Presentation is loading. Please wait.

Presentation is loading. Please wait.

Doc.: IEEE 802.11-13/0026r0 Submission January 2013 Yongho Seok, LG ElectronicsSlide 1 Security Procedure for Long Sleeper Date: 2013-01-13 Authors: NameAffiliationsAddressPhoneEmail.

Published byMargaretMargaret Matthews Modified over 9 years ago

Similar presentations

Presentation on theme: "Doc.: IEEE 802.11-13/0026r0 Submission January 2013 Yongho Seok, LG ElectronicsSlide 1 Security Procedure for Long Sleeper Date: 2013-01-13 Authors: NameAffiliationsAddressPhoneEmail."— Presentation transcript:

1 doc.: IEEE 802.11-13/0026r0 Submission January 2013 Yongho Seok, LG ElectronicsSlide 1 Security Procedure for Long Sleeper Date: 2013-01-13 Authors: NameAffiliationsAddressPhoneEmail Yongho SeokLG Electronics LG R&D Complex Anyang-Shi, Kyungki- Do, Korea +82-31-450-1947yongho.seok@lge.com Minyoung ParkIntelHillsboro, OR+1 503 712 4705minyoung.park@intel.com Jinsoo ChoiLG Electronics Jeongki KimLG Electronics Hangyu ChoLG Electronics Matthew FischerBroadcommfischer@broadcom.com Eric WongBroadcomSunnyvale, CA+1 408 922 6672ewong@broadcom.com Tom TetzlaffIntel Emily QiIntel Simone MerlinQualcommSan Diego, CA+1 858 845 1243smerlin@qualcomm.com Amin JafarianQualcomm Bin TianQualcomm Santosh AbrahamQualcomm Menzo WentinkQualcomm Hemanth SampathQualcomm VK jonesQualcomm

2 doc.: IEEE 802.11-13/0026r0 SubmissionSlide 2 NameAffiliationsAddressPhoneEmail Hongyuan ZhangMarvell Sudhir SrinivasaMarvell George CalcevHuaweiRolling Meadows, IL, USA George.Calcev@huawei.co m Osama Aboul MagdHuawei Young Hoon KwonHuawei Betty ZhaoHuawei David YangxunHuawei Bin ZhenHuawei ChaoChun WangMediaTek James WangMediaTek Jianhan LiuMediaTek Vish PonnampalamMediaTek James YeeMediaTek Huai-Rong Shao Samsung Electronics Chiu NgoSamsung Electronics Minho CheongETRI Jae Seung LeeETRI Hyoungjin KwonETRI Jaewoo ParkETRI Sok-kyu LeeETRI Sun, Bo ZTE Lv, Kaiying ZTE Authors: Yongho Seok, LG Electronics January 2013

3 doc.: IEEE 802.11-13/0026r0 SubmissionYongho Seok, LG ElectronicsSlide 3 Authors: NameAffiliationsAddressPhoneEmail Sayantan ChoudhuryNokia Klaus DopplerNokia Chittabrata GhoshNokia Esa TuomaalaNokia Ken MoriPanasonic Rojan ChitrakarPanasonic Haiguang WangI2R Shoukang ZhengI2R Yeow Wai LeongI2R Zander LeiI2R Jaya ShankarI2R Anh Tuan HoangI2R Joseph Teo Chee MingI2R Anna PantelidouRenesas Mobile Juho PirskanenRenesas Mobile Timo KoskelaRenesas Mobile Liwen ChuSTMicroelectronics George VlantisSTMicroelectronics January 2013

4 doc.: IEEE 802.11-13/0026r0 Submission Introduction IEEE 802.11w is a standard for supporting a protected management frame Wi-Fi Alliance also provides a certification program for the protected management frame as one of core programs –Protected Management Frames: Wi-Fi CERTIFIED WPA2 with Protected Management Frames provides a WPA2-level of protection for unicast and multicast management action frames, http://www.wi-fi.org/certification/programs http://www.wi-fi.org/certification/programs One of mandatory features of the protected management frame is a Security Association (SA) Query procedure January 2013 Yongho Seok, LG ElectronicsSlide 4

5 doc.: IEEE 802.11-13/0026r0 Submission Background of SA Query Procedure If an AP has a valid security association for a non-AP STA –The SME shall reject the Association Request by generating an MLME- ASSOCIATE.response primitive with ResultCode “Association request rejected temporarily; try again later.” –The SME shall include in the MLME-ASSOCIATE.response primitive a Timeout Interval element with Timeout interval type set to 3 (Association Comeback time), specifying a comeback time when the AP would be ready to accept an association with this STA. –Following this, the SME shall issue one MLME-SAQuery.request primitive addressed to the STA every dot11AssociationSAQueryRetryTimeout TUs until a matching MLME- SAQuery.confirm primitive is received or dot11AssociationSAQueryMaximumTimeout TUs from the beginning of the SA Query procedure have passed. January 2013 Yongho Seok, LG ElectronicsSlide 5

6 doc.: IEEE 802.11-13/0026r0 Submission Background of SA Query Procedure Security Association Query Procedure Example January 2013 Yongho Seok, LG ElectronicsSlide 6 AP STA Attacker Association Request Association Response SA Query Request SA Query Response Association Request Association Response AP and STA have a valid security association Result Code: “Association requested rejected temporarily: try again later.” Association Comeback Time dot11AssociationSAQuery MaximumTimeout Result Code: “Association requested rejected temporarily: try again later.”

7 doc.: IEEE 802.11-13/0026r0 Submission Background of SA Query Procedure Security Association Query Procedure Example January 2013 Yongho Seok, LG ElectronicsSlide 7 Association Comeback Time dot11AssociationSAQuery MaximumTimeout AP STA Attacker Association Request Association Response SA Query Request Association Request Association Response AP and STA have a valid security association Result Code: “Association requested rejected temporarily: try again later.” Result Code: “Success.” SA Query Request STA is recovered from a failure

8 doc.: IEEE 802.11-13/0026r0 Submission Problem Definition Low power STA may wake up with very long interval (e.g., 10 minutes) So, long sleepers may not received SA Query Request frame even though they have a valid security association –If an MLME-SAQuery.confirm primitive with an outstanding transaction identifier is not received within dot11AssociationSAQueryMaximumTimeout period, the SME shall allow the association process to be started without starting an additional SA Query procedure. dot11AssociationSAQueryMaximumTimeout specifies the number of time units (TUs) that an AP can wait, from the scheduling of the first SA Query Request to allow association process to be started without starting additional SA Query procedure if a successful SA Query Response is not received. And a default value is 1 second. January 2013 Yongho Seok, LG ElectronicsSlide 8

9 doc.: IEEE 802.11-13/0026r0 Submission Problem Definition Because STA does not reply to SA Query Request frame, an attacker can be associated with AP and it destroys the security association of the STA. January 2013 Yongho Seok, LG ElectronicsSlide 9 AP STA Attacker Association Request Association Response SA Query Request Association Request Association Response Result Code: “Association requested rejected temporarily: try again later.” Association Comeback Time dot11AssociationSAQuery MaximumTimeout Result Code: “Success.” SA Query Request

10 doc.: IEEE 802.11-13/0026r0 Submission Proposal AP Behavior –For protecting a security association from DoS attack, AP should provide dot11AssociationSAQueryMaximumTimeout value to a non-AP STA STA Behavior –For protecting DoS attack, the non-AP STA shall wake to listen to SA Query Request frame with the interval of dot11AssociationSAQueryMaximumTimeout January 2013 Yongho Seok, LG ElectronicsSlide 10

11 doc.: IEEE 802.11-13/0026r0 Submission Conclusion In this contribution, we propose a security association procedure for a long sleeper –For protecting DoS attack, AP needs to provide dot11AssociationSAQueryMaximumTimeout value to its associated STA January 2013 Yongho Seok, LG ElectronicsSlide 11

12 doc.: IEEE 802.11-13/0026r0 Submission Straw Poll Do you support that an AP include dot11AssociationSAQueryMaximumTimeout in Association Response frame or Re-association Response frame with status code set to success? January 2013 Yongho Seok, LG ElectronicsSlide 12

Download ppt "Doc.: IEEE 802.11-13/0026r0 Submission January 2013 Yongho Seok, LG ElectronicsSlide 1 Security Procedure for Long Sleeper Date: 2013-01-13 Authors: NameAffiliationsAddressPhoneEmail."

Similar presentations

Doc.: IEEE 802.11-13/0507r0 Submission Synch Frame Follow Up Date: 2013-5-13 Authors: May 2013 NameAffiliationsAddressPhoneemail Young Hoon KwonHuawei.

Doc.: IEEE /0507r0 Submission Synch Frame Follow Up Date: Authors: May 2013 NameAffiliationsAddressPhone Young Hoon KwonHuawei.
Doc.: IEEE 802.11-07/2441r2 Submission SA Teardown Protection for 802.11w Date: 2007-11-05.

Doc.: IEEE /2441r2 Submission SA Teardown Protection for w Date:
NDP Type PS-Poll Frame Date: Authors: July 2012 Month Year

NDP Type PS-Poll Frame Date: Authors: July 2012 Month Year
Doc.: IEEE 802.11-12/0612r0 Submission Serivice Type Indication in Association Date: 2012-05-xx Authors: May 2012 Wu Tianyu, HuaweiSlide 1 NameAffiliationsAddressPhoneemail.

Doc.: IEEE /0612r0 Submission Serivice Type Indication in Association Date: xx Authors: May 2012 Wu Tianyu, HuaweiSlide 1 NameAffiliationsAddressPhone .
Doc.: IEEE 802.11-07/2913r0 Submission November 2007 Kapil Sood, Intel CorporationSlide 1 Protecting Associations Attacks – Some Considerations Date: 2007-11-15.

Doc.: IEEE /2913r0 Submission November 2007 Kapil Sood, Intel CorporationSlide 1 Protecting Associations Attacks – Some Considerations Date:
Restricted Access Window Signaling for Uplink Channel Access

Restricted Access Window Signaling for Uplink Channel Access
Doc.: IEEE 802.11-11/1000r0 Submission July 2011 Jihyun Lee, LG ElectronicsSlide 1 TGai FILS Proposal Date: 2011-07-17 Authors: NameAffiliationsAddressPhoneemail.

Doc.: IEEE /1000r0 Submission July 2011 Jihyun Lee, LG ElectronicsSlide 1 TGai FILS Proposal Date: Authors: NameAffiliationsAddressPhone .
Doc.: IEEE 802.11-11/1169r1 Submission January 2012 Jihyun Lee, LG ElectronicsSlide 1 FILS Association Date: 2012-01-17 Authors: NameAffiliationsAddressPhoneemail.

Doc.: IEEE /1169r1 Submission January 2012 Jihyun Lee, LG ElectronicsSlide 1 FILS Association Date: Authors: NameAffiliationsAddressPhone .
Doc.: IEEE 802.11-12/0550 Submission NameAffiliationsAddressPhone Kiseon RyuLG Electronics10225 Willow Creek Rd, San Diego, CA, 92131, USA +1

Doc.: IEEE /0550 Submission NameAffiliationsAddressPhone Kiseon RyuLG Electronics10225 Willow Creek Rd, San Diego, CA, 92131, USA +1
Doc.: IEEE 802.11-12/0816r0 Submission July 2012 Channel Selection for 802.11ah Date: 2012-07-16 Slide 1 Name AffiliationsAddressPhoneemail Huai-Rong Shao.

Doc.: IEEE /0816r0 Submission July 2012 Channel Selection for ah Date: Slide 1 Name AffiliationsAddressPhone Huai-Rong Shao.
TGah Submission Doc:11-12-0852-00-00ah July, 2012 Sectorization for hidden node mitigation NameAffiliationsAddressPhoneemail George Calcev Huawei3601 Algonquin.

TGah Submission Doc: ah July, 2012 Sectorization for hidden node mitigation NameAffiliationsAddressPhone George Calcev Huawei3601 Algonquin.
Doc.: IEEE 802.11-12/0130r0 Submission January 2012 Seunghee Han, LG ElectronicsSlide 1 Beacon Reception of Long Sleeper Date: 2012-01-16 Authors:

Doc.: IEEE /0130r0 Submission January 2012 Seunghee Han, LG ElectronicsSlide 1 Beacon Reception of Long Sleeper Date: Authors:
Submission doc.: IEEE 802.11-12/0834r0 Speed Frame Exchange Date: 2012-07-16 Slide 1 Authors: July 2012 Eric Wong, Broadcom NameAffiliationsAddressPhoneEmail.

Submission doc.: IEEE /0834r0 Speed Frame Exchange Date: Slide 1 Authors: July 2012 Eric Wong, Broadcom NameAffiliationsAddressPhone .
Doc.: IEEE 802.11-13/0508r0 Submission May 2013 Ron Porat, Broadcom Modulation Accuracy Date: 2013-05-13 Authors: Name AffiliationsAddressPhoneemail Ron.

Doc.: IEEE /0508r0 Submission May 2013 Ron Porat, Broadcom Modulation Accuracy Date: Authors: Name AffiliationsAddressPhone Ron.
Doc.: IEEE 802.11-12/1302r0 Submission November 2012 Yongho Seok, LG ElectronicsSlide 1 TXOP Truncation Date: 2012-11-12 Authors: NameAffiliationsAddressPhoneEmail.

Doc.: IEEE /1302r0 Submission November 2012 Yongho Seok, LG ElectronicsSlide 1 TXOP Truncation Date: Authors: NameAffiliationsAddressPhone .
Doc.: IEEE 802.11-12/0257r1 Submission NameAffiliationsAddressPhoneemail Giwon ParkLG Electronics LG R&D Complex 533, Hogye- 1dong, Dongan-Gu, Anyang,

Doc.: IEEE /0257r1 Submission NameAffiliationsAddressPhone Giwon ParkLG Electronics LG R&D Complex 533, Hogye- 1dong, Dongan-Gu, Anyang,
TGah Submission Doc:11-12-0610-00-00ah May, 2012 Non-TIM Stations in 11ah NameAffiliationsAddressPhoneemail George Calcev Huawei3601 Algonquin Road, Rolling.

TGah Submission Doc: ah May, 2012 Non-TIM Stations in 11ah NameAffiliationsAddressPhone George Calcev Huawei3601 Algonquin Road, Rolling.
Doc.: IEEE 802.11-13/0089r0 Submission Listen interval update Jan 2013 Slide 1 Date: 2013-01-13 Authors: Jinsoo Choi, LG Electronics.

Doc.: IEEE /0089r0 Submission Listen interval update Jan 2013 Slide 1 Date: Authors: Jinsoo Choi, LG Electronics.
Doc.:IEEE 802.11-12/01122r0 September 2012 Simone Merlin Short MAC Header Signaling Slide 1 Authors:

Doc.:IEEE /01122r0 September 2012 Simone Merlin Short MAC Header Signaling Slide 1 Authors:
Doc.: IEEE 802.11-12/0831r0 Submission July 2012 Yongho Seok, LG ElectronicsSlide 1 Uplink Channel Access General Procedure Date: 2012-07-12 Authors: NameAffiliationsAddressPhoneEmail.

Doc.: IEEE /0831r0 Submission July 2012 Yongho Seok, LG ElectronicsSlide 1 Uplink Channel Access General Procedure Date: Authors: NameAffiliationsAddressPhone .

Similar presentations

Ads by Google