Presentation is loading. Please wait.

Presentation is loading. Please wait.

Www.mobilevce.com © 2004 Mobile VCE June 2004 Security – Requirements and approaches to securing future mobile services Malcolm K Payne BT.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Www.mobilevce.com © 2004 Mobile VCE June 2004 Security – Requirements and approaches to securing future mobile services Malcolm K Payne BT."— Presentation transcript:

1 www.mobilevce.com © 2004 Mobile VCE June 2004 Security – Requirements and approaches to securing future mobile services Malcolm K Payne BT

2 www.mobilevce.com © 2004 Mobile VCE This talk …  Introduces a range of security problems arising in future mobile environments.  It also sketches possible directions for solutions. Broadcast Mobile Service / Content WE User PAN PAN = Personal Access Network WE = Wireless Enablers PDE = Personal Distributed Environment PDE

3 www.mobilevce.com © 2004 Mobile VCE Agenda Background Privacy issues Ad hoc relationships Layering issues Key management Single sign-on

4 www.mobilevce.com © 2004 Mobile VCE Security terminology (not always universally agreed!) Identification: Learning a (claimed) identifier for an entity – may be a pseudonym. Authentication: Verifying that an entity does correctly possess a certain identifier. Authorisation: Checking that a particular entity has permission to access certain resources. Authorisation requires authentication since permissions are typically bound to an identifier. Identification Authentication Authorisation

5 www.mobilevce.com © 2004 Mobile VCE Environment Mobile personal environment … Means: an environment in which multiple devices, some personal, some mobile and some fixed, combine to provide an all-pervasive computing and communications service to end-users. Requires: automatic configuration of certain aspects of some devices.

6 www.mobilevce.com © 2004 Mobile VCE Requirements  Mobile and fixed devices need to identify and authenticate one another. This needs to work in cases where there is no pre-existing relationship between the two devices. Techniques used must, where necessary, protect privacy of device owners, e.g. provide anonymity, prevent linking of transactions, … Cellular WLAN xDSL

7 www.mobilevce.com © 2004 Mobile VCE Agenda Background Privacy issues Ad hoc relationships Layering issues Key management Single sign-on

8 www.mobilevce.com © 2004 Mobile VCE Privacy  Many of the devices providing the ubiquitous environment will be personal devices; they may thus ‘leak’ personal information to each other.  In a context where devices cannot be assumed to belong to a single trusted domain, there are thus major privacy issues. PAN PDE

9 www.mobilevce.com © 2004 Mobile VCE Interrogation of mobile devices  Communications protocols for mobile devices inevitably require some form of routine ‘polling’. Responses to polls (e.g. from a network access point) contain some kind of identifier, e.g. a network address. Thus can be used to ‘track’ devices, and potentially track the location of device owners. Thus compromising privacy.  Solutions: GSM/3GPP use temporary identifiers (pseudonyms) distributed in a way that prevents linking. This provides confidentiality protection for exchange.

10 www.mobilevce.com © 2004 Mobile VCE Use and abuse of authentication  Authentication of a device can pose a denial of service threat. For example, if a protocol requires one device to store state and/or do computations, repeated fake requests can cause memory/processing exhaustion.  Solutions ? Use stateless protocols. Require requester to do at least as much work as the responder. Authentication Requester Responder

11 www.mobilevce.com © 2004 Mobile VCE Location Information use/privacy  Service providers in a ubiquitous computing environments may wish to provide services based on User location, e.g. targeted advertising, emergency services, broadcast blackout, …  The User may wish to restrict dissemination of his location info. How should this be controlled? Solutions ? Anonymity. Mandatory inclusion of policy data with location information. Trusted Third Parties could provide separation. Policy Data Location Service Provider User

12 www.mobilevce.com © 2004 Mobile VCE Denial of Service versus Privacy  In any protocol one party has to reveal their identity first.  If the requester of service reveals their identity last, this potentially increases the risk of Denial of Service attacks against the responder.  There is a tension between DoS-resistance and user privacy.  Solutions ? New ideas needed Requester Responder Identity

13 www.mobilevce.com © 2004 Mobile VCE Agenda Background Privacy issues Ad hoc relationships Layering issues Key management Single sign-on

14 www.mobilevce.com © 2004 Mobile VCE General problem  Many security issues exist when establishing ad hoc working relationships.  Initial trust setting is a major issue.  This relates to identification and authentication.

15 www.mobilevce.com © 2004 Mobile VCE Automatic address assignment  In an ad-hoc network, newly admitted devices will typically need to be assigned a network address (or addresses).  In the absence of a fixed infrastructure this is problematic.  Solutions can easily lead to the possibility of denial of service attacks. Just one part of ‘zero-config’ problem. Service / Content

16 www.mobilevce.com © 2004 Mobile VCE Agenda Background Privacy issues Ad hoc relationships Layering issues Key management Single sign-on

17 www.mobilevce.com © 2004 Mobile VCE End-to-end versus point-to-point  Need for security between service provider and service consumer argues for end-to-end authentication.  Need for control of access to resources, e.g. network access, argues for point-to-point authentication. If both provided in ‘unlinked’ way then man-in-the-middle attacks can become possible. Great care needed in combining protocols at different levels in protocol hierarchy. Consumer Service Provider

18 www.mobilevce.com © 2004 Mobile VCE Agenda Background Privacy issues Ad hoc relationships Layering issues Key management Single sign-on

19 www.mobilevce.com © 2004 Mobile VCE Background  Authentication requires either shared secret keys (using symmetric crypto) or trusted copies of public keys (using asymmetric crypto).  Shared secrets can be set up via a mutually trusted TTP.  Public keys can be obtained via public key certificates, although trusted means to verify certificates (CA public keys) required.

20 www.mobilevce.com © 2004 Mobile VCE Heterogeneous networks  The pair of devices may not share an online TTP (or even share ‘trust-connected’ TTPs).  Public key crypto (and PKI) looks more promising, but it is still necessary to have mutually verifiable certificates. Finding certification paths could be infeasibly complex for a bandwidth-limited device.  Solutions:? Delegated Path Discovery/Delegated Path Validation.

21 www.mobilevce.com © 2004 Mobile VCE PKI interoperability  Finding a certification path is by no means the only problem with using PKI.  Certificates issued by different CAs (with different policies) may ‘mean’ different things – e.g. different liability protection, different ID checking for certificate issue, etc.  Certificate status management systems may vary. ?

22 www.mobilevce.com © 2004 Mobile VCE ID-based cryptography  One possible solution to key management problems is used of ID-based crypto.  Here a user public key is derivable from a user identifier (possibly plus other data).  Requires TTP to issue private keys (and TTP public parameters to derive public key from ID).  Hence we have major interoperation issues if two devices served by different TTPs. Only now being addressed. User Public Key Supporting data

23 www.mobilevce.com © 2004 Mobile VCE Agenda Background Privacy issues Ad hoc relationship establishment Layering issues Key management Single sign-on

24 www.mobilevce.com © 2004 Mobile VCE Single Sign On  Essential for easy to use services: Hard to use services don’t generate revenue!  Instead of a user authenticating to multiple service providers (SPs), the user authenticates to an Identity Provider who then provides assurances (assertions) regarding the user’s identity to SPs.  This becomes more important in a ubiquitous environment, where a user will not wish to authenticate to every device/service. Identity Provider

25 www.mobilevce.com © 2004 Mobile VCE Single Sign On Approaches  Microsoft Passport (Originally) a proprietary SSO solution, which involved the possibility of managing other personal data, all stored on a server somewhere... The European Commission has privacy concerns. Microsoft is moving towards a Web Services based solution.  Liberty Alliance Consortium Set up to provide an open system (protocol suite) to support SSO. Provides various means of transferring assertions to SP. E.g. using SOAP, web redirection. Possible problems, as with any scheme using web redirection, man-in-the-middle attacks.  WS Federation Part of Web Services Security. Covers federation of identifiers, and also allowed ‘brokering’ of identity/authentication services. Could be used as the basis of an SSO scheme?

26 www.mobilevce.com © 2004 Mobile VCE Agenda Background Privacy issues Ad hoc relationships Layering issues Key management Single sign-on

27 www.mobilevce.com © 2004 Mobile VCE Thank you !

Download ppt "Www.mobilevce.com © 2004 Mobile VCE June 2004 Security – Requirements and approaches to securing future mobile services Malcolm K Payne BT."

Similar presentations

1 ABCs of PKI TAG Presentation 18 th May 2004 Paul Butler.

1 ABCs of PKI TAG Presentation 18 th May 2004 Paul Butler.
Chapter 10 Real world security protocols

Chapter 10 Real world security protocols
Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.

Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
Topic 8: Secure communication in mobile devices. Choice of secure communication protocols, leveraging SSL for remote authentication and using HTTPS for.

Topic 8: Secure communication in mobile devices. Choice of secure communication protocols, leveraging SSL for remote authentication and using HTTPS for.
CHAPTER 8: SECURITY IN COMPUTER NETWORKS Encryption Encryption Authentication Authentication E-Mail Security E-Mail Security Secure Sockets Layer Secure.

CHAPTER 8: SECURITY IN COMPUTER NETWORKS Encryption Encryption Authentication Authentication Security Security Secure Sockets Layer Secure.
Grid Security Infrastructure Tutorial Von Welch Distributed Systems Laboratory U. Of Chicago and Argonne National Laboratory.

Grid Security Infrastructure Tutorial Von Welch Distributed Systems Laboratory U. Of Chicago and Argonne National Laboratory.
Lecture 2: Security Rachana Ananthakrishnan Argonne National Lab.

Lecture 2: Security Rachana Ananthakrishnan Argonne National Lab.
CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.

CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.
Lect. 18: Cryptographic Protocols. 2 1.Cryptographic Protocols 2.Special Signatures 3.Secret Sharing and Threshold Cryptography 4.Zero-knowledge Proofs.

Lect. 18: Cryptographic Protocols. 2 1.Cryptographic Protocols 2.Special Signatures 3.Secret Sharing and Threshold Cryptography 4.Zero-knowledge Proofs.
Access Control Methodologies

Access Control Methodologies
Lecture 23 Internet Authentication Applications

Lecture 23 Internet Authentication Applications
Symmetric Key Infrastructure Karel Masarik, Daniel Cvrcek Faculty of Information Technology Brno University of Technology

Symmetric Key Infrastructure Karel Masarik, Daniel Cvrcek Faculty of Information Technology Brno University of Technology
Www.mobilevce.com © 2005 Mobile VCE Securing the Future: Device & Service Security Stephen Hope, FT R&D UK Ltd on behalf of Nigel Jefferies, Vodafone Chair.

© 2005 Mobile VCE Securing the Future: Device & Service Security Stephen Hope, FT R&D UK Ltd on behalf of Nigel Jefferies, Vodafone Chair.
Grid Security. Typical Grid Scenario Users Resources.

Grid Security. Typical Grid Scenario Users Resources.
Authentication in Mobile Ad-hoc Network (MANET) Student Ståle Jonny Berget Superviser Chik How Tan.

Authentication in Mobile Ad-hoc Network (MANET) Student Ståle Jonny Berget Superviser Chik How Tan.
DESIGNING A PUBLIC KEY INFRASTRUCTURE

DESIGNING A PUBLIC KEY INFRASTRUCTURE
SMUCSE 5349/7349 Public-Key Infrastructure (PKI).

SMUCSE 5349/7349 Public-Key Infrastructure (PKI).
Mar 12, 2002Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities SSL/TLS.

Mar 12, 2002Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities SSL/TLS.
16.1 © 2004 Pearson Education, Inc. Exam 70-294 Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.

16.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.

Similar presentations

Ads by Google