Wimax standards and Security The Wimax



Download 2,02 Mb.
bet147/186
Sana29.05.2022
Hajmi2,02 Mb.
#619147
1   ...   143   144   145   146   147   148   149   150   ...   186
Bog'liq
CRC - WiMAX.Standards.and.Security

FIGURE 10.3
Starting a connection.

possesses an X.509 certificate of its manufacturer—but this latter certificate is generally ignored by the BS and plays no role in security. Figure 10.3 is a sequence diagram of how an SS starts to use (enters) the network. After the SS finds a BS downlink signal, the SS sets up its PHY parameters and establishes a management channel that can be used for further negotiation. It then starts an authentication protocol (PKM authorization, described later in Figure 10.5). The SS registers itself with the BS by sending a registration request. The BS responds with a registration reply in which the SS is assigned a channel ID for a secondary management channel. After that, the SS creates a transport connection through the BS using a MAC_create_connection request.


Stations perform authentication using credentials, X.509 certificates in the current standard. Figure 10.4 shows a class diagram to describe the structure of these certificates. Once authenticated, a user is given a token to access the system. Figure 10.5 summarizes the steps in the PKM protocol for the SS to obtain authorized access to the network. The SS sends two messages. The first message contains the manufacturer X.509 certificate. The second, authorization request, includes its own X.509 certificate and a list of its security capabilities. If the SS is authenticated and authorized to join the network, the BS sends an authorization reply. The authorization reply is encrypted with


1





FIGURE 10.4
Class diagram for X.509 certificates.
Authorized?
FIGURE 10.5
PKM authorization protocol.

the SS’s public key (denoted as Essek in the figure) and includes an AK, a key lifetime, a key sequence number, and an SA descriptor (the basis for the authorization SA).


The PKM exchange of messages establishes an authorization key and a SA. The sequence numbers in the protocol represent instances of the AK. The AK is used to derive three additional keys for both encrypting and






Download 2,02 Mb.

Do'stlaringiz bilan baham:
1   ...   143   144   145   146   147   148   149   150   ...   186



Ma'lumotlar bazasi mualliflik huquqi bilan himoyalangan ©hozir.org 2024
ma'muriyatiga murojaat qiling
kiriting | ro'yxatdan o'tish
    Bosh sahifa
юртда тантана
Боғда битган
Бугун юртда
Эшитганлар жилманглар
Эшитмадим деманглар
битган бодомлар
Yangiariq tumani
qitish marakazi
Raqamli texnologiyalar
ilishida muhokamadan
tasdiqqa tavsiya
tavsiya etilgan
iqtisodiyot kafedrasi
steiermarkischen landesregierung
asarlaringizni yuboring
o'zingizning asarlaringizni
Iltimos faqat
faqat o'zingizning
steierm rkischen
landesregierung fachabteilung
rkischen landesregierung
hamshira loyihasi
loyihasi mavsum
faolyatining oqibatlari
asosiy adabiyotlar
fakulteti ahborot
ahborot havfsizligi
havfsizligi kafedrasi
fanidan bo’yicha
fakulteti iqtisodiyot
boshqaruv fakulteti
chiqarishda boshqaruv
ishlab chiqarishda
iqtisodiyot fakultet
multiservis tarmoqlari
fanidan asosiy
Uzbek fanidan
mavzulari potok
asosidagi multiservis
'aliyyil a'ziym
billahil 'aliyyil
illaa billahil
quvvata illaa
falah' deganida
Kompyuter savodxonligi
bo’yicha mustaqil
'alal falah'
Hayya 'alal
'alas soloh
Hayya 'alas
mavsum boyicha

yuklab olish