Table of Contents 1. Introduction |
1. Introduction
Wireless communication, in its nature, is always at a risk of eavesdropping or manipulation because data originally sent from/to a user may be received and unlawfully used by an unintended user. Locations or traveling routes of a user can also be easily tracked by tracing to which cells the user is connected or through which cells the user is travelling. And this can result in privacy infringement. Mobile communication networks provide security features to ensure data transferred across radio links is not manipulated, prevent unauthorized access by an unintended user to the data received, and protect the privacy of users.
The LTE Security document describes basic security features offered by LTE networks, including LTE authentication, NAS (Non Access Stratum) security and AS (Access Stratum) security. LTE authentication is the process of determining whether a user is an authorized subscriber to the network that he/she is trying to access, while NAS security and AS security are features required to securely deliver user data that travels through LTE radio links at NAS and AS levels.
The LTE Security document consists of the following two companion documents: Part I, LTE Security I, and Part II, LTE Security II. Part I will explain the concept of LTE security and the detailed procedure of LTE authentication, and Part II will discusses NAS and AS security setup.
Part I is organized as follows:
In Chapter 2, the scope of these two companion documents will be defined and a conceptual overview will be given.
Chapter 3 will focus on the detailed procedure of LTE authentication and
Chapter 4 will summarize the LTE authentication and the LTE authentication-related keys.
Hi,
Good Document.
Hi.
Why in the picture 2 NW sent ATTACH ACCEPT before AS Security Mode Command, from our log i saw opposite result.
00:01:07.735 LTE RRC OTA Packet -- DL_DCCH / SecurityModeCommand /*AS SecurityModeCommand form NW */
00:01:08.241 LTE NAS EMM Plain OTA Incoming Message -- Attach accept Msg/*Attach accept form NW */
Thank you.
Sir
will you tell me on which tool you have did LTE simulation
What algorithm is used for the KDF? Is it selectable/configurable?
anybody can tell me whaich simulator i should use for security setup in LTE..............
Thanks for sharing very useful info
Hi...plz explain me why ciphering is optional in AS security?
Excellent basic stuff...that great,.
Great document
Hi Would you know what happens in the case of IWF as in 3G Serving Network is not used thus how is KASAME going to be derived if there is no SN-ID ??
Thanks in advance
Excellent!
2
Excellent document.
Very accessably written, focusing on the important matters, and beautifully depicted by sequence diagrams combined with algorithm box diagrams, together showing exactly the creation and flow of information.
By far the best description I have found - I am blown over backwards - just the information I needed - thank you.
excellent, very useful info.
Hi, Excellent document and can easily understandable
nice document
Hello ,
I am testing my MME(SUT),
-Precondtion: EEA1 Disabled in MME.
-While my UE is Sending EEA1 in Attach Request to MME and MME is sending Same EEA1 in Securitymode comand which is disabled in MME.
Please let me know what should be sent by MME in Securitymode comand, will it send any error message.
one EEA1 is disabled or others(EEA0,EEA2....) will be send insted of EEA1.
PLZ WHICH TOOL TO SIMULATE LTE SECURITY
Hi All,
How Ue gets SN ID for generating Kasme at Ue side?
Please explain.
Hello Sir,
kindly let me know which tool to use to simulate LTE authentication protocols. At present, I have started with NS3, i want to is ns3 is good simulator for simulating LTE authentication protocols or some other tool is better than this.
Thanks,
Vemula Geeta
You may try this tool to get the LTE OTA logs "https://github.com/P1sec/QCSuper", I have not tried dont know how it will work
Great explanation. So much easy to understand compared with the other articles i've read on the web
Excellent explanation. One question is SN ID stored in SIM as we use SIM card from specific operator and this is how ME gets information about it
Excellent Document and great explanation.
One question:During Authentication
THe HSS forms as many AVs as requested by the MME and then delivers an Authentication Information Answer (AVs) message to the MME. The MME stores the AVs and selects one of them to use in LTE authentication of the UE. Based on what mechanism MME selects the ith AV(AVi)? Could you please help me out.