Evolution of Mobile Networks

Analog Digital Multimedia

Generation 1G 2G 2.5G 3G Type Analog Digital Time 1980s 1990s Standards AMPS, NMT, TACS GSM, CDMA, TDMA

Higher data rate Late 1990s GPRS, EDGE Digital multimedia 2010s UMTS

http://www.mobile3g.com/whatis3g.htm

IMS Overview

IMS (IP Multimedia Subsystem) used by UMTS for providing IP telecommunications Supports voice telephony, live video streaming, instant messaging, etc. Performs signaling operations using the Session Initiation Protocol (SIP) Uses CSCF to provide multimedia services

http://www.alcatel.com/doctypes/articlepaperlibrary/html/ATR2003Q4/ATR200 3Q4A16_EN.jhtml

CSCF Overview

Three types of Call Session Control Functions in IMS:

P-CSCF

(Proxy)

Directs SIP messages from MS to home network.

S-CSCF

(Serving)

Located in home network to provide session control of multimedia services.

I-CSCF

(Interrogating)

Firewall for SIP messages directed toward home network. Selects S-CSCF for the MS.

UMTS Architecture

Goal: Security

GPRS Authentication
User

authentication between MS and SGSN Network authentication between MS and HSS/AuC

IMS Authentication
between

MS and CSCF

USIM Smart Card

Provides mobile station identification Must be present in terminal Contains data about subscriber
IMSI

(International Mobile Station Identifier) for GPRS authentication IMPI (IP Multimedia Private Identity) for IMS authentication Encryption and integrity keys Other: Identities, preferred languages, etc.

GPRS Authentication
MS
Attach Request (IMSI) Send Auth Info Request (IMSI) Send Auth Info Response (AVs) Select authentication vector AV = (RAND, AUTN, XRES, CK, IK) Auth & Ciphering Request (RAND, AUTN) Verify AUTN, Compute RES Auth & Ciphering Response (RES) Compare RES and XRES Attach Accept Compute CK and IK Select CK and IK

SGSN

HSS/AuC

IMS Authentication
MS SGSN
Register (IMPI) Multimedia Auth Request (IMPI) Multimedia Auth Answer (AVs) Select authentication vector AV 401 Unauthorized (RAND, AUTN) Verify AUTN, Compute RES Register (RES) Compare RES and XRES Server Assignment Request Server Assignment Answer 200 OK

HSS/AuC

CSCF

Similarities
GPRS Authentication
SGSN HSS/AuC Send Auth Info Request (IMSI) HSS/Auc SGSN Send Auth Info Response (AVs) SGSN MS Auth & Ciphering Request (RAND, AUTN) MS SGSN Auth & Ciphering Request (RES) SGSN MS Attach Accept

IMS Authentication
CSCF HSS/AuC Multimedia Auth Request (IMPI) HSS/AuC CSCF Multimedia Auth Answer (AVs) CSCF MS 401 Unauthorized (RAND, AUTN) MS CSCF Register (RES) CSCF MS 200 OK

IMS One-Pass Authentication

Make use of GPRS authentication SGSN implements a SIP Application Level Gateway (ALG) Slight modification of SIP message format

IMS Registration: One-Pass Authentication

MS
Register (IMPI)

SGSN
Register (IMPI, IMSI)

HSS/AuC

CSCF

Retrieve IMSI value

Store (IMSI, IMPI) pair

Server Assignment Request (IMPI)

Server Assignment Answer (IMSIHSS(IMPI), User Profile) Check if IMSIHSS(IMPI) = IMSI 200 OK

IMS Authentication
MS SGSN
Register (IMPI) Multimedia Auth Request (IMPI)

HSS/AuC

CSCF

No longer needed!
401 Unauthorized (RAND, AUTH) Verify AUTN, Compute RES Register (RES)

Multimedia Auth Answer (AVs) Select authentication vector AV

Compare RES and XRES Server Assignment Request Server Assignment Answer 200 OK

Glossary

3GPP Third Generation Partnership Project AuC Authentication Center AV Authentication Vector RAND Random number AUTN Authentication Token XRES Signed Response CK Cipher Key IK Integrity Key CSCF Call Session Control Function P-CSCF Proxy-CSCF S-CSCF Service-CSCF I-CSCF Interrogating-CSCF GGSN Gateway GPRS Support Node GPRS General Packet Radio Service

HSS Home Subscriber Server IMPI IP Multimedia Private Identity IMSI International Mobile Station Identifier IMS IP Multimedia Core Network Subsystem PS CN Packet Switched Core Network SGSN Serving GPRS Support Node SIP Session Initiation Protocol UMTS Universal Mobile Telecommunications System USIM - Universal Subscriber Identity Modules UTRAN UMTS Terrestrial Radio Access Network