Abstract
In the IP multimedia subsystem (IMS) of UMTS, two authentication procedures are necessary for IMS subscribers before accessing IMS services: (i) packet-switch domain authentication using the authentication and key agreement of the 3rd Generation Partnership Projects (3GPP AKA), and (ii) IMS authentication using IMS AKA. However, since IMS AKA is based on 3GPP AKA, almost all of the operations are the same. Besides, IMS AKA needs two round-trips to carry out. Therefore, it is inefficient that almost all involved steps in IMS AKA are duplicated. Therefore, we propose a one-pass IMS AKA instead of IMS AKA. The one-pass IMS AKA can keep the security properties of IMS AKA, such as mutual authentication and key agreement. Furthermore, the one-pass IMS AKA not only has at least 45% improvement over IMS AKA in terms of authentication signaling, but also has 76.5% improvement over IMS AKA in terms of storage space.
Article PDF
Similar content being viewed by others
Avoid common mistakes on your manuscript.
References
3GPP TS 23.228: Technical Specification Group Services and Systems Aspects; IP Multimedia Subsystem Stage 2.
3GPP TS 29.228: Technical Specification Core Network; IP Multimedia Subsystem Cx and Dx Interfaces; Signaling Flows and Message Contents (Release 5).
PP TS 29.229: Technical Specification Core Network;Cx and Dx Interfaces Based on the Diameter Protocol; Protocol Details.
3GPP TS 33.203: Technical Specification Group Services and Systems Aspects; 3G Security; Access security for IP-based services (Release 6).
3GPP TS 33.210: Technical Specification Group Services and System Aspects; 3G Security; Network Domain Security; IP network layer security (Release 7).
3GPP TS33.102: Technical Specification Group Services and System Aspects; 3G Security; Security Architecture.
Camarillo G., Kauppinen T., Kuparinen M., Ivars I. (2007) Towards an innovation oriented ip multimedia subsystem. IEEE Communications Magazine 45(3): 130–136
Franks, J., Hallam-Baker, P. M., Hostetler, J. L., Lawrence, S. D., Leach, P. J. (1999).HTTP authentication: Basic and digest access authentication, RFC 2617, IETF.
Huang C.M., Li J.W. (2005) Authentication and key agreement protocol for UMTS with low bandwidth consumption. Proc International Conference on advanced Information Networking and Applications (AINA) 1: 392–397
Huang C.M., Li J.W. (2007) Efficient and provably secure ip multimedia subsystem authentication for umts. The Computer Journal 50(6): 739–757
Lin Y., Chen Y. (2004) Reducing authentication signaling traffic in third generation mobile network. IEEE Transactions on Wireless Communications 2(3): 493–501
Lin Y.B., Chang M.F., Hsu M.T., Wu L.Y. (2005) One-pass GPRS and IMS authentication procedure for UMTS. IEEE Journal on Selected Areas in Communications 23(6): 1233–1239
Niemi, A., Arkko, J., Torvinen, V. (2002). Hypertext Transfer Protocol (HTTP) digest Authentication Using Authentication and Key Agreement (AKA).RFC 3310.
Rosenberg, J., Schulzrinne, H., Camarillo, G., Johnston, A., Peterson, J., Sparks, R., Handley, M., Schooler, E. (2002). SIP Session Initiation Protocol.RFC 3261, IETF.
Torvinen, V., Arkko, J., Naeslund, M. (2005). Hypertext Transfer Protocol Digest Authentication Using Authentication and Key Agreement Version-2.RFC 4169.
Author information
Authors and Affiliations
Corresponding author
Rights and permissions
About this article
Cite this article
Huang, CM., Li, JW. Reducing Signaling Traffic for the Authentication and Key Agreement Procedure in an IP Multimedia Subsystem. Wireless Pers Commun 51, 95–107 (2009). https://doi.org/10.1007/s11277-008-9603-1
Published:
Issue Date:
DOI: https://doi.org/10.1007/s11277-008-9603-1