Trust-Based Fast Inter-Domain Secure Handoff over Heterogeneous Wireless Networks

The emerging 3G-WLAN heterogeneous networks are attracting technologies for the next generation wireless communication system. A challenging issue for the technologies is how to reduce the secure handoff delay when users roam across multiple domains. Generally, the re-authentication procedure in a visited domain causes a large delay during a secure handoff that always involves communication with the home domain. Most existing solutions are based on pre-authentication between the different domains, which needs to statically build the roaming agreement between each pair of domains, and can not support dynamic and flexible co-operation for them. In this paper, we propose a fast authentication scheme, named as T-FISH, based on a trust-token mechanism to reduce the secure handoff delay. A trust-token is issued by the home domain or a visited domain, and uses attribute-based encryption (ABE) cryptography to encrypt key information. A mobile user with a trust-token can authenticate directly in a visited domain for fast handoff. The proposed scheme can realize a fine-grained access control and a scalable cooperation business model for wireless service providers (WSPs). To the best of our knowledge, this is the first secure handoff scheme based on the ABE cryptography. The analysis and evaluation show that the proposed scheme can effectively reduce the re-authentication delay without reducing the level of security, and it securely and dynamically extends the cooperation relationship between WSPs.

[1]  Hanno Wirtz,et al.  Collaborative municipal Wi-Fi networks - challenges and opportunities , 2010, 2010 8th IEEE International Conference on Pervasive Computing and Communications Workshops (PERCOM Workshops).

[2]  Levente Buttyán,et al.  Fast certificate-based authentication scheme in multi-operator maintained wireless mesh networks , 2010, Comput. Commun..

[3]  Jiannong Cao,et al.  HAWK: Real-World Implementation of High-Performance Heterogeneous Wireless Network for Internet Access , 2009, 2009 29th IEEE International Conference on Distributed Computing Systems Workshops.

[4]  Wenjing Lou,et al.  FDAC: Toward Fine-Grained Distributed Data Access Control in Wireless Sensor Networks , 2009, IEEE INFOCOM 2009.

[5]  V. Gondi Seamless secured roaming over heterogeneous wireless networks , 2009 .

[6]  James B. D. Joshi,et al.  Inter-domain Authentication for Seamless Roaming in Heterogeneous Wireless Networks , 2008, 2008 IEEE International Conference on Sensor Networks, Ubiquitous, and Trustworthy Computing (sutc 2008).

[7]  Maryna Komarova,et al.  Fast authentication and trust-based access control in heterogeneous wireless networks , 2008 .

[8]  Harsha Sirisena,et al.  Trust-Based Fast Authentication for Multiowner Wireless Networks , 2008, IEEE Transactions on Mobile Computing.

[9]  Henning Schulzrinne,et al.  Seamless proactive handover across heterogeneous access networks , 2007, Wirel. Pers. Commun..

[10]  Aesoon Park,et al.  Analysis of WLAN to UMTS Handover , 2007, 2007 IEEE 66th Vehicular Technology Conference.

[11]  S.G. Polito,et al.  Authentication and Authorization Method in Multi-domain, Multi-provider Networks , 2007, 2007 Next Generation Internet Networks.

[12]  Brent Waters,et al.  Ciphertext-Policy Attribute-Based Encryption , 2007, 2007 IEEE Symposium on Security and Privacy (SP '07).