1 / 6

Location Services Security Framework Update

This document provides the latest updates on the security framework, specifically regarding key management provisions in (R-)UIM and H-PS. The first draft was distributed a week ago, with a baseline text to be agreed upon in a conference call scheduled in two weeks. TSG-S.WG4 is on track to finalize a stable document by April. Key management utilizes pure TLS-PSK, with provisions for future updates. The document also addresses specific queries for the CSN regarding simultaneous PDE assignments and specifications for UIM.

dalton-gaines
Télécharger la présentation

Location Services Security Framework Update

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Location Services Security Framework Update Phil Hawkes phawkes@qualcomm.com

  2. Document Status • Assigned doc # S.P0110 • First draft distributed a week ago. • Baseline text to be agreed on conference call in 2 weeks. • TSG-S WG4 on schedule to have a stable document by April TSG-X WG2/ TSG-S WG4 joint meeting

  3. Philosophy • Keys provisioned in (R-)UIM and H-PS • All key management occurs in (R-)UIM • Agreed to use pure TLS-PSK • TLS-RSA/DHE-PSK, etc., may be added in the future if deemed necessary. Would only require changes to ME, no ME-UIM interface changes

  4. Questions for CSN • How many simultaneous PDE’s assigned? • We have assumed only one. • Are new spec’s for UIM OK? • We have assumed so. • Is message generation/ message expiry time currently included in SUPL_INIT/ SUPL_END? • Is expiry time currently included in SUPL_RESPONSE?

  5. FYI: TLS-PSK Key Management Computed or Stored in ME Chosen by ME TLS-RSA-PSK EncryptedPreMasterSecret Randomly generated by ME and Server TLS-PSK 0...0 TLS-DHE-PSK Resulting DH key PSK Premaster _secret other_secret = + Initial Client_random, Server_random Master_secret PRF Client_random, Server_random PRF Computed or Stored In UIM session secrets MD5 Handshake_messages PRF SHA-1 Verify_data

More Related