Skip Navigation


The Computer Journal Advance Access originally published online on October 3, 2007
The Computer Journal 2007 50(6):739-757; doi:10.1093/comjnl/bxm029
This Article
Right arrow Full Text
Right arrow Full Text (PDF)
Right arrow All Versions of this Article:
50/6/739    most recent
bxm029v1
Right arrow Alert me when this article is cited
Right arrow Alert me if a correction is posted
Services
Right arrow Email this article to a friend
Right arrow Similar articles in this journal
Right arrow Similar articles in ISI Web of Science
Right arrow Alert me to new issues of the journal
Right arrow Add to My Personal Archive
Right arrow Download to citation manager
Right arrowRequest Permissions
Google Scholar
Right arrow Articles by Huang, C.-M.
Right arrow Articles by Li, J.-W.
Right arrow Search for Related Content
Social Bookmarking
Add to CiteULike   Add to Connotea   Add to Del.icio.us  
What's this?

© The Author 2007. Published by Oxford University Press on behalf of The British Computer Society. All rights reserved. For Permissions, please email: journals.permissions@oxfordjournals.org

Efficient and Provably Secure IP Multimedia Subsystem Authentication for UMTS

Chung-Ming Huang* and Jian-Wei Li

Department of Computer Science and Information Engineering, National Cheng Kung University, Tainan 701, Taiwan, Republic of China

* Corresponding author: huangcm{at}locust.csie.ncku.edu.tw

Received 8 October 2006; revised 13 February 2007

In a Universal Mobile telecommunications system IP multimedia subsystem (IMS), even when an IMS subscriber has passed the packet-switch domain authentication, the IMS subscriber's identity must be confirmed by the IMS authentication again before accessing IMS services. Both the packet-switch domain and the IMS authentications are necessary for the IMS subscriber. This is referred to as a two-pass authentication. However, the packet-switch domain authentication is carried out by the authentication and key agreement (AKA) of the 3rd generation partnership projects (3GPP), called 3GPP AKA; the IMS authentication is carried out by IMS AKA. Since IMS AKA is based on 3GPP AKA, almost all of the operations are the same. It is inefficient because almost all the involved steps in the two-pass authentication are duplicated. Hence, the one-pass authentication was proposed to increase the efficiency of the IMS authentication. Unfortunately, the one-pass authentication has some security problems and loses the mutual AKA capabilities. Therefore, in this paper, an evolutionary IMS AKA (E-IMS AKA) in the IMS authentication is proposed to replace the IMS AKA. E-IMS AKA not only adheres to the security requirements of IMS AKA, but also maintains the efficiency of the one-pass authentication method.

Key Words: 3GPP AKA • authentication • IMS • IMS AKA • SIP


Add to CiteULike CiteULike   Add to Connotea Connotea   Add to Del.icio.us Del.icio.us    What's this?




Disclaimer:
Please note that abstracts for content published before 1996 were created through digital scanning and may therefore not exactly replicate the text of the original print issues. All efforts have been made to ensure accuracy, but the Publisher will not be held responsible for any remaining inaccuracies. If you require any further clarification, please contact our Customer Services Department.