentication and Key Agreement},
        doi={10.1007/978-3-319-94965-9_1}
    }
    
  • Xue Li
    Maode Ma
    Jiecheng Xie
    Year: 2018
    Temporary Internet Access for Authentication and Key Agreement for LTE Networks
    SMARTGIFT
    Springer
    DOI: 10.1007/978-3-319-94965-9_1
Xue Li1,*, Maode Ma2,*, Jiecheng Xie2,*
  • 1: Auckland University of Technology
  • 2: Nanyang Technological University
*Contact email: xuejun.li@aut.ac.nz, emdma@ntu.edu.sg, jcxie@ntu.edu.sg

Abstract

Evolved Packet System-Authentication and Key Agreement (EPS-AKA) is the security protocol in Long-Term Evolution (LTE). However, it is still vulnerable to user identity attacks and fake eNBs. Efficient EPS-AKA (EEPS-AKA) was proposed with some improvements. Nevertheless, the EEPS-AKA is vulnerable to denial-of-service (DoS) attacks and fake eNBs, despite of some minor flaws in its procedures. In this paper, we propose Temporary Internet Access (TIA)-AKA to: (1) prevent user identity disclosure by implementing some additional steps, which allows a user equipment (UE) to request a temporary UE identity to access Internet; and (2) authenticate the Mobility Management Entity (MME) through the validity of the assigned IP address. Physical address and simple password exponential key exchange (SPEKE) method are combined into the proposed TIA-AKA. Efficiency analysis suggests the TIA-AKA provides a fully protection on the user identity and prevent the DoS attack, at the expense of increased bandwidth consumption and processing delay.