Improved authentication algorithm for UMTS

Authentication process of user in mobile networks is an important issue. Previous standard of telecommunication Global System for Mobile Communication (GSM) has many security weaknesses. Under Third Generation Partnership Project(3GPP), new standard Universal Mobile Telecommunication System is developed. Which removes the security weaknesses of previous standards. However one security loop hole has been revealed in UMTS. It is the sending of International Mobile Subscriber Identity (IMSI) in plain text over the air interface. In this paper we introduce a security algorithm named as Airam, whose name is derived from developers of this algorithm. It resolves the problem of sending IMSI in plain text over the air interface by implementing asymmetric/symmetric cryptography techniques. We have presented simulation results of Airam algorithm that show how effciently Airam algorithm performs the user authentication process and its effectiveness against replay and imposition attacks.

[1]  Lynette I. Millett,et al.  Authentication and Its Privacy Effects , 2003, IEEE Internet Comput..

[2]  Mustafa Al-Fayoumi,et al.  A New Hybrid Approach of Symmetric/Asymmetric Authentication Protocol for Future Mobile Networks , 2007 .

[3]  G.M. Koien,et al.  An introduction to access security in UMTS , 2004, IEEE Wireless Communications.

[4]  Theodore S. Rappaport,et al.  Wireless communications - principles and practice , 1996 .

[5]  N. Rajendran,et al.  Security issues in mobile data networks , 2004, IEEE 60th Vehicular Technology Conference, 2004. VTC2004-Fall. 2004.

[6]  Valtteri Niemi,et al.  UMTS security , 2003 .

[7]  Sándor Imre,et al.  Novel Authentication Algorithm of Future Networks , 2006, International Conference on Networking, International Conference on Systems and International Conference on Mobile Communications and Learning Technologies (ICNICONSMCL'06).

[8]  Rasool Jalili,et al.  Improved User Identity Confidentiality for UMTS Mobile Networks , 2007, Fourth European Conference on Universal Multiservice Networks (ECUMN'07).

[10]  S.M. Siddique,et al.  Notice of Violation of IEEE Publication PrinciplesGSM Security Issues and Challenges , 2006, Seventh ACIS International Conference on Software Engineering, Artificial Intelligence, Networking, and Parallel/Distributed Computing (SNPD'06).

[11]  Geir M. Køien Privacy enhanced cellular access security , 2005, WiSe '05.

[12]  Muzammil Khan,et al.  Vulnerabilities of UMTS Access Domain Security Architecture , 2008, 2008 Ninth ACIS International Conference on Software Engineering, Artificial Intelligence, Networking, and Parallel/Distributed Computing.

[13]  Sufian Yousef,et al.  A New Hybrid Approach of Symmetric/Asymmetric Authentication Protocol for Future Mobile Networks , 2007, Third IEEE International Conference on Wireless and Mobile Computing, Networking and Communications (WiMob 2007).