| Wireless LAN is the extension of LAN with the advantage of high data rates and low cost in small areas or hotspots. In contrast,3rd-generation (3G) has the ability to provide voice,data and multimedia services anytime anywhere while it has some shortcomings in that the data rate is limited. Integrating WLAN with3G systems can be mutually complementary. The integration means that WLAN-UE utilizes the accessing service and resource provided by3G systems. As a result, the service and function of3G systems expend into WLAN system and WLAN system is the complement of3G system.The re-authentication accessing in3G-WLAN integrating network is studied in this paper. A new re-authentication protocol named SFR(Secure Fast Re-authentication) is proposed to defense the redirection attack in the existing re-authentication protocol. SFR is the parallel composition of sub-protocol SFR1and SFR2. WLAN-UE and HAAA authenticate mutually in SFR1. WLAN-UE and WLAN-AN authenticate mutually in SFR2.The security anlysis of new protocol utilizes the PCL (Protocol Composition Logic) formalization proof. Firstly we prove the security of sub-protocols of new protocol, and then the security of the whole protocol is proved by parallel composition of sub-protocols. The proof indicates that the new protocol have session authentication and key secrecy. In the end the comparison in security and performance between SFR and existing re-authentication protocol shows that SFR can defense the redirection attack, replay attack and man-in-the-middle attack without increasing the amount of messages. The keys used in SFR are secure and freshness. SFR achieves faster and securely accessing the3G-WLAN architectures. |
PDF Full Text Request