Answered step by step
Verified Expert Solution
Link Copied!

Question

1 Approved Answer

5. In a mobile roaming system, there are three entities: a mobile user U, its home server H, and a foreign server V. The mobile

image text in transcribed

5. In a mobile roaming system, there are three entities: a mobile user U, its home server H, and a foreign server V. The mobile user U, who is subscribed to the home server H, is currently in a foreign network administered by the foreign server V. There is a direct link between U and V, and another direct link between V and H. However, there is no direct link between U and H. In order to obtain the services provided by V, U must be authenticated by V (possibly with the help from H). 1 a. Suppose that the mobile user U shares a symmetric-key Kuh with its home server H. The home server H and the foreign server V also have public keys PKH and PKv that are certified by a trusted CA. You task is to design a secure authentication and key establishment protocol which can satisfy the following security requirements. User authentication: the foreign server must be sure that U is a legitimate subscriber of H b. Server authentication: the user must be sure that V is indeed the real foreign server Secure key agreement: U and V will establish a fresh session key at the end of the protocol. The session key can only be computed by U and V (i.e., H cannot derive the session key). c. d. Anonymity & unlinkability: Besides the user and the home server, no one including the foreign server can tell the real identity of the user (i.e., the foreign server V only knows that U is a valid user of H, but does not know U's real identity) or link two sessions belonging to the same user. You can assume that all the entities (H, V, and U) can perform public key operations. However, only H and V have certified public keys. Describe each step of your protocol clearly and then provide justifications for each of the security requirements given above. 5. In a mobile roaming system, there are three entities: a mobile user U, its home server H, and a foreign server V. The mobile user U, who is subscribed to the home server H, is currently in a foreign network administered by the foreign server V. There is a direct link between U and V, and another direct link between V and H. However, there is no direct link between U and H. In order to obtain the services provided by V, U must be authenticated by V (possibly with the help from H). 1 a. Suppose that the mobile user U shares a symmetric-key Kuh with its home server H. The home server H and the foreign server V also have public keys PKH and PKv that are certified by a trusted CA. You task is to design a secure authentication and key establishment protocol which can satisfy the following security requirements. User authentication: the foreign server must be sure that U is a legitimate subscriber of H b. Server authentication: the user must be sure that V is indeed the real foreign server Secure key agreement: U and V will establish a fresh session key at the end of the protocol. The session key can only be computed by U and V (i.e., H cannot derive the session key). c. d. Anonymity & unlinkability: Besides the user and the home server, no one including the foreign server can tell the real identity of the user (i.e., the foreign server V only knows that U is a valid user of H, but does not know U's real identity) or link two sessions belonging to the same user. You can assume that all the entities (H, V, and U) can perform public key operations. However, only H and V have certified public keys. Describe each step of your protocol clearly and then provide justifications for each of the security requirements given above

Step by Step Solution

There are 3 Steps involved in it

Step: 1

blur-text-image

Get Instant Access to Expert-Tailored Solutions

See step-by-step solutions with expert insights and AI powered tools for academic success

Step: 2

blur-text-image

Step: 3

blur-text-image

Ace Your Homework with AI

Get the answers you need in no time with our AI-driven, step-by-step assistance

Get Started

Recommended Textbook for

Excel As Your Database

Authors: Paul Cornell

1st Edition

1590597516, 978-1590597514

More Books

Students also viewed these Databases questions

Question

Explain the steps involved in training programmes.

Answered: 1 week ago

Question

What are the need and importance of training ?

Answered: 1 week ago