New Publication Contains Information about Security Schemes Defined by IEEE, Including Authorization, Data Authentication and Data Security

Business Wire, August 1, 2007

DUBLIN, Ireland -- Research and Markets (http://www.researchandmarkets.com/reports/c64520) has announced the addition of WiMAX Security: Solutions for Secure 802.16 to their offering.

Data security has become a major issue in most network protocols. This is due to the increasing importance of information. Due to this importance, different security protocols were designed, and deployed with network standards in order to add the security. This publication addresses the security protocols defined by one of the modern wireless communication standards, the Broadband Wireless Access, commonly known as WiMAX, a fast evolving technology that is used to form wide range wireless networks with dramatically high data rate of information transfer.

WiMAX opens the door to thousands of applications that make use of the solid wireless backbone to connect people together. With the high data rate, applications will include video transfer, voice calls, and many other services. All those types of applications will require a solid secure medium to operate and exchange information safely. This is why the IEEE decided to add to the WiMAX standard in its both versions - fixed and mobile broadband wireless access. This publication contains information about security schemes defined by IEEE, including authorization, data authentication and data security. It covers these topics from the implementation point of view by giving information about implementing those different types of protocols into a WiMAX subscriber/base station system.

Content Outline:

Introduction

WiMAX Security sublayer

Architecture.

PKM Protocol.

PKM version 1.

Introduction.

Authentication.

Security Associations Management

Types of Security associations.

Primary Security Association.

Static Security Association.

Dynamic Security Association.

Security capabilities (Cryptographic Suite)

Security Capabilities Selection Process.

Data Encryption Algorithms.

Data Authentication Algorithms.

TEK Encryption Algorithms.

Authorization Key Management

Authorization Key Generation.

Authorization Key Transfer

Authorization Key State Machine.

Traffic Encryption Keys Management

PKM version 2.

Introduction.

Authentication.

RSA-based Authorization.

EAP-Based Authentication.

Security Associations Management

Unicast Security Associations (SA)

Multicast Security Associations (GSA)

Multicast Broadcast Group Security Associations (MBSGSA)

SA TEK 3Way Handshake Process.

Handover

Authorization Key Management

AK in case of RSA-based authorization.

AK in case of EAP-based authentication.

AK in case of EAP-based Authentication after RSA-based authorization.

AK in case of EAP-based authentication afteR EAP-based authentication.

Traffic Encryption Keys Management

Traffic Encryption Key (TEK)

Group Traffic Encryption Key (GTEK)

Group Key Encryption Key (GKEK) derivation.

Key Update Command.

MBS Traffic Key (MTK)

WiMAX Cryptography.

Introduction.

Traffic Encryption Algorithms.

Data encryption with DES in CBC mode.

DES Keys.

Data encryption with AES in CCM mode.

PDU payload format

PN (Packet Number)

Data encryption with AES in CTR mode.

Encrypted MBS PDU payload format

Data encryption with AES in CBC mode.

CBC IV generation.

Data Authentication Algorithms.

TEK Encryption Algorithms.

Encryption of TEK with 3-DES.

Encryption of TEK with RSA.

Encryption of TEK-128 with AES.

Encryption of TEK-128 with AES Key Wrap.

HMAC-Digests.

HMAC authentication keys.

Cipher-based MAC (CMAC) digests.

Calculation of CMAC Value.

Key Encryption Keys (KEKs)

PKMv1 KEKs.

AES KEKs in PKMv2.

Encryption of GKEK in PKMv2.

Encryption of GKEK with 3-DES in PKMv2.

Encryption of GKEK with RSA in PKMv2.

Encryption of GKEK with ECB mode AES in PKMv2.

Encryption of GKEK with AES Key Wrap in PKMv2.

X.509 Digital Certificate.

Introduction.

X.509 Digital Certificate and 802.16 standard.

Importance of X.509 Digital Certificate in Wireless Networks.

VeriSign[R] X.509 Digital Certificates.

X.509 signature and Verification.

Public-key encryption of AK.

RSA Cryptography.

RSA Usage in IEEE 802.16 standard.

References.

For more information visit http://www.researchandmarkets.com/reports/c64520