Please use this identifier to cite or link to this item:
標題: 整合UMTS及802.11無線網路中交握之安全機置
A Secure handoff Scheme for Integration of UMTS and 802.11 WLANs
作者: 朱中華
Chu, Chung-Hua
關鍵字: context transfer;內容交換;security;one time password;安全;一次密鑰
出版社: 電機工程學系
本論文主要提出一個整合UMTS及802.11WLAN中加入安全內容交換機制。在整合UMTS及802.11WLAN中存在許多安全上的問題,我們將在整合架構中加入所提出的安全認證機制。當行動裝置由UMTS漫遊到WLAN時,提供了新的方法來得到通訊金鑰,稱為Dynamic Key Exchange Protocol,利用它提供金鑰給之後的設定的任一個對稱性加密演算法來使用,並且解決在無線區域路中安全標準上的問題及克服使用802.1X可能會遇到的問題;在這個協定需要三個階段來完成,分別是”Access Point Register Phase”, “Key Generate Phase”, “Refresh Password Phase”,在每個階段均受到非對稱性加密的保護。當行動裝置由WLAN漫遊到UMTS時,我們使用UMTS的認證方式,以達成使用者對系統網路的認證。在未來的無線通訊環境中將會有許多的整合3G UMTS及802.11 WLAN,但至今尚在這兩個環境交換時仍未有一非常安全的認證機置,我們提出的安全交握認證機置可以建立起高可信度及相互認證,可避免掉無線環境下可能發生的攻擊事件。

In this paper, we propose a secure handoff scheme for the integration of UMTS and 802.11 WLAN networks. The handoff between 802.11 WLAN and the UMTS has some drawbacks and could be hijacked through middle of a communication session. An architecture built for a secure handoff scheme is proposed to fix that problem. The Dynamic Key Exchange Protocol (DKEP) is used to protect users during a UMTS handover to a 802.11 WLAN environment. The mobile station (MS) and access point (AP) compute their session key individually. The protocol includes three phases and all the steps of the phases are protected by public-key encryption. Therefore no information can be hijacked between MS and AP. From the security analysis, we know that the handoff between WLAN and UMTS is guaranteed in various aspects. For example, user identity and new registration can be protected, thus avoiding denial of service, key reuse, and so on.
Appears in Collections:電機工程學系所

Show full item record

Google ScholarTM


Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.