1、STD-ETSI ETR 32q-ENGL L99b 3400855 0157740 289 ETSI TEct CA REPORT ETR 324 December 1996 Source: ETSI TGNA Reference: DTWNA-007012 ICs: 33.020 Key words: UPT, security Universal Personal Telecommunication (UPT); Authentication algorithm for Phase 1 ; Requirements specification ETSI European Telecomm
2、unications Standards Institute ETSI Secretariat Postal address: F-O6921 Sophia Antipolis CEDEX - FRANCE Office address: 650 Route des Lucioles - Sophia Antipolis - Valbonne - FRANCE X.400: c=fr, a=atlas, p=etsi, s=secretariat - Internet: secretariata etsi.fr Tel.: +33 4 92 94 42 O0 - Fax: +33 4 93 6
3、5 47 16 Copyright Notificatlon: No pari may be reproduced except as authorized by written permission. The copyright and the foregoing restriction extend to reproduction in ali media. Q European Telecommunications Standards institute 1996. All rights reserved. _ _ STD.ETS1 ETR 324-ENGL L99b 3400855 O
4、L5994L 115 Page 2 ETR 324: December 1996 Whilst every care has been taken in the preparation and publication of this document, errors in content, typographical or otherwise, may occur. If you have comments concerning its accuracy, please write to “ETSI Editing and Committee Support Dept.“ at the add
5、ress shown on the title page. Page 3 ETR 324: December 1996 STD-ETSI ETR 32V-ENGL 377b 3400855 0157942 051 Contents Foreword . 5 Scope 7 References 7 Algorithm parametets 7 Strength . 7 Algorithm confidentiality 7 Algorithm distribution . 7 Dimensioning constraints 8 Acceptance criteria 8 Algorithm
6、presentation 8 History 9 STD-ETSI ETR 32Li-ENGL L77b 3LiU855 01577Li3 T7 = Page 4 ETR 324: December 1996 Blank page Foreword This ETSI Technical Report (ETR) has been produced by the Network Aspects (NA) Technical Committee of the European Telecommunications Standards Institute (ETSI). ETRs are info
7、rmative documents resulting from ETSI studies which are not appropriate for European Telecommunication Standard (ETS) or Interim European Telecommunication Standard (I-ETS) status. An ETR may be used to publish material which is either of an informative nature, relating to the use or the application
8、 of ETSs or I-ETSs, or which is immature and not yet suitable for formal adoption as an ETS or an I-ETS. This ETR was prepared in 1992. - - STD-ETSI ETR 324-ENGL 199b m 3400855 0159945 BbO m Page 6 ETR 324: December 1996 Blank page - - - STD-ETSI ETR 32Li-ENGL 177b 3400855 O15774b 7T7 Page 7 ETR 324
9、: December 1996 1 Scope This ETSI Technical Report (ETR) provides a requirements specification on the Universal Personal Telecommunication (UPT) authentication algorithm for Phase 1. The algorithm is a secret-keyed one-way function, and is to be used for the non-interactive authentication of the UPT
10、 users for Phase 1 , using the procedures defined in ETS 300 391 -1 111. Although it is primarily intended for Phase 1, the algorithm is specified in such a way that it should also be possible to use it in an interactive way in Phase 2. 2 References This ETR incorporates by dated or undated referenc
11、e, provisions from other publications. These references are cited at the appropriate places in the text and the publications are listed below. For dated references subsequent amendments to, or revisions of, any of these publications apply to this ETR only when incorporated in it by amendment or revi
12、sion. For undated references the latest edition of the publication referred to applies. ETS 300 391 -1 : “Universal Personal Telecommunication (UPT); Specification of the security architecture for UPT phase 1; Part 1: Specification“. 3 Algorithm parameters The algorithm parameters are as follows: -
13、Input: 64 bits labelled XO to X63; - Output: 32 bits labelled YO to Y31; - Key: 128 bits labelled KO to K127. The input will be a non-repeating number generated by the UPT device (counter). The mapping from the counter value into the bits XO to X63 is described in ETS 300 391-1 l. When the UPT devic
14、e is a DTMF generator, the output value is to be converted into a Dual Tone Multi-Frequency (DTMF) signal for transmission across the network. The mapping from the bits YO to Y31 into the DTMF characters is described in ETS 300 391-1 l. 4 Strength For any set of inputs, it shall bexomputationally un
15、feasible to use the knowledge of the corresponding outputs under an unknown key to deduce the key, or to deduce the output corresponding to any additional input value. 5 Algorithm confidentiality The algorithm specification will be kept confidential (.e. not published). The algorithm will be made av
16、ailable to the service providers and to those who need to know how to implement the standard, but will not be published as part of this ETR, or be publicly available. 6 Algorithm distribution An algorithm custodian, appointed by ETSI, will be entrusted with the algorithm distribution. Anyone receivi
17、ng a copy of the algorithm specification will have to sign a non disclosure and restricted usage undertaking. Page a STD-ETSI ETR 32Li-ENGL 377b 3i00855 0357747 b33 ETR 324: December 1996 7 Dimensioning constraints A software oriented solution is preferred, with the following constraints: SPEED: 100
18、 milliseconds maximum (inputloutput non included) on a 6 805 family of microprocessors, e.g. the Motorola SC21 series, with a 4 MHz clock; ROM: 1 O00 bytes maximum (if possible 500 bytes); RAM: 64 bytes. It should be feasible to implement the algorithm in a smart card. 8 Acceptance criteria The desi
19、gn and the evaluation work will be done under the control of the ETSVSAGE group, which is responsible for the final approval of the algorithm. 9 Algorithm presentation ETSVSAGE will produce two documents: 1) the algorithm specification, which will be kept secret and will consist of: - a word mathema
20、tical description of the algorithm; - conformance test vectors; - PascallC sample implementations; - dimensioning/performance estimates; 2) a final report to Network Aspects Technical Committee containing some dimensioninglperformance estimates. STD*ETSI ETR 324-ENGL L77b B 3400855 OL57748 57T B December 1996 Page 9 First Edition ETR 324: December 1996 History ISBN 2-7437-1 149-3 Dpt lgal : Decembre 1996
