overview of ieee 802 16 security
play

Overview of IEEE 802.16 Security David Johnston & Jesse Walker - PowerPoint PPT Presentation

May 10, 2023 •693 likes •844 views

Overview of IEEE 802.16 Security David Johnston & Jesse Walker Presented By: Anil Bazaz CS6204, Spring 2005 Intro to IEEE 802.16 Standard for Wireless Metropolitan Area Networks (WMANs) Flavors: IEEE 802.16-2001, 802.16a, 802.16c,

  1. Overview of IEEE 802.16 Security David Johnston & Jesse Walker Presented By: Anil Bazaz CS6204, Spring 2005

  2. Intro to IEEE 802.16 ♦ Standard for Wireless Metropolitan Area Networks (WMANs) ♦ Flavors: IEEE 802.16-2001, 802.16a, 802.16c, 802.16d, 802.16e ♦ Security Based DOCSIS CS6204, Spring 2005

  3. Intro to IEEE 802.16 Reference: http://www.nwfusion.com/news/tech/2001/0903tech.html CS6204, Spring 2005

  4. Threats to Wireless Medium ♦ Anyone can intercept messages ♦ Anyone can write to wireless channel ♦ Anyone can resend valid, already send frames CS6204, Spring 2005

  5. Authorization in 802.16 ♦ Authorization SA: 1. X.509 certificate of SS 2. AK 3. AK identifier 4. AK lifetime 5. Downlink HMAC key 6. KEK 7. Uplink HMAC Key 8. List of Authorized Data SA’s CS6204, Spring 2005

  6. Authorization Protocol ♦ SS � BS: Cert(Manufacturer) ♦ SS � BS: Cert(SS) ♦ BS � SS: RSA-Encrypt(PubKey(SS),AK) | Lifetime | SeqNo | SAID List CS6204, Spring 2005

  7. Authorization Security ♦ No explicit def. for authorization SA ♦ No distinction between two SAs ♦ No BS certificate ♦ No requirements for AK generation ♦ BS contributes all bits in an AK ♦ Assumption that certificates are unique CS6204, Spring 2005

  8. Privacy and Key Management (PKM) ♦ Data SA 1. SAID 2. DES-CBC Mode 3. Two TEKs 4. Two TEK Ids 5. TEK Lifetime 6. TEK IV 7. Data SA Type CS6204, Spring 2005

  9. PKM Protocol ♦ BS � SS: SeqNo | SAID | HMAC(1) ♦ SS � BS: SeqNo | SAID | HMAC(2) ♦ BS � SS: SeqNo | SAID | OldTEK | NewTEK | HMAC(3) CS6204, Spring 2005

  10. PKM Security ♦ No distinction between Data SA’s ♦ TEK Identifier: 2 Bits – A single AK can consume 3360 TEKs – Need 12 Bits to identify TEKs ♦ TEK Expiry Default: Half a day – Used for DES CBC mode - 64bit Data Blocks n/2 blocks – Cipher looses security after 2 – Avg. Throughput: 6.36Mbps/0.5day or 455Kbps/7days ♦ Fails to specify requirements for TEKs CS6204, Spring 2005

  11. Corrections & Suggestions ♦ Use AES with cipher block chaining MAC ♦ EAP ♦ Authorization SA as a first class concept CS6204, Spring 2005

  12. Corrections & Suggestions (Cont.) ♦ Authorization Changes: – SS � BS: Cert (Manufacturer(SS)) – SS � BS: SS Random | Cert(SS) | Capabilities | SAID – BS � SS: SS-Random| RSA- Encrypt(PubKey(SS), pre-AK) | Lifetime | SeqNo | SAIDList | Cert(BS) | Sig (BS) ♦ New AK: HMAC-SHA-1(BS & SS Random data and Mac Addresses; Bit Length) CS6204, Spring 2005

  13. Corrections & Suggestions (Cont.) ♦ PKM Changes – BS � SS: SS-Random | BS-Random | SeqNo12 | SAID | HMAC(1) – SS � BS: SS-Random | BS-Random | SeqNo12 | SAID | HMAC(2) – BS � SS: SS-Random | BS-Random | SeqNo12 | SAID | OldTEK | NewTEK | HMAC(3) CS6204, Spring 2005

  14. Conclusion ♦ Paper Identifies Security Issues ♦ Suggests simple corrections ♦ Security Issues are being dealt with by IEEE 802.16d and IEEE 802.16e working groups CS6204, Spring 2005

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Karim El Defrawy and Gene Tsudik IEEE- ICNP08 10/22/2008 1 Introduction Privacy and

Karim El Defrawy and Gene Tsudik IEEE- ICNP08 10/22/2008 1 Introduction Privacy and

Karim El Defrawy and Gene Tsudik IEEE- ICNP08 10/22/2008 1 Introduction Privacy and Security in MANETs Related Work Overview of Group Signatures PRISM Protocol and Operation Security Analysis and Simulations

613 views • 32 slides
Defense Against the Dark Arts: An overview of adversarial example security research and future

Defense Against the Dark Arts: An overview of adversarial example security research and future

Defense Against the Dark Arts: An overview of adversarial example security research and future research directions Ian Goodfellow, Sta ff Research Scientist, Google Brain 1st IEEE Deep Learning and Security Workshop, May 24, 2018 This document

726 views • 36 slides
Dynamic Session Key Agreement Brian Weis Overview IEEE 802.1AE-2006 (MACsec) IEEE

Dynamic Session Key Agreement Brian Weis Overview IEEE 802.1AE-2006 (MACsec) IEEE

Overview of IEEE 802.1X-REV Dynamic Session Key Agreement Brian Weis Overview IEEE 802.1AE-2006 (MACsec) IEEE 802.1X-REV MACsec Key Agreement MSEC WG IETF76 2 IEEE 802.1AE-2006 Referred to as MACsec for short (or

428 views • 19 slides
Overview and Timing Performance of IEEE Performance of IEEE 802.1AS Geoffrey M. Garner

Overview and Timing Performance of IEEE Performance of IEEE 802.1AS Geoffrey M. Garner

Overview and Timing Performance of IEEE Performance of IEEE 802.1AS Geoffrey M. Garner Consultant Consultant Michael D Johas Teener Michael D. Johas Teener Broadcom Corporation Outline Introduction I t d ti Overview of IEEE

597 views • 24 slides
Data Privacy for IEEE Volunteer Data Managers 2 Overview Changes in Data Privacy IEEE

Data Privacy for IEEE Volunteer Data Managers 2 Overview Changes in Data Privacy IEEE

Data Privacy for IEEE Volunteer Data Managers 2 Overview Changes in Data Privacy IEEE Privacy Policy Terms & Conditions and Subscriptions Consent Structure and Preferences Meetings, Conferences, and Events

926 views • 36 slides
Protocolo IEEE 802.15.4 Sergio Scaglia SASE 2012 - Agosto 2012 IEEE 802.15.4 standard Agenda

Protocolo IEEE 802.15.4 Sergio Scaglia SASE 2012 - Agosto 2012 IEEE 802.15.4 standard Agenda

Protocolo IEEE 802.15.4 Sergio Scaglia SASE 2012 - Agosto 2012 IEEE 802.15.4 standard Agenda Physical Layer for Wireless Overview MAC Layer for Wireless - Overview IEEE 802.15.4 Protocol Overview Hardware implementation

792 views • 62 slides
1 IEEE 802.15.4 PHY IEEE 802.15.4 PHY Features Receiver Energy Detection

1 IEEE 802.15.4 PHY IEEE 802.15.4 PHY Features Receiver Energy Detection

Structure of Presentation Introduction 8 0 2.15.4 and Zigbee IEEE 812.15.4 WPAN IEEE 802.15.4 PHY IEEE 802.15.4 MAC Zigbee Routing Layer Kevin Klues Department of Computer Science and Engineering 2 Introduction Zigbee and

863 views • 6 slides
Security Overview Security Goals The Attack Space Security Mechanisms

Security Overview Security Goals The Attack Space Security Mechanisms

CSCE Intro to Computer Systems Security Security Overview Security Goals The Attack Space Security Mechanisms Introduction to Cryptography Authentication Authorization Confidentiality Case Studies Security

472 views • 20 slides
Writing a book on wireless security available online is like writing a book on safe Internet

Writing a book on wireless security available online is like writing a book on safe Internet

Agenda The purpose of this presentation is to: FIRST Technical Colloquium Uppsala, Sweden Give an overview of Wireless technology Highlight the security issues Securing Your associated with IEEE 802.11b Wireless LAN wireless LANs Suggest

413 views • 16 slides
Outline 31st IEEE Symposium on Security & Privacy Introduction TaintScope: A

Outline 31st IEEE Symposium on Security & Privacy Introduction TaintScope: A

Outline 31st IEEE Symposium on Security & Privacy Introduction TaintScope: A Checksum-Aware Background Directed Fuzzing Tool for Automatic Motivation Software Vulnerability Detection TaintScope Intuition Tielei Wang 1 ,

427 views • 5 slides
Verena: End-to-End Integrity Protection for Web Applications IEEE Security & Privacy 2016

Verena: End-to-End Integrity Protection for Web Applications IEEE Security & Privacy 2016

Verena: End-to-End Integrity Protection for Web Applications IEEE Security & Privacy 2016 Nikos Karapanos, Alexandros Filios, Raluca Ada Popa, Srdjan Capkun Information Integrity is Critical for Decision Making EKG, EKG, heart rate,

534 views • 15 slides
Lua Code: Security Overview and Practical Approaches to Static Analysis Andrei Costin

Lua Code: Security Overview and Practical Approaches to Static Analysis Andrei Costin

IEEE SPW: LangSec'17 (San Jose, CA) Lua Code: Security Overview and Practical Approaches to Static Analysis Andrei Costin ancostin@jyu.fi, andrei@firmware.re University of Jyvaskyla, Finland Agenda Introduction Contributions

374 views • 23 slides
IEEE C57 12 38 IEEE C57.12.38 LV bushing cantilever strength analysis Justin Pezzin, P.Eng , g

IEEE C57 12 38 IEEE C57.12.38 LV bushing cantilever strength analysis Justin Pezzin, P.Eng , g

IEEE C57 12 38 IEEE C57.12.38 LV bushing cantilever strength analysis Justin Pezzin, P.Eng , g Carlos Gaytan March 2012 Overview Problem description LV bushing force diagram Review of manufacturer specifications Discussion /

189 views • 14 slides
Mr. Robert Ydens and Bradley Ydens Title: A Basic Overview of RF/EMI Filters and Filtered

Mr. Robert Ydens and Bradley Ydens Title: A Basic Overview of RF/EMI Filters and Filtered

Hoffbeck, Joseph From: emc-or-sw-wa@IEEE.ORG on behalf of David Britton <dlbritt@comcast.net> Sent: Thursday, March 14, 2019 11:10 AM To: PSES-OR-SW-WA@LISTSERV.IEEE.ORG; EMC-OR-SW-WA@LISTSERV.IEEE.ORG Cc: Aaron Cohen; David A.

388 views • 3 slides
An Overview of IEEE Software Engineering Standards and Knowledge Products Paul R. Croll Chair,

An Overview of IEEE Software Engineering Standards and Knowledge Products Paul R. Croll Chair,

An Overview of IEEE Software Engineering Standards and Knowledge Products Paul R. Croll Chair, IEEE SESC Computer Sciences Corporation pcroll@csc.com Objectives G Provide an introduction to The IEEE Software Engineering Standards Committee

481 views • 46 slides
This PIN Can Be Easily Guessed Analyzing the Security of Smartphone Unlock PINs Philipp Markert,

This PIN Can Be Easily Guessed Analyzing the Security of Smartphone Unlock PINs Philipp Markert,

This PIN Can Be Easily Guessed Analyzing the Security of Smartphone Unlock PINs Philipp Markert, Daniel V. Bailey, Maximilian Golla, Markus Drmuth, and Adam J. Aviv May 18, 2020 | 41st IEEE Symposium on Security and Privacy Overview ?!

355 views • 18 slides
A VOMS overview Andrea Ceccanti (on behalf of the VOMS team) NRENS and Grids Workshop Malaga,

A VOMS overview Andrea Ceccanti (on behalf of the VOMS team) NRENS and Grids Workshop Malaga,

Enabling Grids for E-sciencE A VOMS overview Andrea Ceccanti (on behalf of the VOMS team) NRENS and Grids Workshop Malaga, 29-30/11/07 www.eu-egee.org EGEE-II INFSO-RI-031688 EGEE and gLite are registered trademarks Outline Enabling Grids

488 views • 25 slides
Applications for NDN James Kasten University of Michigan Network Authentication Public Key

Applications for NDN James Kasten University of Michigan Network Authentication Public Key

Applications for NDN James Kasten University of Michigan Network Authentication Public Key Infrastructure Pairing Keys with Identity or Authority Major Challenges Management Distribution Revocation Renewal Lets

391 views • 10 slides
Modern Web Security Patterns Chad Hollman Analyst, County of Sacramento Department of Technology

Modern Web Security Patterns Chad Hollman Analyst, County of Sacramento Department of Technology

Modern Web Security Patterns Chad Hollman Analyst, County of Sacramento Department of Technology Current Issues of Web Development Security Subresource Integrity Checking Content Security Policies HTTP Public Key Pinning Certificate

1.05k views • 61 slides
IoT: Taking PKI Where No PKI Has Gone Before Presented by: Scott Rea DigiCert Sr. PKI Architect

IoT: Taking PKI Where No PKI Has Gone Before Presented by: Scott Rea DigiCert Sr. PKI Architect

AllSeen Summit 2015: IoT: Taking PKI Where No PKI Has Gone Before Presented by: Scott Rea DigiCert Sr. PKI Architect ALLSEEN ALLIANCE Agenda Slide Title 3 Trust and PKI 9 Web Security - PKI example 26

450 views • 41 slides
Measuring Adoption of Security Additions to the HTTPS Ecosystem Quirin Scheitle July 16, 2018

Measuring Adoption of Security Additions to the HTTPS Ecosystem Quirin Scheitle July 16, 2018

Chair of Network Architectures and Services Department of Informatics Technical University of Munich Measuring Adoption of Security Additions to the HTTPS Ecosystem Quirin Scheitle July 16, 2018 Applied Networking Research Workshop (ANRW)

303 views • 11 slides
What it means for LIRs Alain P. AI NA Special Project M anager What is Resource Certification ?

What it means for LIRs Alain P. AI NA Special Project M anager What is Resource Certification ?

Resource Certification What it means for LIRs Alain P. AI NA Special Project M anager What is Resource Certification ? Resource Certification is is a security framework for verifying the association between resource holders and their

569 views • 20 slides
Mutual Authentication and Authorization for Interconnecting Home Automation Systems Master Thesis

Mutual Authentication and Authorization for Interconnecting Home Automation Systems Master Thesis

Chair of Network Architectures and Services Department of Informatics Technical University of Munich Mutual Authentication and Authorization for Interconnecting Home Automation Systems Master Thesis Final talk Karthik Mathiazhagan

735 views • 18 slides
Io IoT T Security In Informatio ion sec securit ity Confidentiality Data accessed

Io IoT T Security In Informatio ion sec securit ity Confidentiality Data accessed

Security & Knowledge Management a.a. 2019/20 Io IoT T Security In Informatio ion sec securit ity Confidentiality Data accessed just by permitted users Integrity Not tampered by not permitted users Availability

558 views • 21 slides

More recommend