Presentation is loading. Please wait.

Presentation is loading. Please wait.

Doc.: IEEE 802.11-00/376 Submission November 2000 S. Watanabe et al, Seiko Epson Corp. Slide 1 Proposal to use KPS to Enhance Security of MAC Layer Shinichiro.

Published byShannon Cross Modified over 8 years ago

Similar presentations

Presentation on theme: "Doc.: IEEE 802.11-00/376 Submission November 2000 S. Watanabe et al, Seiko Epson Corp. Slide 1 Proposal to use KPS to Enhance Security of MAC Layer Shinichiro."— Presentation transcript:

1 doc.: IEEE 802.11-00/376 Submission November 2000 S. Watanabe et al, Seiko Epson Corp. Slide 1 Proposal to use KPS to Enhance Security of MAC Layer Shinichiro Watanabe, Kazuaki Naito, Masayuki Ikeda Seiko Epson Corporation November 2000

2 doc.: IEEE 802.11-00/376 Submission November 2000 S. Watanabe et al, Seiko Epson Corp. Slide 2 Reinforcing Security in the MAC Layer, and Problems with the Present IEEE802.11 WEP The Need to Reinforce Security in the MAC Layer - Dumb terminals; printers, BCRs, mobile terminals with low capacity, etc. - Unmanned systems; - Point to point systems. Problems with the Present IEEE802.11 WEP Default-Key –The following problems exist because the key is shared by a number of people. Authentication Allows unauthorized access to the network. Key establishment algorithm All the members of the group are exposed to risks including eavesdropping. Key expiration The key needs frequent changes, or it is easily broken. Privacy algorithm –The privacy algorithm of the 40-bit RC4 is not very robust.

3 doc.: IEEE 802.11-00/376 Submission November 2000 S. Watanabe et al, Seiko Epson Corp. Slide 3 Solution Default-Key0 Default-Key1 Default-Key2 Default-Key3 Data ICV Data(plain) Encryption Solution Current Algorithm Default-Key0 Default-Key1 Default-Key2 Default-Key3 xor Session key Nonce Encryption Session key (Encrypted) Data ICV Data(plain) Encryption KPS Shared key Fig.1 Fig.2

4 doc.: IEEE 802.11-00/376 Submission November 2000 S. Watanabe et al, Seiko Epson Corp. Slide 4 Effects of the Solution Increases a security level of the communications between two STAs and between a STA and an AP. –Unable to analyze the session keys –Unable to decode the encrypted session keys Suitable for systems with dumb terminals or unmanned systems The security level of user authentication is increased. –Usable with other authentication protocols in parallel. –The authentication message is also encrypted. User authentication PC STA Generation of per-user keys with KPS STA Encryption with session key

5 doc.: IEEE 802.11-00/376 Submission November 2000 S. Watanabe et al, Seiko Epson Corp. Slide 5 User Authentications Current user authentication PC STA KPS STA Default key PC STA KPS STA 802.1X, GSS-API PC STA KPS STA Current user authentication + KPS Default key + KPS 802.1X, GSS-API + KPS Fig.1 Fig.2 Fig.3

6 doc.: IEEE 802.11-00/376 Submission November 2000 S. Watanabe et al, Seiko Epson Corp. Slide 6 Basic Flow of the KPS Communications Setting a Private-ID KPS Center P A = G × (f 1 (A)) T (Procedure necessary only once) MAC A MAC B NOTE : P A or P B = Private-ID:1024bit×40bit (Secret data / user) A or B = Public-ID:48bit (MAC Address) f 1 = One-way Scheme 1 G = Sytem-ID: 1024bit×1024bit×40bit (symmetrical matrix ) P B = G × (f 1 (B)) T

7 doc.: IEEE 802.11-00/376 Submission November 2000 S. Watanabe et al, Seiko Epson Corp. Slide 7 Basic Flow of the KPS Communications KPS Communications Public-ID B (MAC Address B) K AB Receiver B (MAC Address B) Public-ID A (MAC Address A) Sender A (MAC Address A) KPS Module K BA Default key Per-user keys Default key Per-user keys Session key Encryption Encrypted Session key Decryption Session key EncryptionDecryption Encrypted DATA DATA K AB = f 2 ((f 1 (B)) T ×P A K BA = f 2 ((f 1 (A)) T ×P B K AB = K BA NOTE: f 2 = One-way Scheme 2

8 doc.: IEEE 802.11-00/376 Submission November 2000 S. Watanabe et al, Seiko Epson Corp. Slide 8 KPS v.s. Public key systems KPS does not requires; - The MAC address to be paired with a public key. - The public key transmission frame.

9 doc.: IEEE 802.11-00/376 Submission November 2000 S. Watanabe et al, Seiko Epson Corp. Slide 9 Conclusion Necessary to enhance the MAC security algorithm. Combining with the upper layer security algorithm systems can be much more robust against attacks. We proposed; –To use session keys instead of default keys –To use per user keys. Per user key is made by XOR-ing a default key and a shared key generated by KPS –To encrypt the session keys with per user keys generated in the MAC layer.

Download ppt "Doc.: IEEE 802.11-00/376 Submission November 2000 S. Watanabe et al, Seiko Epson Corp. Slide 1 Proposal to use KPS to Enhance Security of MAC Layer Shinichiro."

Similar presentations

Doc.: IEEE 802.11-00/087 Submission May, 2000 Steven Gray, NOKIA Jyri Rinnemaa, Jouni Mikkonen Nokia Slide 1.

Doc.: IEEE /087 Submission May, 2000 Steven Gray, NOKIA Jyri Rinnemaa, Jouni Mikkonen Nokia Slide 1.
Submission doc.: IEEE 802.11-11/1326r1 August 2011 Hiroki Nakano, Trans New Technology, Inc.Slide 1 Early Key Generation by ECDH and PKC Date: 2011-09-22.

Submission doc.: IEEE /1326r1 August 2011 Hiroki Nakano, Trans New Technology, Inc.Slide 1 Early Key Generation by ECDH and PKC Date:
TLS. 14.1 Introduction 14.2 TLS Record Protocol 14.3 TLS Handshake Protocol 14.4 Summary.

TLS Introduction 14.2 TLS Record Protocol 14.3 TLS Handshake Protocol 14.4 Summary.
Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, 2010. ICWCSC 2010. International.

Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, ICWCSC International.
Wireless Security Ryan Hayles Jonathan Hawes. Introduction  WEP –Protocol Basics –Vulnerability –Attacks –Video  WPA –Overview –Key Hierarchy –Encryption/Decryption.

Wireless Security Ryan Hayles Jonathan Hawes. Introduction  WEP –Protocol Basics –Vulnerability –Attacks –Video  WPA –Overview –Key Hierarchy –Encryption/Decryption.
How secure are 802.11b Wireless Networks? By Ilian Emmons University of San Diego.

How secure are b Wireless Networks? By Ilian Emmons University of San Diego.
WiFi Security. What is WiFi ? Originally, Wi-Fi was a marketing term. The Wi-Fi certified logo means that the product has passed interoperability tests.

WiFi Security. What is WiFi ? Originally, Wi-Fi was a marketing term. The Wi-Fi certified logo means that the product has passed interoperability tests.
Wireless LAN Security Jerry Usery CS 522 December 6 th, 2006.

Wireless LAN Security Jerry Usery CS 522 December 6 th, 2006.
1 Enhancing Wireless Security with WPA CS-265 Project Section: 2 (11:30 – 12:20) Shefali Jariwala Student ID 001790660.

1 Enhancing Wireless Security with WPA CS-265 Project Section: 2 (11:30 – 12:20) Shefali Jariwala Student ID
Intercepting Mobiles Communications: The Insecurity of 802.11 Danny Bickson ACNS Course, IDC Spring 2007.

Intercepting Mobiles Communications: The Insecurity of Danny Bickson ACNS Course, IDC Spring 2007.
1 Encryption What is EncryptionWhat is Encryption Types of EncryptionTypes of Encryption.

1 Encryption What is EncryptionWhat is Encryption Types of EncryptionTypes of Encryption.
W i reless LAN Security Presented by: Pallavi Priyadarshini Student ID 003503527.

W i reless LAN Security Presented by: Pallavi Priyadarshini Student ID
Wired Equivalent Privacy (WEP)

Wired Equivalent Privacy (WEP)
Security in Wireless LAN 802.11 Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.

Security in Wireless LAN Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.
Vulnerability In Wi-Fi By Angus U CS 265 Section 2 Instructor: Mark Stamp.

Vulnerability In Wi-Fi By Angus U CS 265 Section 2 Instructor: Mark Stamp.
11 WIRELESS SECURITY by Prof. Russell Jones. WIRELESS COMMUNICATION ISSUES  Wireless connections are becoming popular.  Network data is transmitted.

11 WIRELESS SECURITY by Prof. Russell Jones. WIRELESS COMMUNICATION ISSUES  Wireless connections are becoming popular.  Network data is transmitted.
An Initial Security Analysis of the IEEE 802.1x Standard Tsai Hsien Pang 2004/11/4.

An Initial Security Analysis of the IEEE 802.1x Standard Tsai Hsien Pang 2004/11/4.
Kemal AkkayaWireless & Network Security 1 Department of Computer Science Southern Illinois University Carbondale Wireless and Network Security Lecture.

Kemal AkkayaWireless & Network Security 1 Department of Computer Science Southern Illinois University Carbondale Wireless and Network Security Lecture.
CMSC 414 Computer and Network Security Lecture 16 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 16 Jonathan Katz.
CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.

Similar presentations

Ads by Google