Download presentation
Presentation is loading. Please wait.
1
March 2018 Project: IEEE P Working Group for Wireless Personal Area Networks (WPANs) Submission Title: [SG SECN Call for Proposals] Date Submitted: [5 March, 2018] Source: [Don Sturek] Company [Itron] Address [230 W. Tasman Drive, San Jose, CA ] Voice:[ ], FAX: [ ], Re: [IEEE y SECN] Abstract: [4y SECN Itron proposal for enhanced security] Purpose: [4y SECN Itron proposal for enhanced security] Notice: This document has been prepared to assist the IEEE P It is offered as a basis for discussion and is not binding on the contributing individual(s) or organization(s). The material in this document is subject to change in form and content after further study. The contributor(s) reserve(s) the right to add, amend or withdraw material contained herein. Release: The contributor acknowledges and accepts that this contribution becomes the property of IEEE and may be made publicly available by P Don Sturek, Itron
![March 2018 Project: IEEE P Working Group for Wireless Personal Area Networks (WPANs) Submission Title: [SG SECN Call for Proposals]](http://slideplayer.com./slide/15035570/91/images/1/March+2018+Project%3A+IEEE+P+Working+Group+for+Wireless+Personal+Area+Networks+%28WPANs%29+Submission+Title%3A+%5BSG+SECN+Call+for+Proposals%5D.jpg "Date Submitted: [5 March, 2018] Source: [Don Sturek] Company [Itron] Address [230 W. Tasman Drive, San Jose, CA 95134] Voice:[ ], FAX: [ ], Re: [IEEE y SECN] Abstract: [4y SECN Itron proposal for enhanced security] Purpose: [4y SECN Itron proposal for enhanced security] Notice: This document has been prepared to assist the IEEE P It is offered as a basis for discussion and is not binding on the contributing individual(s) or organization(s). The material in this document is subject to change in form and content after further study. The contributor(s) reserve(s) the right to add, amend or withdraw material contained herein. Release: The contributor acknowledges and accepts that this contribution becomes the property of IEEE and may be made publicly available by P Don Sturek, Itron.")
2
802.15 4y SECN Itron Proposal for Enhanced Security
March 2018 y SECN Itron Proposal for Enhanced Security Don Sturek Itron Don Sturek, Itron
3
IEEE 802.15.4 Auxiliary Security Header
March 2018 IEEE Auxiliary Security Header General MAC Frame Format No change proposed. Don Sturek, Itron
4
IEEE 802.15.4 Auxiliary Security Header
March 2018 IEEE Auxiliary Security Header Frame Control Security Enabled True for Enhanced Security Frames No changes proposed to existing fields Don Sturek, Itron
5
IEEE 802.15.4 Auxiliary Security Header
March 2018 IEEE Auxiliary Security Header Auxiliary Security Header No changes proposed to the Security Control, Frame Counter or Key Identifier fields Don Sturek, Itron
6
IEEE 802.15.4 Auxiliary Security Header
March 2018 IEEE Auxiliary Security Header Security Control Field No changes to Security Level, Key Identifier Mode, Frame Counter Suppression, ASN in Nonce or Reserved Fix the Reserved field to cover just bit 7 Don Sturek, Itron
7
IEEE 802.15.4 Auxiliary Security Header
March 2018 IEEE Auxiliary Security Header Security Level Security levels available to the MAC sublayer Security level Security level field b2 b1 b0 Security attributes Data confidentiality Data authenticity MIC length (octets) 000 None OFF NO 1 001 MIC-32 YES 4 2 010 MIC-64 8 3 011 MIC-128 16 100 Reserved 5 101 ENC-MIC-32 ON 6 110 ENC-MIC-64 7 111 ENC-MIC-128 Modify Security Level 4 as follows: For Frame Types 0b00/0b01, AES-256 with MIC-128. For Frame Type 0b10, extend via SECN IE’s (defined next) Don Sturek, Itron
8
IEEE 802.15.4 Enhanced Security Capabilities IE
March 2018 IEEE Enhanced Security Capabilities IE Header IE Symmetric Key Size Specified by algorithm 128 bit, 192 bit, 256 bit 4 reserved fields Symmetric Encryption Algorithm AES 7 reserved fields Encryption Mode None (Authentication only) CCM* CCM GCM Do we need CTR or CBC? At least 3 reserved fields Don Sturek, Itron
9
IEEE 802.15.4 Enhanced Security Capabilities IE
March 2018 IEEE Enhanced Security Capabilities IE Header IE (continued) Integrity Mechanism CCM Authentication Only CCM* Authentication Only GCM Authentication Only HMAC SHA-256 4 reserved fields Integrity Size 32 bit 64 bit 128 bit Questionable whether we need any other options Don Sturek, Itron
10
IEEE 802.15.4 Enhanced Security Capabilities IE
March 2018 IEEE Enhanced Security Capabilities IE Header IE (continued) Key Derivation Function SP CMAC (section 5.1) 7 reserved fields Don Sturek, Itron
11
IEEE 802.15.4 Enhanced Security IE
March 2018 IEEE Enhanced Security IE Header IE For a given established Key Index Agreed Symmetric Key Size, Agreed Symmetric Encryption Algorithm, Agreed Encryption Mode, Agreed Integrity Mechanism, Agreed Integrity Size Don Sturek, Itron
12
IEEE 802.15.4 Enhanced Security Processing
March 2018 IEEE Enhanced Security Processing During Key Establishment (presumably using IEEE or using some other symmetric key placement scheme): Exchange Enhanced Security Capabilities IE between pairs of one-hop devices planning to share a Key Index with information on the Key Source (optional)/Key ID Mode/Key Index During exchange of beacon frames/data frames/multipurpose frames/command frames using an established Key Index: Send Enhanced Security IE with agreed security settings reflected how the frame was secured. Don Sturek, Itron
Similar presentations
![Submission Title: [Add name of submission]](/83/13598968/big_thumb.jpg "Submission Title: [Add name of submission]>")
![November 2017 Project: IEEE P802.15 Working Group for Wireless Personal Area Networks (WPANs) Submission Title: [AES-256 for 802.15.4] Date Submitted:](/85/13703044/big_thumb.jpg "November 2017 Project: IEEE P802.15 Working Group for Wireless Personal Area Networks (WPANs) Submission Title: [AES-256 for 802.15.4] Date Submitted:>")
![March 2018 Project: IEEE P802.15 Working Group for Wireless Personal Area Networks (WPANs) Submission Title: [IG LPWA Agenda November 2017 Plenary] Date.](/90/14403387/big_thumb.jpg "March 2018 Project: IEEE P802.15 Working Group for Wireless Personal Area Networks (WPANs) Submission Title: [IG LPWA Agenda November 2017 Plenary] Date.>")
![January 2018 Project: IEEE P802.15 Working Group for Wireless Personal Area Networks (WPANs) Submission Title: [SG SECN Call for Proposals] Date Submitted:](/90/14457358/big_thumb.jpg "January 2018 Project: IEEE P802.15 Working Group for Wireless Personal Area Networks (WPANs) Submission Title: [SG SECN Call for Proposals] Date Submitted:>")
![October 2017 Project: IEEE P802.15 Working Group for Wireless Personal Area Networks (WPANs) Submission Title: [AES-256 for 802.15.4] Date Submitted: [17.](/90/14519303/big_thumb.jpg "October 2017 Project: IEEE P802.15 Working Group for Wireless Personal Area Networks (WPANs) Submission Title: [AES-256 for 802.15.4] Date Submitted: [17.>")
![January 2018 Project: IEEE P802.15 Working Group for Wireless Personal Area Networks (WPANs) Submission Title: [SG SECN Call for Proposals] Date Submitted:](/90/14569737/big_thumb.jpg "January 2018 Project: IEEE P802.15 Working Group for Wireless Personal Area Networks (WPANs) Submission Title: [SG SECN Call for Proposals] Date Submitted:>")
![October 2017 Project: IEEE P802.15 Working Group for Wireless Personal Area Networks (WPANs) Submission Title: [AES-256 for 802.15.4] Date Submitted: [17.](/90/14591750/big_thumb.jpg "October 2017 Project: IEEE P802.15 Working Group for Wireless Personal Area Networks (WPANs) Submission Title: [AES-256 for 802.15.4] Date Submitted: [17.>")
![May 2018 Project: IEEE P802.15 Working Group for Wireless Personal Area Networks (WPANs) Submission Title: [Considerations on general MAC frame] Date Submitted:](/90/14787937/big_thumb.jpg "May 2018 Project: IEEE P802.15 Working Group for Wireless Personal Area Networks (WPANs) Submission Title: [Considerations on general MAC frame] Date Submitted:>")
![NOV 01 Project: IEEE P802.15 Working Group for Wireless Personal Area Networks (WPANs) Submission Title: [Application Specific Information Element] Date.](/91/14911885/big_thumb.jpg "NOV 01 Project: IEEE P802.15 Working Group for Wireless Personal Area Networks (WPANs) Submission Title: [Application Specific Information Element] Date.>")
