ImageVerifierCode 换一换
格式:PDF , 页数:20 ,大小:258.50KB ,
资源ID:438691      下载积分:10000 积分
快捷下载
登录下载
邮箱/手机:
温馨提示:
如需开发票,请勿充值!快捷下载时,用户名和密码都是您填写的邮箱或者手机号,方便查询和重复下载(系统自动生成)。
如填写123,账号就是123,密码也是123。
特别说明:
请自助下载,系统不会自动发送文件的哦; 如果您已付费,想二次下载,请登录后访问:我的下载记录
支付方式: 支付宝扫码支付 微信扫码支付   
注意:如需开发票,请勿充值!
验证码:   换一换

加入VIP,免费下载
 

温馨提示:由于个人手机设置不同,如果发现不能下载,请复制以下地址【http://www.mydoc123.com/d-438691.html】到电脑端继续下载(重复下载不扣费)。

已注册用户请登录:
账号:
密码:
验证码:   换一换
  忘记密码?
三方登录: 微信登录  

下载须知

1: 本站所有资源如无特殊说明,都需要本地电脑安装OFFICE2007和PDF阅读器。
2: 试题试卷类文档,如果标题没有明确说明有答案则都视为没有答案,请知晓。
3: 文件的所有权益归上传用户所有。
4. 未经权益所有人同意不得将文件中的内容挪作商业或盈利用途。
5. 本站仅提供交流平台,并不能对任何下载内容负责。
6. 下载文件中如有侵权或不适当内容,请与我们联系,我们立即纠正。
7. 本站不保证下载资源的准确性、安全性和完整性, 同时也不承担用户因使用这些下载资源对自己和他人造成任何形式的伤害或损失。

版权提示 | 免责声明

本文(ANSI TIA-664.804-A-2007 Wireless Features Description Enhanced Security.pdf)为本站会员(boatfragile160)主动上传,麦多课文库仅提供信息存储空间,仅对用户上传内容的表现方式做保护处理,对上载内容本身不做任何修改或编辑。 若此文所含内容侵犯了您的版权或隐私,请立即通知麦多课文库(发送邮件至master@mydoc123.com或直接QQ联系客服),我们立即给予删除!

ANSI TIA-664.804-A-2007 Wireless Features Description Enhanced Security.pdf

1、 TIA-664.804-A (Revision of TIA-664.804) October 2007Wireless Features Description: Enhanced Security ANSI/TIA-664.804-A-2007 APPROVED: OCTOBER 23, 2007 REAFFIRMED: FEBRUARY 4, 2013 NOTICE TIA Engineering Standards and Publications are designed to serve the public interest through eliminating misund

2、erstandings between manufacturers and purchasers, facilitating interchangeability and improvement of products, and assisting the purchaser in selecting and obtaining with minimum delay the proper product for their particular need. The existence of such Standards and Publications shall not in any res

3、pect preclude any member or non-member of TIA from manufacturing or selling products not conforming to such Standards and Publications. Neither shall the existence of such Standards and Publications preclude their voluntary use by Non-TIA members, either domestically or internationally. Standards an

4、d Publications are adopted by TIA in accordance with the American National Standards Institute (ANSI) patent policy. By such action, TIA does not assume any liability to any patent owner, nor does it assume any obligation whatever to parties adopting the Standard or Publication. This Standard does n

5、ot purport to address all safety problems associated with its use or all applicable regulatory requirements. It is the responsibility of the user of this Standard to establish appropriate safety and health practices and to determine the applicability of regulatory limitations before its use. (From P

6、roject No. SP-3-4652.804-RV1-RF1, formulated under the cognizance of the TIA TR-45 Mobile (b) there is no assurance that the Document will be approved by any Committee of TIA or any other body in its present or any other form; (c) the Document may be amended, modified or changed in the standards dev

7、elopment or any editing process. The use or practice of contents of this Document may involve the use of intellectual property rights (“IPR”), including pending or issued patents, or copyrights, owned by one or more parties. TIA makes no search or investigation for IPR. When IPR consisting of patent

8、s and published pending patent applications are claimed and called to TIAs attention, a statement from the holder thereof is requested, all in accordance with the Manual. TIA takes no position with reference to, and disclaims any obligation to investigate or inquire into, the scope or validity of an

9、y claims of IPR. TIA will neither be a party to discussions of any licensing terms or conditions, which are instead left to the parties involved, nor will TIA opine or judge whether proposed licensing terms or conditions are reasonable or non-discriminatory. TIA does not warrant or represent that pr

10、ocedures or practices suggested or provided in the Manual have been complied with as respects the Document or its contents. If the Document contains one or more Normative References to a document published by another organization (“other SSO”) engaged in the formulation, development or publication o

11、f standards (whether designated as a standard, specification, recommendation or otherwise), whether such reference consists of mandatory, alternate or optional elements (as defined in the TIA Engineering Manual, 4thedition) then (i) TIA disclaims any duty or obligation to search or investigate the r

12、ecords of any other SSO for IPR or letters of assurance relating to any such Normative Reference; (ii) TIAs policy of encouragement of voluntary disclosure (see Engineering Manual Section 6.5.1) of Essential Patent(s) and published pending patent applications shall apply; and (iii) Information as to

13、 claims of IPR in the records or publications of the other SSO shall not constitute identification to TIA of a claim of Essential Patent(s) or published pending patent applications. TIA does not enforce or monitor compliance with the contents of the Document. TIA does not certify, inspect, test or o

14、therwise investigate products, designs or services or any claims of compliance with the contents of the Document. ALL WARRANTIES, EXPRESS OR IMPLIED, ARE DISCLAIMED, INCLUDING WITHOUT LIMITATION, ANY AND ALL WARRANTIES CONCERNING THE ACCURACY OF THE CONTENTS, ITS FITNESS OR APPROPRIATENESS FOR A PAR

15、TICULAR PURPOSE OR USE, ITS MERCHANTABILITY AND ITS NONINFRINGEMENT OF ANY THIRD PARTYS INTELLECTUAL PROPERTY RIGHTS. TIA EXPRESSLY DISCLAIMS ANY AND ALL RESPONSIBILITIES FOR THE ACCURACY OF THE CONTENTS AND MAKES NO REPRESENTATIONS OR WARRANTIES REGARDING THE CONTENTS COMPLIANCE WITH ANY APPLICABLE

16、 STATUTE, RULE OR REGULATION, OR THE SAFETY OR HEALTH EFFECTS OF THE CONTENTS OR ANY PRODUCT OR SERVICE REFERRED TO IN THE DOCUMENT OR PRODUCED OR RENDERED TO COMPLY WITH THE CONTENTS. TIA SHALL NOT BE LIABLE FOR ANY AND ALL DAMAGES, DIRECT OR INDIRECT, ARISING FROM OR RELATING TO ANY USE OF THE CON

17、TENTS CONTAINED HEREIN, INCLUDING WITHOUT LIMITATION ANY AND ALL INDIRECT, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES (INCLUDING DAMAGES FOR LOSS OF BUSINESS, LOSS OF PROFITS, LITIGATION, OR THE LIKE), WHETHER BASED UPON BREACH OF CONTRACT, BREACH OF WARRANTY, TORT (INCLUDING NEGLIGENCE), PRODUCT

18、LIABILITY OR OTHERWISE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. THE FOREGOING NEGATION OF DAMAGES IS A FUNDAMENTAL ELEMENT OF THE USE OF THE CONTENTS HEREOF, AND THESE CONTENTS WOULD NOT BE PUBLISHED BY TIA WITHOUT SUCH LIMITATIONS. TIA-664.804-A 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17

19、 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 804-i Contents Wireless Features Description: Enhanced Security Services Contents Revision Historyii 1 Enhanced Security 1 1.1 Enhanced Subscriber Authentication (ESA) 1

20、1.1.1 Normal Procedures with Successful Outcome .4 1.1.2 Exception Procedures or Unsuccessful Outcome.5 1.1.3 Alternative Procedures .5 1.1.4 Interactions with Other Wireless Services .5 1.2 Enhanced Subscriber Privacy (ESP).6 1.2.1 Normal Procedure with Successful Outcome.7 1.2.2 Exception Procedur

21、es or Unsuccessful Outcome.9 1.2.3 Alternative Procedures .9 1.2.4 Interactions With Other Wireless Services.9 TIA-664.804-A 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 Revi

22、sion History 804-ii Revision History Revision Date Remarks ANSI/TIA/EIA-664-804 July 2003 Initial publication TIA-664.804-A September 2007 Updated publication TIA-664.804-A 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 4

23、6 47 48 49 50 51 52 53 54 55 56 57 58 59 60 Enhanced Subscriber Authentication (ESA) 804-1 Enhanced Security 1 Enhanced Security Enhanced Security provides enhanced capabilities for wireless networks and mobile stations. The enhanced security capabilities address: unauthorized use of service; unauth

24、orized communications to the MS (e.g., unauthorized attempts to control the MS or retrieve information from the MS); unauthorized monitoring of subscriber traffic (e.g., eavesdropping). The security capabilities that address these problems are: a. Enhanced Subscriber Authentication (ESA): By cryptog

25、raphic means (e.g., a cryptographically-generated challenge-response), ESA verifies that a subscriber requesting service and the network (i.e., base station) are authorized. ESA also provides data integrity protection against unauthorized modification of messages during transmission. b. Enhanced Sub

26、scriber Privacy (ESP): By means of encryption across the air-interface, enhanced subscriber privacy (ESP) protects user data (bearer data and signaling) from unauthorized eavesdropping. From the end user perspective, the enhanced security requirements are independent of the air interface. Thus, the

27、enhanced security capabilities are applicable to all digital air interfaces. Cryptographic Strength The cryptographic strength of the ESA process is independent of the cryptographic strength of the ESP process. Compromise of the ESP process does not weaken the ESA process. Export Considerations ESA

28、and ESP meet the requirements of U.S. export laws and regulations, currently the Export Administration Regulations (title 15 CFR parts 730 through 774 inclusive.). 1.1 Enhanced Subscriber Authentication (ESA) ESA provides methods for determining the authenticity of any request for service made on an

29、 air interface and the authenticity of the network (i.e., base station). ESA is supported on all wireless channels and in all MS states in which access to services can be requested. On the control channels, ESA provides the ability to authenticate the source and content of every message that may com

30、promise the subscribers security. On dedicated channels, ESA authenticates the source and content of any message that may compromise the subscribers security. ESA uses cryptographic authentication procedures. ESA may use challenge-response authentication, wherein the challenge is random and the resp

31、onse is generated by correspondingly keyed cryptographic algorithms within the MS and the network. The TIA-664.804-A 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 Enhanced Sec

32、urity 804-2 Enhanced Subscriber Authentication (ESA) authentication procedure prevents replay attacks by minimizing the likelihood that authentication signatures are reused. ESA verifies that the MS contains data representing a valid subscription (e.g., IMSI, MIN) and that the base station is authen

33、tic. The authentication process permits subscriber identity authentication independent of the MS identity (e.g., ESN, MEID). ESA verifies the source and content of air interface messages that may compromise subscribers security. Root Authentication Keys The root authentication key is known only to t

34、he MS and to the home system Authentication Center. Methods for the installation of root authentication keys include means to prevent compromise of the keys. The authentication procedures permit the distribution of root authentication keys in removable UIMs. The authentication procedures permit the

35、operation of a removable UIM in multiple terminals. The authentication procedures prevent authentication of mobile equipment when the UIM is not present. Secondary Authentication Keys Secondary authentication keys may be generated in the MS and the home system Authentication Center, and may be trans

36、mitted to visited systems for use in authentication. Compromise of secondary authentication keys shall not compromise the root authentication key. The secondary authentication keys can be modified in the MS under the control of the home system. Minimum Standard of Service ESA provides strong protect

37、ion against unauthorized access to wireless services. The contribution of ESA to call drops and call attempt failures is negligible. The ESA algorithm shall be publicly disclosed and commercially available, and shall have been sufficiently studied by the cryptographic community, with strengths and w

38、eaknesses thoroughly understood. Enhancements if Security is Compromised ESA provides a mechanism to enhance the ESA algorithm(s), key generation procedures, or both, in the event the security of ESA is compromised. TIA-664.804-A 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 2

39、7 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 Enhanced Subscriber Authentication (ESA) 804-3 Enhanced Security Network Capabilities The home system can share secondary authentication key data with visited systems to enable the visited system to

40、perform authentication procedures, thereby minimizing network signaling traffic. Individual challenges of the MS are used to determine the authenticity of the MS. MS authentication of the network (i.e., base station) is used to determine the authenticity of the base station. Data integrity, privacy

41、and encryption keys are generated as part of the MS authentication procedure. ESA can be used for pre-call authentication of service requests on control channels. The home system can revoke MS access to service at any time, regardless of the location of the MS. Air Interface Capabilities All air int

42、erfaces providing access to services include a means to verify the authenticity of the subscription data contained in the MS making the request and the authenticity of the base station. Data integrity verifies that air interface messages have not been modified in an unauthorized way and that the sen

43、ding entity (MS or base station) is the one claimed. Backwards and Forward Compatibility Air interface and network protocols allow mutual identification of the authentication procedure version or versions supported by the MS and by the network equipment so that a mutually supported authentication pr

44、ocedure can be negotiated. When multiple authentication options are supported by both the MS and the network, the network will choose the option to be used. MS access to service may be rejected if an acceptable authentication option cannot be negotiated. The MS may reject the services offered by the

45、 network if an acceptable authentication option can not be negotiated. ESA is a significant modification of the existing authentication methodology and may not be supported by older wireless systems. However, an ESA-capable MS should function in a non-ESA-capable system, using the authentication alg

46、orithm currently specified in the Common Cryptographic Algorithms (CCA), and shall also function in systems in which authentication has not been implemented. An ESA-capable system is expected to support the present authentication methodology, thus preserving the capability to authenticate a current

47、non-ESA-capable MS. Air interface and network protocols should allow for the possible introduction of new authentication algorithms during the expected lifetime of ESA. Applicability to Telecommunications Services ESA is applicable to all telecommunications services (e.g., voice, data and signaling)

48、. TIA-664.804-A 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 Enhanced Security 804-4 Enhanced Subscriber Authentication (ESA) 1.1.1 Normal Procedures with Successful Outcome

49、Authorization ESA is provided to all subscribers. De-Authorization None identified. Registration ESA has no registration. De-Registration ESA has no de-registration. Activation ESA is always active. De-Activation ESA has no de-activation. Invocation ESA is invoked upon any MS access for service (e.g., registration, origination, page response). The serving system may make certain services available despite ESA failure (e.g., emergency services call, customer services call, credit card call). Normal Operation with Successful Outcome When ESA is invoked, the subscriber identity in

copyright@ 2008-2019 麦多课文库(www.mydoc123.com)网站版权所有
备案/许可证编号:苏ICP备17064731号-1