|
|
 |
|
|
IP Multimedia Subsystem (IMS) security analysis-IMS, the whole IP network - Communications Industry by li miss
|
|
|
IP Multimedia Subsystem (IMS) security analysis-IMS, the whole IP network - Communications Industry by LI MISS
|
|
| Article Posted: 01/06/2011 |
| Article Views: 159 |
| Articles Written: 1636 - MORE ARTICLES FROM THIS AUTHOR |
| Word Count: 1101 |
| Article Votes: 0 |
|
IP Multimedia Subsystem (IMS) security analysis-IMS, the whole IP network - Communications Industry |
|
|
|
|
|
Business,Business News,Business Opportunities
|
|
Abstract The article first reviews the 3G IP Multimedia Subsystem PP proposed (IMS) system concept of the background and purpose of the traditional telecommunications network technology by comparison, analysis of the IMS system, the existence of many security problems, security system and then focuses on the framework of IMS, IMS access security and network security, and their corresponding security measures, key technologies are discussed in detail, the last of the IMS security solution to make summary.
IP Multimedia Subsystem (IMS) is 3G PP in the R5 specification with the aim of establishing an independent access, based on open SIP / IP protocol and support for multiple types of multimedia services platform to provide rich business. It Cellular Communicate Network technology, the traditional fixed network and internet technology combine for future multimedia applications based on all IP networks provide a common business intelligence platform for future network development process of network convergence to provide a technical basis. IMS makes one of the many features of the industry by the proposed became the focus of study is generally recognized by the industry to solve the ideal solution for the future of network convergence and direction, but how IMS will provide a unified service platform for full operations, IMS standardization and security issues still need further study and discussion.
1, IMS security analysis of existing
Traditional telecommunications network using a separate signaling network to complete the call setup, routing and control the process, signaling network security to ensure network security. And transmission using time division multiplexing (TDM) leased line, user-oriented connection between the channel Communicate Prevent end users from a variety of eavesdropping and other attacks.
And IMS networks connected to the Internet, based on IP protocols and open network architecture can be voice, data, multimedia and many different businesses, through the use of a variety of access methods to share business platform, to increase the network flexibility and interoperability between terminals and different operators can quickly develop and provide various services. As the IMS is based on IP basis, so IMS security requirements than the traditional network operators in the independent operators of multi-higher, regardless of access by mobile or fixed access, IMS security issues can not be ignored.
IMS security threats come from several areas: unauthorized access to sensitive data in order to undermine the confidentiality; unauthorized tampering in order to undermine the integrity of sensitive data; interference or abuse of network operations systems lead to denial of service or lower availability; user or network denied the completed operation; unauthorized access to services, etc. [1]. Mainly related to the IMS access security (3GPPTS33.203), including user and network authentication and protection of IMS services between terminals and networks; and IMS network security (3GPPTS33.210) [2], dealing with the same or different operators operators, business protection between network nodes. In addition, users also Terminal Equipment And the Universal Integrated Circuit Card / IP multimedia services identity module (UICC / ISIM) security threat.
2, IMS security architecture IMS system security is the primary response to IP Security Protocol (IPSec), provide access through IPSec security, use IPSec to complete the network and the network entities within the Department of domains of security. 3GPPIMS essentially superimposed on the original packet domain core network, network, on the PS domain is not much dependence, in the PS domain, service delivery needs of mobile devices and mobile networks to build a security alliance (SA) before completed. For the IMS system, IMS multimedia users and networks need to first create a separate SA before it can access multimedia services.
3GPP terminals is the core of Universal Integrated Circuit Card (UICC), which contains more than logic, mainly Subscriber Identity Module (SIM), UMTS user services identity module (USIM) and ISIM. ISIM IMS system includes user terminals operate in the system a series of parameters (such as identification, authorization and end-user set data, etc.), and store the shared key and the corresponding AKA (Authenticationand KeyAgreement) algorithm. Among them, stored in the user side of the UICC IMS authentication keys and certification functions can be independent of the PS domain authentication keys and authentication, and the PS can also use the same authentication keys and authentication. IMS security system shown in Figure 1.
Figure 1 shows the five different security alliance to meet the needs of the different IMS systems, respectively , , , , to be identified.
IMS networks to provide end-users and the mutual authentication.
P-CSCF in the UE and to provide a secure link between the (Link) and a Security Alliance (SA), to protect the Gm interface, while providing data origin authentication.
in the network security domain for the Cx interface.
SIP between different network nodes to provide security and the security association apply only to Proxy Call Session Control Function (P-CSCF) in the visited network (VN) time.
SIP within the same network node to provide security and the security alliance also applies to P-CSCF in home network (HN) time.
Addition to the above interfaces in addition, IMS also exist other interfaces in the picture above is not complete identity out of these interfaces in the security domain or in different security domains. The Interface (Gm interface, in addition to outside) are subject to the protection of IMS network security.
SIP signaling the confidentiality and integrity is provided by way of dancing, which includes a sophisticated security system, requiring each Proxy Decrypt the message. SIP now uses two security protocols: Transport Layer Security protocol (TLS) and IPSec, TLS can achieve authentication, integrity and confidentiality, to use TLS to ensure the safety of the request must use a reliable transport layer protocol, such as the Transmission Control Protocol (TCP ) or Stream Control Transmission Protocol (SCTP); IPSec at the IP layer through the SIP message to provide security to achieve authentication, integrity and confidentiality, it also supports TCP and User Datagram Protocol (UDP). In the IMS core network, via NDS / IP network to complete the SIP signaling protection; the first jump, that is, between the UE and P-CSCF signaling the protection you need additional measurements, in particular in 3GPPTS 33.203 Description.
3, IMS access security
IMS user terminals (UE) need access to the IMS core network through a series of authentication and key agreement process, specifically, UE user sign I am a professional writer from China Bags Wholesale, which contains a great deal of information about lehenga choli , salwar kameez cotton, welcome to visit!
Related Articles -
lehenga choli, salwar kameez cotton,
|
Rate This Article  |
|
|
|
|
|
Do you Agree or Disagree? Have a Comment? POST IT!
| Reader Opinions |
|
|
|
|
|
|
|
|
|
| Author Login |
|
|
 |
Advertiser Login
ADVERTISE HERE NOW!
Limited Time $60 Offer!
90 Days-1.5 Million Views
|
|
GENE MYERS
Author of four books and two screenplays; frequent magazine contributor. I have four other books "in...more
|
|
|
|
|
TIM FAY
After 60-plus years of living, I am just trying to pass down some of the information that I have lea...more
|
|
|
|
|
ADRIAN JOELE
I have been involved in nutrition and weight management for over 12 years and I like to share my kn...more
|
|
|
|
|
LAURA JEEVES
At LeadGenerators, we specialise in content-led Online Marketing Strategies for our clients in the t...more
|
|
|
|
|
STEPHEN BYE
Steve Bye is currently a fiction writer, who published his first novel, ‘Looking Forward Through the...more
|
|
|
|
|
ALEX BELSEY
I am the editor of QUAY Magazine, a B2B publication based in the South West of the UK. I am also the...more
|
|
|
|
|
SUSAN FRIESEN
Located in the lower mainland of B.C., Susan Friesen is a visionary brand strategist, entrepreneur, ...more
|
|
|
|
|
SHALINI MITTAL
A postgraduate in Fashion Technology. Shalini is a writer at heart! Writing for her is an expression...more
|
|
|
|
|
JAMES KENNY
James is a Research Enthusiast that focuses on the understanding of how things work and can be impro...more
|
|
|
|
