ANSI TIA-664.804-A-2007 Wireless Features Description Enhanced Security.pdf

1、 TIA-664.804-A (Revision of TIA-664.804) October 2007Wireless Features Description: Enhanced Security ANSI/TIA-664.804-A-2007 APPROVED: OCTOBER 23, 2007 REAFFIRMED: FEBRUARY 4, 2013 NOTICE TIA Engineering Standards and Publications are designed to serve the public interest through eliminating misund

2、erstandings between manufacturers and purchasers, facilitating interchangeability and improvement of products, and assisting the purchaser in selecting and obtaining with minimum delay the proper product for their particular need. The existence of such Standards and Publications shall not in any res

3、pect preclude any member or non-member of TIA from manufacturing or selling products not conforming to such Standards and Publications. Neither shall the existence of such Standards and Publications preclude their voluntary use by Non-TIA members, either domestically or internationally. Standards an

4、d Publications are adopted by TIA in accordance with the American National Standards Institute (ANSI) patent policy. By such action, TIA does not assume any liability to any patent owner, nor does it assume any obligation whatever to parties adopting the Standard or Publication. This Standard does n

5、ot purport to address all safety problems associated with its use or all applicable regulatory requirements. It is the responsibility of the user of this Standard to establish appropriate safety and health practices and to determine the applicability of regulatory limitations before its use. (From P

6、roject No. SP-3-4652.804-RV1-RF1, formulated under the cognizance of the TIA TR-45 Mobile (b) there is no assurance that the Document will be approved by any Committee of TIA or any other body in its present or any other form; (c) the Document may be amended, modified or changed in the standards dev

7、elopment or any editing process. The use or practice of contents of this Document may involve the use of intellectual property rights (“IPR”), including pending or issued patents, or copyrights, owned by one or more parties. TIA makes no search or investigation for IPR. When IPR consisting of patent

8、s and published pending patent applications are claimed and called to TIAs attention, a statement from the holder thereof is requested, all in accordance with the Manual. TIA takes no position with reference to, and disclaims any obligation to investigate or inquire into, the scope or validity of an

9、y claims of IPR. TIA will neither be a party to discussions of any licensing terms or conditions, which are instead left to the parties involved, nor will TIA opine or judge whether proposed licensing terms or conditions are reasonable or non-discriminatory. TIA does not warrant or represent that pr

10、ocedures or practices suggested or provided in the Manual have been complied with as respects the Document or its contents. If the Document contains one or more Normative References to a document published by another organization (“other SSO”) engaged in the formulation, development or publication o

11、f standards (whether designated as a standard, specification, recommendation or otherwise), whether such reference consists of mandatory, alternate or optional elements (as defined in the TIA Engineering Manual, 4thedition) then (i) TIA disclaims any duty or obligation to search or investigate the r

12、ecords of any other SSO for IPR or letters of assurance relating to any such Normative Reference; (ii) TIAs policy of encouragement of voluntary disclosure (see Engineering Manual Section 6.5.1) of Essential Patent(s) and published pending patent applications shall apply; and (iii) Information as to

13、 claims of IPR in the records or publications of the other SSO shall not constitute identification to TIA of a claim of Essential Patent(s) or published pending patent applications. TIA does not enforce or monitor compliance with the contents of the Document. TIA does not certify, inspect, test or o

14、therwise investigate products, designs or services or any claims of compliance with the contents of the Document. ALL WARRANTIES, EXPRESS OR IMPLIED, ARE DISCLAIMED, INCLUDING WITHOUT LIMITATION, ANY AND ALL WARRANTIES CONCERNING THE ACCURACY OF THE CONTENTS, ITS FITNESS OR APPROPRIATENESS FOR A PAR

15、TICULAR PURPOSE OR USE, ITS MERCHANTABILITY AND ITS NONINFRINGEMENT OF ANY THIRD PARTYS INTELLECTUAL PROPERTY RIGHTS. TIA EXPRESSLY DISCLAIMS ANY AND ALL RESPONSIBILITIES FOR THE ACCURACY OF THE CONTENTS AND MAKES NO REPRESENTATIONS OR WARRANTIES REGARDING THE CONTENTS COMPLIANCE WITH ANY APPLICABLE

16、 STATUTE, RULE OR REGULATION, OR THE SAFETY OR HEALTH EFFECTS OF THE CONTENTS OR ANY PRODUCT OR SERVICE REFERRED TO IN THE DOCUMENT OR PRODUCED OR RENDERED TO COMPLY WITH THE CONTENTS. TIA SHALL NOT BE LIABLE FOR ANY AND ALL DAMAGES, DIRECT OR INDIRECT, ARISING FROM OR RELATING TO ANY USE OF THE CON

17、TENTS CONTAINED HEREIN, INCLUDING WITHOUT LIMITATION ANY AND ALL INDIRECT, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES (INCLUDING DAMAGES FOR LOSS OF BUSINESS, LOSS OF PROFITS, LITIGATION, OR THE LIKE), WHETHER BASED UPON BREACH OF CONTRACT, BREACH OF WARRANTY, TORT (INCLUDING NEGLIGENCE), PRODUCT

18、LIABILITY OR OTHERWISE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. THE FOREGOING NEGATION OF DAMAGES IS A FUNDAMENTAL ELEMENT OF THE USE OF THE CONTENTS HEREOF, AND THESE CONTENTS WOULD NOT BE PUBLISHED BY TIA WITHOUT SUCH LIMITATIONS. TIA-664.804-A 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17

19、 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 804-i Contents Wireless Features Description: Enhanced Security Services Contents Revision Historyii 1 Enhanced Security 1 1.1 Enhanced Subscriber Authentication (ESA) 1

20、1.1.1 Normal Procedures with Successful Outcome .4 1.1.2 Exception Procedures or Unsuccessful Outcome.5 1.1.3 Alternative Procedures .5 1.1.4 Interactions with Other Wireless Services .5 1.2 Enhanced Subscriber Privacy (ESP).6 1.2.1 Normal Procedure with Successful Outcome.7 1.2.2 Exception Procedur

21、es or Unsuccessful Outcome.9 1.2.3 Alternative Procedures .9 1.2.4 Interactions With Other Wireless Services.9 TIA-664.804-A 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 Revi

22、sion History 804-ii Revision History Revision Date Remarks ANSI/TIA/EIA-664-804 July 2003 Initial publication TIA-664.804-A September 2007 Updated publication TIA-664.804-A 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 4

23、6 47 48 49 50 51 52 53 54 55 56 57 58 59 60 Enhanced Subscriber Authentication (ESA) 804-1 Enhanced Security 1 Enhanced Security Enhanced Security provides enhanced capabilities for wireless networks and mobile stations. The enhanced security capabilities address: unauthorized use of service; unauth

24、orized communications to the MS (e.g., unauthorized attempts to control the MS or retrieve information from the MS); unauthorized monitoring of subscriber traffic (e.g., eavesdropping). The security capabilities that address these problems are: a. Enhanced Subscriber Authentication (ESA): By cryptog

25、raphic means (e.g., a cryptographically-generated challenge-response), ESA verifies that a subscriber requesting service and the network (i.e., base station) are authorized. ESA also provides data integrity protection against unauthorized modification of messages during transmission. b. Enhanced Sub

26、scriber Privacy (ESP): By means of encryption across the air-interface, enhanced subscriber privacy (ESP) protects user data (bearer data and signaling) from unauthorized eavesdropping. From the end user perspective, the enhanced security requirements are independent of the air interface. Thus, the

27、enhanced security capabilities are applicable to all digital air interfaces. Cryptographic Strength The cryptographic strength of the ESA process is independent of the cryptographic strength of the ESP process. Compromise of the ESP process does not weaken the ESA process. Export Considerations ESA

28、and ESP meet the requirements of U.S. export laws and regulations, currently the Export Administration Regulations (title 15 CFR parts 730 through 774 inclusive.). 1.1 Enhanced Subscriber Authentication (ESA) ESA provides methods for determining the authenticity of any request for service made on an

29、 air interface and the authenticity of the network (i.e., base station). ESA is supported on all wireless channels and in all MS states in which access to services can be requested. On the control channels, ESA provides the ability to authenticate the source and content of every message that may com

30、promise the subscribers security. On dedicated channels, ESA authenticates the source and content of any message that may compromise the subscribers security. ESA uses cryptographic authentication procedures. ESA may use challenge-response authentication, wherein the challenge is random and the resp

31、onse is generated by correspondingly keyed cryptographic algorithms within the MS and the network. The TIA-664.804-A 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 Enhanced Sec

32、urity 804-2 Enhanced Subscriber Authentication (ESA) authentication procedure prevents replay attacks by minimizing the likelihood that authentication signatures are reused. ESA verifies that the MS contains data representing a valid subscription (e.g., IMSI, MIN) and that the base station is authen

33、tic. The authentication process permits subscriber identity authentication independent of the MS identity (e.g., ESN, MEID). ESA verifies the source and content of air interface messages that may compromise subscribers security. Root Authentication Keys The root authentication key is known only to t

34、he MS and to the home system Authentication Center. Methods for the installation of root authentication keys include means to prevent compromise of the keys. The authentication procedures permit the distribution of root authentication keys in removable UIMs. The authentication procedures permit the

35、operation of a removable UIM in multiple terminals. The authentication procedures prevent authentication of mobile equipment when the UIM is not present. Secondary Authentication Keys Secondary authentication keys may be generated in the MS and the home system Authentication Center, and may be trans

36、mitted to visited systems for use in authentication. Compromise of secondary authentication keys shall not compromise the root authentication key. The secondary authentication keys can be modified in the MS under the control of the home system. Minimum Standard of Service ESA provides strong protect

37、ion against unauthorized access to wireless services. The contribution of ESA to call drops and call attempt failures is negligible. The ESA algorithm shall be publicly disclosed and commercially available, and shall have been sufficiently studied by the cryptographic community, with strengths and w

38、eaknesses thoroughly understood. Enhancements if Security is Compromised ESA provides a mechanism to enhance the ESA algorithm(s), key generation procedures, or both, in the event the security of ESA is compromised. TIA-664.804-A 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 2

39、7 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 Enhanced Subscriber Authentication (ESA) 804-3 Enhanced Security Network Capabilities The home system can share secondary authentication key data with visited systems to enable the visited system to

40、perform authentication procedures, thereby minimizing network signaling traffic. Individual challenges of the MS are used to determine the authenticity of the MS. MS authentication of the network (i.e., base station) is used to determine the authenticity of the base station. Data integrity, privacy

41、and encryption keys are generated as part of the MS authentication procedure. ESA can be used for pre-call authentication of service requests on control channels. The home system can revoke MS access to service at any time, regardless of the location of the MS. Air Interface Capabilities All air int

42、erfaces providing access to services include a means to verify the authenticity of the subscription data contained in the MS making the request and the authenticity of the base station. Data integrity verifies that air interface messages have not been modified in an unauthorized way and that the sen

43、ding entity (MS or base station) is the one claimed. Backwards and Forward Compatibility Air interface and network protocols allow mutual identification of the authentication procedure version or versions supported by the MS and by the network equipment so that a mutually supported authentication pr

44、ocedure can be negotiated. When multiple authentication options are supported by both the MS and the network, the network will choose the option to be used. MS access to service may be rejected if an acceptable authentication option cannot be negotiated. The MS may reject the services offered by the

45、 network if an acceptable authentication option can not be negotiated. ESA is a significant modification of the existing authentication methodology and may not be supported by older wireless systems. However, an ESA-capable MS should function in a non-ESA-capable system, using the authentication alg

46、orithm currently specified in the Common Cryptographic Algorithms (CCA), and shall also function in systems in which authentication has not been implemented. An ESA-capable system is expected to support the present authentication methodology, thus preserving the capability to authenticate a current

47、non-ESA-capable MS. Air interface and network protocols should allow for the possible introduction of new authentication algorithms during the expected lifetime of ESA. Applicability to Telecommunications Services ESA is applicable to all telecommunications services (e.g., voice, data and signaling)

48、. TIA-664.804-A 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 Enhanced Security 804-4 Enhanced Subscriber Authentication (ESA) 1.1.1 Normal Procedures with Successful Outcome

49、Authorization ESA is provided to all subscribers. De-Authorization None identified. Registration ESA has no registration. De-Registration ESA has no de-registration. Activation ESA is always active. De-Activation ESA has no de-activation. Invocation ESA is invoked upon any MS access for service (e.g., registration, origination, page response). The serving system may make certain services available despite ESA failure (e.g., emergency services call, customer services call, credit card call). Normal Operation with Successful Outcome When ESA is invoked, the subscriber identity in