Title:
A METHOD FOR PREVENTING ENCRYPTED USER IDENTITY FROM REPLAY ATTACKS
Document Type and Number:
WIPO Patent Application WO/2022/067628
Kind Code:
A1
Abstract:
This disclosure relates generally to registration and authentication processes between a wireless terminal and a core network and specifically to detection of registration replay attacks from the core network side to reduce leakage of confidential user information based on a set of authentication sequence numbers that are maintained and updated in synchronization on both the wireless terminal side and the core network side. The communication of the sequence numbers between the wireless terminal and the core network is minimized and is further effectively concealed from exposure in the radio interface during the limited number of transmission. A detection of de-synchronization of the sequence numbers between the wireless terminal and the core network is used by the core network to determine registration replay attacks and to stop communicating request and response messages that may lead to leakage of confidential information of the wireless terminal and in some situation, denial-of-service for either the terminal device or the network.
Inventors:
YOU SHILIN (CN)
CAI JIYAN (CN)
LIU YUZE (CN)
PENG JIN (CN)
XING ZHEN (CN)
LIN ZHAOJI (CN)
ZHANG BOSHAN (CN)
WANG JIGANG (CN)
CAI JIYAN (CN)
LIU YUZE (CN)
PENG JIN (CN)
XING ZHEN (CN)
LIN ZHAOJI (CN)
ZHANG BOSHAN (CN)
WANG JIGANG (CN)
Application Number:
PCT/CN2020/119264
Publication Date:
April 07, 2022
Filing Date:
September 30, 2020
Export Citation:
Assignee:
ZTE CORP (CN)
International Classes:
H04L9/32
Domestic Patent References:
| WO2019038464A1 | 2019-02-28 |
Foreign References:
| CN111641949A | 2020-09-08 |
Other References:
ANONYMOUS: "3rd Generation Partnership Project; Technical Specification Group Services and System Aspects; Study on authentication enhancements in 5G System; (Release 17)", 3GPP STANDARD; TECHNICAL REPORT; 3GPP TR 33.846, no. V0.7.0, 1 September 2020 (2020-09-01), pages 1 - 37, XP051925938
VODAFONE: "pCR to TS35.501 - Authentication procedure for EPS AKA* - possible variant", 3GPP DRAFT; S3-171314 - PCR TO TS35.501 - AUTHENTICATION PROCEDURE FOR EPS AKA - POSSIBLE VARIANT, vol. SA WG3, 9 May 2017 (2017-05-09), Ljubljana,Slovenia, pages 1 - 4, XP051269282
ANONYMOUS: "3rd Generation Partnership Project; Technical Specification Group Services and System Aspects; 3G Security; Security Architecture (3G TS 33.102 version 3.2.0)", 3GPP STANDARD; 3G TS 33.102, no. V3.2.0, 1 October 1999 (1999-10-01), pages 1 - 64, XP050376386
CHINA MOBILE: "Key issue about the SUCI replay attacks", 3GPP DRAFT; S3-201631, vol. SA WG3, 7 August 2020 (2020-08-07), pages 1 - 2, XP051916162
VODAFONE: "pCR to TS35.501 - Authentication procedure for EPS AKA* - possible variant", 3GPP DRAFT; S3-171314 - PCR TO TS35.501 - AUTHENTICATION PROCEDURE FOR EPS AKA - POSSIBLE VARIANT, vol. SA WG3, 9 May 2017 (2017-05-09), Ljubljana,Slovenia, pages 1 - 4, XP051269282
ANONYMOUS: "3rd Generation Partnership Project; Technical Specification Group Services and System Aspects; 3G Security; Security Architecture (3G TS 33.102 version 3.2.0)", 3GPP STANDARD; 3G TS 33.102, no. V3.2.0, 1 October 1999 (1999-10-01), pages 1 - 64, XP050376386
CHINA MOBILE: "Key issue about the SUCI replay attacks", 3GPP DRAFT; S3-201631, vol. SA WG3, 7 August 2020 (2020-08-07), pages 1 - 2, XP051916162
Attorney, Agent or Firm:
BEYOND ATTORNEYS AT LAW (CN)
Download PDF: