Presentation is loading. Please wait.

Presentation is loading. Please wait.

Doc.: IEEE 802.11-12/0039r0 Submission NameAffiliationsAddressPhoneemail Robert Sun; Yunbo Li Edward Au; Phil Barber Junghoon Suh; Osama Aboul-Magd Huawei.

Published byChristal Edwards Modified over 9 years ago

Similar presentations

Presentation on theme: "Doc.: IEEE 802.11-12/0039r0 Submission NameAffiliationsAddressPhoneemail Robert Sun; Yunbo Li Edward Au; Phil Barber Junghoon Suh; Osama Aboul-Magd Huawei."— Presentation transcript:

1 doc.: IEEE 802.11-12/0039r0 Submission NameAffiliationsAddressPhoneemail Robert Sun; Yunbo Li Edward Au; Phil Barber Junghoon Suh; Osama Aboul-Magd Huawei Technologies Co., Ltd. Suite 400, 303 Terry Fox Drive, Kanata, Ontario K2K 3J1 +1-613-2871948Rob.sun@huawei.com Paul Lambert Yong Liu Marvell Semiconductor 5488 Marvell Lane Santa Clara, CA 95054 + 1-650-787-9141 paul@marvel.com TGai FILS Authentication Protocol Date: 2011-11-15 Jan 2012 Slide 1 Authors: Rob Sun etc, Huawei.

2 doc.: IEEE 802.11-12/0039r0 SubmissionSlide 2 Abstract Huawei. Dec 2011

3 doc.: IEEE 802.11-12/0039r0 Submission Conformance w/ TGai PAR & 5C Huawei.Slide 3 Conformance QuestionResponse Does the proposal degrade the security offered by Robust Security Network Association (RSNA) already defined in 802.11? No Does the proposal change the MAC SAP interface?No Does the proposal require or introduce a change to the 802.1 architecture?No Does the proposal introduce a change in the channel access mechanism?No Does the proposal introduce a change in the PHY?No Which of the following link set-up phases is addressed by the proposal? (1) AP Discovery (2) Network Discovery (3) Link (re-)establishment / exchange of security related messages (4) Higher layer aspects, e.g. IP address assignment 3 Dec 2011

4 doc.: IEEE 802.11-12/0039r0 Submission RSNA Security Analysis Stage 1:Network and Security Capability Discovery Stage 2: 802.11 Authentication and Association 802.11 Open System Authentication is included only for backward compatibility Stage 3: EAP/802.1X/RADIUS Authentication This stage execute the mutual authentication protocol based on EAP (i.e EAP-TLS, EAP-SIM/AKA/TTLS) authentication AP is functioning as authenticator to relay EAP messages This stage COULD be skipped in the scenarios of : 1) PMK cached for re-authentication 2) PSK is shared between STA and AP Stage 4: 4-way handshake: Both STA and the AP can trust each other with the authorized token (PMK) to derive the PTK and GTK HuaweiSlide 4 Dec 2011

5 doc.: IEEE 802.11-12/0039r0 Submission RSNA Security Analysis Stage 5 (Optional): Group Key Handshake The AP will generate the fresh GTK and distributed this GTK to the STA GTK may be distributed during the Stage 4 Stage 6: Secure Data Communication DHCP request/response … HuaweiSlide 5 Dec 2011

6 doc.: IEEE 802.11-12/0039r0 Submission The Security Model of RSNA HuaweiSlide 6 Policy Decision Point Policy Decision Point Policy Enforcement Point Policy Enforcement Point STA AS AP 1.Authenticate to derive MSK 2: Derive PMK from MSK 3: Use PMK to enforce 802.11 channel access Derive and use PTK Dec 2011 Reference: “IEEE 802.11i Overview”, 2002, Nancy Cam-Winget, et al

7 doc.: IEEE 802.11-12/0039r0 Submission RSNA Components IEEE 802.1X for Access Control EAP (RFC 4017) for authentication and cipher suite negotiation 4-Way Handshake for establishing security association between STA and AP Pre-Shared Key (PSK) mode between AP and STA HuaweiSlide 7 Dec 2011

8 doc.: IEEE 802.11-12/0039r0 Submission RSNA Establishment Procedures (I) HuaweiSlide 8 Supplicant Unauthenticated Unassociated 802.1x Blocked Authenticator Unauthenticated Unassociated 802.1x Blocked Authentication Server (Radius) (1) Beacon +AA RSN-IE (2) Probe Request (3) Probe Response + AA RSN-IE (4) 802.11 Authentication Request (5) 802.11 Authentication Response (6) Association Request +SPA RSN IE (7) 802.11 Association Response Authenticated Associated 802.1x Blocked Security Params Authenticated Associated 802.1x Blocked Security Params (8) EAPOL-Start (9) EAPOL-Request Identity (10) EAPOL-Response Identity Stage 1: Network and Security Capability Discovery Stage 2: 802.11 Authentication And Association Stage 3: EAP/802.1X/ Radius Authentication 1)This Open authentication and association is nothing but an RSN negotiation between STA and AP, Could FILS authentication be in parallel here? 2) At this stage, no MPDUs are allowed due to the 802.1X state machine blocking, Can we allow traffic to go through at this stage? 1)This Open authentication and association is nothing but an RSN negotiation between STA and AP, Could FILS authentication be in parallel here? 2) At this stage, no MPDUs are allowed due to the 802.1X state machine blocking, Can we allow traffic to go through at this stage? Observation and potential Improvement Areas for FILS Area 1: Dec 2011

9 doc.: IEEE 802.11-12/0039r0 Submission RSNA Establishment Procedures (II) HuaweiSlide 9 Supplicant Unauthenticated Unassociated 802.1x Blocked Authenticator Unauthenticated Unassociated 802.1x Blocked Authentication Server (Radius) (12) Mutual Authentication (14) EAPOL Success (16) {AA, Anounce, sn, msg1} Master Session Key (MSK) (17) {SPA, Snounce, SPA, sn, msg2, MIC} (18) {AA, Anounce, AA,GTK, sn+1, msg3, MIC} (19) {SPA, sn+1, msg4, MIC} (11) Radius Request (13) Radius Accept Master Session Key (MSK) Pairwise Master Key (PMK) Pairwise Master Key (PMK) Pairwise Transient Key (PTK) PTK, GTK Stage 3: EAP/802.1X/ Radius Authentication Stage 4 4-Way Handshake 3) This EAP/802.1X/Radius is supplementing the Open system authentication with mutual authentication between STA and Radius, Can this authentication be skipped if FILS authentication CAN take place at stage 2. 4) Can this FILS authentication be faster in generating the PMK? 3) This EAP/802.1X/Radius is supplementing the Open system authentication with mutual authentication between STA and Radius, Can this authentication be skipped if FILS authentication CAN take place at stage 2. 4) Can this FILS authentication be faster in generating the PMK? Area 2: 5) 4-way handshake guarantees the STA can mutually trust the AP and share their keys with the indication of the PMK, Can this process be skipped or optimized to satisfy the FILS performance requirements? 5) 4-way handshake guarantees the STA can mutually trust the AP and share their keys with the indication of the PMK, Can this process be skipped or optimized to satisfy the FILS performance requirements? Area 3: Pairwise Master Key (PMK) Dec 2011

10 doc.: IEEE 802.11-12/0039r0 Submission RSNA Establishment Procedures (III) HuaweiSlide 10 Supplicant Unauthenticated Unassociated 802.1x Blocked Authenticator Unauthenticated Unassociated 802.1x Blocked Authentication Server (Radius) GTK, 802.1X Unblocked 802.1X unblocked Generate Rand GTK (20) EAPOL-Key {Group, sn+2,GTK, Key ID, MIC} (21) EAPOL-Key {Group, Key ID, MIC} New GTK Obtained (22 ) Protected Data Packets Stage 5 Group Key Handshake (Optional) Stage 6 Secure Data Communication (23) DHCP Req/Res DHCP Server Dec 2011

11 doc.: IEEE 802.11-12/0039r0 Submission Modified 802.11 Authentication and Association State Machine Huawei Slide 11 State 1 Unauthenticated, Unassociated Class 1 Frames State 2 Authenticated, Unassociated Class 1 & 2 Frames State 3 Authenticated, Associated (Pending RSN Authentication) Class 1,2 & 3 Frames IEEE 802.1X Controlled Port Blocked State 4 Authenticated, Associated Class 1,2 & 3 Frames IEEE 802.1X Controlled Port UnBlocked Successful 802.11 Authentication Successful (Re)Association –RSNA Required 4- way Handshake Successful Deauthentication Deassociation Deauthentication Unsuccessful (Re)Association (Non-AP STA) Successful 802.11 Authentication Unsuccessful (Re)Association (Non-AP STA) Disassociation Successful 802.11 Authentication Successful (Re) Association No RSNA required or Fast BSS Transitions State 5 FILS Authenticated Class 1 & 2 Frames With Selected Management & Data Frames IEEE 802.1x controlled Port blocked FILS Authenticated Class 1 & 2 Frames With Selected Management & Data Frames IEEE 802.1x controlled Port blocked Successful FILS Authentication FILS Deauthentication FILS Key Handshake Dec 2011 Slide 11

12 doc.: IEEE 802.11-12/0039r0 Submission FILS Authenticated State Upon receipt of a Beacon message from a AP STA or Probe Request from non-AP STA with FILS authentication number, both the STA and AP’s shall transition to FILS Authenticated state STA at FILS Authenticated State, it allows Class 1,2 and selected Data frames piggybacked over Class 1 &2 frames to be transmitted Upon receipt of a De-association frame from either STA or AP STA with reasons, the STA at the FILS authenticated state will be transitioned to State 1. STA transitioned back to State 1 may retry with FILS authentication or use the RSNA authentication Upon receipt of a FILS key exchange success, the STA shall transition to state 3 which is allows full class 1, 2 and 3 frames to pass through. HuaweiSlide 12 Selected Management Frames and Data Frames Reasons EAPOL To carry out the EAPOL authentication at FILS Authenticated State DHCP To enable the parallel DHCP processing Dec 2011

13 doc.: IEEE 802.11-12/0039r0 Submission Appropriate FILS Authentication Properties HuaweiSlide 13 Mandatory Properties 802.11i FILS Security Mutual Authentication with key agreement Yes Strong Confidentiality Yes RSNA Security Model Yes Key Confirmation Yes Key Derivation Yes Fast Re-authentication Yes Strong Session Key Yes Replay Attack Protection/MTIM protection/Dictionary Attack /Impersonation Attack Protection Yes Recommended Properties 802.11i FILS Security Fast and EfficientNo Yes Forward SecrecyImplementation Related Denial of Service ResistanceImplementation Related Dec 2011

14 doc.: IEEE 802.11-12/0039r0 Submission Authentication Algorithm Number Field Insert the following FILS Authentication Algorithm Number – Authentication algorithm number = 0: Open System –Authentication algorithm number = 1: Shared Key –Authentication algorithm number = 2: Fast BSS Transition –Authentication algorithm number = 3: simultaneous authentication of equals (SAE) –Authentication algorithm number = 4: FILS Authentication –Authentication algorithm number = 65 535: Vendor specific use HuaweiSlide 14 Dec 2011

15 doc.: IEEE 802.11-12/0039r0 Submission IEEE 802.11 TGai FILS Authentication (Revising 802.11Revmb Section 4.10.3.2) Dec 2011 HuaweiSlide 15 Supplicant AP / Authenticator AS 1) 802.11 Beacon 2) 802.11 Probe Request 3) 802.11 Probe Response 4) |802.1x EAP OL-Start with Security Parameters for FILS handshake) 5) Access Request (EAP Request) 6) EAP Authentication Protocol Exchange AS Generates PMK 7) Accept/ EAP Success/ PMK 8) 802.1x EAPOL success || msg 1: EAPOL-KEY (Anounce, Unicast)) Supplicant Generates PMK Removing EAP-Identity Request / Response Message Authenticator Stores PMK And Generate Anounce Supplicant Derives PTK 4 Way Handshake Message is overhauled in 802.11 Auth Resp State 1 State 5 State 1 State 5

16 doc.: IEEE 802.11-12/0039r0 SubmissionHuaweiSlide 16 Supplicant AP / Authenticator 9) 802.11 Association Request ( Msg 2: EAPOL-Key (Snounce, Unicastm MIC) 10) 802.11 Association Response ( Msg 3: EAPOL-Key (Install PTK, unicast, MIC, Encrypt (GTK, IGTK) )) Msg 4: EAPOL-Key (Unicast, MIC) Secure Data Communication Supplicant with PTK Authenticator with PTK |GTK|IGTK Optional Msg 4 for key confirmation Install PTK, GTK IGTK Install PTK, GTK IGTK IEEE 802.11 TGai FILS Handshake (Revising 802.11Revmb Section 4.10.3.2) State 5 State 4 State 5 State 4 Dec 2011

17 doc.: IEEE 802.11-12/0039r0 Submission Protocol Analysis Parallelize the Open Authentication Request/Response with EAPOL Authentication for STA and AS to execute the mutual authentication with EAP method neutral and generate PMK Remove the EAP Identity Request and Response messages whose functions will be carried out in EAPOL start message Parallelize the message 1 of 4-way handshake (now 3 way handshake) on 802.11 association response for STA to simultaneously generate the PMK and PTK Parallelize the 3 way handshake with 802.11 association request/response message handshakes Original 4 way handshake is reduced to 3 way handshake to satisfy the performance requirements (changing from Bilateral Key confirmation to Unilateral key confirmation). No violating RSNA security protocol and security models Total of 10 message handshakes vs 21 message handshakes HuaweiSlide 17 Dec 2011

18 doc.: IEEE 802.11-12/0039r0 Submission Further Development for FILS authentication Problem observed: The EAP authentication between STA and AP usually takes longer processing time given some specific EAP methods being deployed (i.e EAP- TLS with RSA and DH cipher suites) Suggested working area: HuaweiSlide 18 Dec 2011

19 doc.: IEEE 802.11-12/0039r0 Submission Questions & Comments Slide 19Huawei. Dec 2011

Download ppt "Doc.: IEEE 802.11-12/0039r0 Submission NameAffiliationsAddressPhoneemail Robert Sun; Yunbo Li Edward Au; Phil Barber Junghoon Suh; Osama Aboul-Magd Huawei."

Similar presentations

Doc.: IEEE 802.11-04/1186r0 Submission October 2004 Aboba and HarkinsSlide 1 PEKM (Post-EAP Key Management Protocol) Bernard Aboba, Microsoft Dan Harkins,

Doc.: IEEE /1186r0 Submission October 2004 Aboba and HarkinsSlide 1 PEKM (Post-EAP Key Management Protocol) Bernard Aboba, Microsoft Dan Harkins,
Doc.: IEEE 802.11-12/1281r1 Submission NameAffiliationsAddressPhoneemail Robert Sun;Huawei Technologies Co., Ltd. Suite 400, 303 Terry Fox Drive, Kanata,

Doc.: IEEE /1281r1 Submission NameAffiliationsAddressPhone Robert Sun;Huawei Technologies Co., Ltd. Suite 400, 303 Terry Fox Drive, Kanata,
Doc.: IEEE 802.11-11/1160 Submission NameAffiliationsAddressPhone George CherianQualcomm 5775 Morehouse Dr, San Diego, CA, USA

Doc.: IEEE /1160 Submission NameAffiliationsAddressPhone George CherianQualcomm 5775 Morehouse Dr, San Diego, CA, USA
Doc.: IEEE 802.11-11/1436r0 Submission NameAffiliationsAddressPhoneemail Robert Sun Huawei Technologies Co., Ltd. Suite 400, 303 Terry Fox Drive, Kanata,

Doc.: IEEE /1436r0 Submission NameAffiliationsAddressPhone Robert Sun Huawei Technologies Co., Ltd. Suite 400, 303 Terry Fox Drive, Kanata,
Doc.: IEEE 802.11-11/0780r1 Submission NameAffiliationsAddressPhoneemail Ping Fang Zhiming Ding Phillip Barber Rob Sun Huawei Technologies Co., Ltd. Bldg.

Doc.: IEEE /0780r1 Submission NameAffiliationsAddressPhone Ping Fang Zhiming Ding Phillip Barber Rob Sun Huawei Technologies Co., Ltd. Bldg.
Analysis and Improvements over DoS Attacks against IEEE 802.11i Standard Networks Security, Wireless Communications and Trusted Computing(NSWCTC), 2010.

Analysis and Improvements over DoS Attacks against IEEE i Standard Networks Security, Wireless Communications and Trusted Computing(NSWCTC), 2010.
Doc.: IEEE 802.11-12/0041r1 Submission NameAffiliationsAddressPhoneemail Robert Sun; Yunbo Li; Edward Au; Phillip Barber Huawei Technologies Co., Ltd.

Doc.: IEEE /0041r1 Submission NameAffiliationsAddressPhone Robert Sun; Yunbo Li; Edward Au; Phillip Barber Huawei Technologies Co., Ltd.
Doc.: IEEE 802.11-12/0567r1 Submission May 2012 Huawei Slide 1 Multiple Frequency Channel Scanning Date: 2012-05-04 Authors: NameAffiliationsAddressPhoneemail.

Doc.: IEEE /0567r1 Submission May 2012 Huawei Slide 1 Multiple Frequency Channel Scanning Date: Authors: NameAffiliationsAddressPhone .
TGai FILS Authentication Protocol

TGai FILS Authentication Protocol
Doc.: IEEE 802.11-11/1498-01-00ai Submission NameAffiliationsAddressPhoneemail Phillip BarberHuawei Technologies Co., Ltd. 1700 Alma Rd, Ste 500 Plano,

Doc.: IEEE / ai Submission NameAffiliationsAddressPhone Phillip BarberHuawei Technologies Co., Ltd Alma Rd, Ste 500 Plano,
Submission doc.: IEEE 11-12-0406-03-00ai May 2012 InterDigital, KDDI, Nokia, Huawei, Intel, Qcomm Slide 1 Proposed SFD Text for 802.11ai Passive Scanning.

Submission doc.: IEEE ai May 2012 InterDigital, KDDI, Nokia, Huawei, Intel, Qcomm Slide 1 Proposed SFD Text for ai Passive Scanning.
Doc.: Submission, Slide 1 Project: IEEE P802.15 Working Group for Wireless Personal Area Networks (WPANs) Submission Title: [Securing the 802.15.4 Network.

Doc.: Submission, Slide 1 Project: IEEE P Working Group for Wireless Personal Area Networks (WPANs) Submission Title: [Securing the Network.
Doc.: IEEE 802.11-11/0976r1 Submission July 2011 Hitoshi Morioka, ROOT INC.Slide 1 TGai Authentication Protocol Proposal Date: 2011-07-17 Authors: NameAffiliationsAddressPhoneemail.

Doc.: IEEE /0976r1 Submission July 2011 Hitoshi Morioka, ROOT INC.Slide 1 TGai Authentication Protocol Proposal Date: Authors: NameAffiliationsAddressPhone .
Doc.: IEEE 802.11-11/0976r3 Submission July 2011 Hitoshi Morioka, ROOT INC.Slide 1 TGai Authentication Protocol Proposal Date: 2011-07-22 Authors: NameAffiliationsAddressPhoneemail.

Doc.: IEEE /0976r3 Submission July 2011 Hitoshi Morioka, ROOT INC.Slide 1 TGai Authentication Protocol Proposal Date: Authors: NameAffiliationsAddressPhone .
Doc.: IEEE 802.11-11/1169r1 Submission January 2012 Jihyun Lee, LG ElectronicsSlide 1 FILS Association Date: 2012-01-17 Authors: NameAffiliationsAddressPhoneemail.

Doc.: IEEE /1169r1 Submission January 2012 Jihyun Lee, LG ElectronicsSlide 1 FILS Association Date: Authors: NameAffiliationsAddressPhone .
Doc.: IEEE 802.11-12/933r6 Submission July 2012 Fang Xie (CMCC)Slide 1 Access Control Mechanism for FILS Date: 2012-07-17 Authors: NameAffiliationsAddressPhoneemail.

Doc.: IEEE /933r6 Submission July 2012 Fang Xie (CMCC)Slide 1 Access Control Mechanism for FILS Date: Authors: NameAffiliationsAddressPhone .
Doc.: IEEE 802.11-12/1042r3 Submission NameAffiliationsAddressPhoneemail Giwon ParkLG Electronics LG R&D Complex 533, Hogye- 1dong, Dongan-Gu, Anyang,

Doc.: IEEE /1042r3 Submission NameAffiliationsAddressPhone Giwon ParkLG Electronics LG R&D Complex 533, Hogye- 1dong, Dongan-Gu, Anyang,
Doc.: IEEE 802.11-12/1042 Submission NameAffiliationsAddressPhoneemail Giwon ParkLG Electronics LG R&D Complex 533, Hogye- 1dong, Dongan-Gu, Anyang, Kyungki,

Doc.: IEEE /1042 Submission NameAffiliationsAddressPhone Giwon ParkLG Electronics LG R&D Complex 533, Hogye- 1dong, Dongan-Gu, Anyang, Kyungki,
Doc.: IEEE 802.11-12/0249r0 Submission March 2012 Slide 1Lin Cai et al,Huawei. Differentiated Association Service Provisioning in WiFi Networks Date: 03/02/2012.

Doc.: IEEE /0249r0 Submission March 2012 Slide 1Lin Cai et al,Huawei. Differentiated Association Service Provisioning in WiFi Networks Date: 03/02/2012.
IEEE MEDIA INDEPENDENT HANDOVER DCN: srho

IEEE MEDIA INDEPENDENT HANDOVER DCN: srho

Similar presentations

Ads by Google