Improved 5G-AKA Scheme Based on Identity Pool and Bloom Filter

2021 IEEE 6th International Conference on Computer and Communication Systems (ICCCS) Pub Date : 2021-04-23 DOI:10.1109/ICCCS52626.2021.9449296

Shiyang Dong, C. Wan

{"title":"Improved 5G-AKA Scheme Based on Identity Pool and Bloom Filter","authors":"Shiyang Dong, C. Wan","doi":"10.1109/ICCCS52626.2021.9449296","DOIUrl":null,"url":null,"abstract":"5G-AKA is an identity authentication protocol for 5G network that ensures communication security, such as the network and subscribers. However, the existing standards simply associate 5G Globally Unique Temporary UE Identity (GUTI) with the Subscription Permanent Identifier (SUPI) in the Home Network (HN) as a temporary identity solution for 5G subscribers, UE cannot quickly change the 5G-GUTI according to its own needs. Moreover, the current Sequence Number (SQN) synchronization mechanism will cause low authentication efficiency in the specific situation. To address the above issues, we use Bloom filter to establish a many-to-one mapping relationship between the identity and the UE, so as to achieve rapid verification of the identifier. Based on this, a mechanism that allows the UE to change the temporary identity and a fast authentication mechanism under the condition of sequence out-of-synchronization are proposed. Security analysis and experimental results demonstrate that the proposed scheme is efficient, secure, and compatible with the existing system.","PeriodicalId":376290,"journal":{"name":"2021 IEEE 6th International Conference on Computer and Communication Systems (ICCCS)","volume":"5 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-04-23","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 IEEE 6th International Conference on Computer and Communication Systems (ICCCS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICCCS52626.2021.9449296","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

5G-AKA is an identity authentication protocol for 5G network that ensures communication security, such as the network and subscribers. However, the existing standards simply associate 5G Globally Unique Temporary UE Identity (GUTI) with the Subscription Permanent Identifier (SUPI) in the Home Network (HN) as a temporary identity solution for 5G subscribers, UE cannot quickly change the 5G-GUTI according to its own needs. Moreover, the current Sequence Number (SQN) synchronization mechanism will cause low authentication efficiency in the specific situation. To address the above issues, we use Bloom filter to establish a many-to-one mapping relationship between the identity and the UE, so as to achieve rapid verification of the identifier. Based on this, a mechanism that allows the UE to change the temporary identity and a fast authentication mechanism under the condition of sequence out-of-synchronization are proposed. Security analysis and experimental results demonstrate that the proposed scheme is efficient, secure, and compatible with the existing system.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

基于身份池和布隆过滤器的改进5G-AKA方案

5G- aka是保障网络和用户等通信安全的5G网络身份认证协议。然而，现有标准只是将5G全球唯一临时用户标识(GUTI)与家庭网络(HN)中的订阅永久标识(SUPI)相关联，作为5G用户的临时身份解决方案，UE无法根据自己的需求快速更改5G-GUTI。此外，现有的SQN (Sequence Number)同步机制在特定情况下会导致认证效率较低。为了解决以上问题，我们使用Bloom filter在标识和UE之间建立多对一的映射关系，从而实现标识符的快速验证。在此基础上，提出了一种允许终端更改临时身份的机制和一种序列非同步情况下的快速认证机制。安全性分析和实验结果表明，该方案高效、安全，且与现有系统兼容。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

2021 IEEE 6th International Conference on Computer and Communication Systems (ICCCS)

自引率

0.00%

发文量