摘要
针对UMTS认证与密钥协商AKA机制中使用序列号SQN不能有效抵抗重放攻击的问题,提出了一种基于预警机制自适应选择AS-AKA协议的方案,移动站MS收到用户认证请求消息后,通过验证接收消息的时间差或频率是否超过门限判断是否发出重放攻击预警.若有重放攻击预警,服务网络SN将协议切换到能有效抵抗重放攻击的APAKA协议.仿真结果表明,AS-AKA协议能够有效地抵抗重放攻击,相比UMTS AKA协议通过重同步过程抵抗重放攻击,本文方案抵抗重放攻击的同时降低了网络的比特通信量.
Aiming at UMTS authentication and key agreement(AKA) mechanism using sequence mumber(SQN) can not against replay attacks effectively, an adaptive selection protocol based on early warning mechanism AS-AKA was proposed in this paper. After receiving the user authentication request message, wobile station(MS) determines whether exists replay attacks by verifying the time difference or frequency of receiving messages. If there is replay attack, service network(SN) will switch the agreement to AP-AKA that can against replay attacks effectively. The simulation results show that AS-AKA can effectively resist replay attacks, and compared to UMTS AKA protocol resist replay attack by re-synchronization, while the mechanism reduce network's bits traffic.
出处
《天津理工大学学报》
2015年第2期24-29,37,共7页
Journal of Tianjin University of Technology
基金
天津市科技创新专项资金(10FDZDGX00400)
广西可信软件重点实验室研究课题(kx201332)
广西自然科学基金(2014GXNSFDA118036
2013GXNSFAA019324)
关键词
认证与密钥协商
重放攻击
序列号
预警机制
自适应选择
authentication and key agreement
replay attack
sequence number
early warning mechanism
adaptive selection
