Download
1 / 19
200 likes | 215 Vues
Proposal to use KPS to Enhance WLAN Security. Shinicihro Watanabe, Yutaku Kuchiki, Kazuaki Naito, Masayuki Ikeda Seiko Epson Corporation March 2000. Introduction. Problems of the current WEP KPS Implementation SEC9H: MAC Chip with KPS Patents Conclusion.
E N D
Proposal to use KPS to Enhance WLAN Security Shinicihro Watanabe, Yutaku Kuchiki, Kazuaki Naito, Masayuki Ikeda Seiko Epson Corporation March 2000 S. Watanabe Seiko Epson Corp.
Introduction • Problems of the current WEP • KPS • Implementation • SEC9H: MAC Chip with KPS • Patents • Conclusion S. Watanabe Seiko Epson Corp.
Problems of the Current Standard • Not specified how to control keys • Difficult to exchange shared keys • Secret data is stored in MIB, which is accessible by external users • Difficult to authenticate • Practically impossible to deliver unique keys to every STA pair in a system S. Watanabe Seiko Epson Corp.
Default Key and Key Mapping Default Key System (MIB-aWEPDefaultKeys) • Mapped Key System • (MIB-aWEPKeyMappings) S. Watanabe Seiko Epson Corp.
Problems of the Current Standard • Not specified how to control keys • Difficult to exchange shared keys • Secret data is stored in MIB, which is accessible by external users • Difficult to authenticate • Practically impossible to deliver unique keys to every STA pair in a system Key Distribution Problem S. Watanabe Seiko Epson Corp.
Public-ID A (MAC Address A) Private-ID A Public-ID B (MAC Address B) Private-ID B Public-ID n (MAC Address n) Private-ID n Basic Flow of the KPS Communications 1. Setting a Private-ID 2. KPS Communications KPS Center System-ID (Procedure necessary only once) S. Watanabe Seiko Epson Corp.
Sender A (MAC Address A) Receiver B (MAC Address B) KPSCenter System-ID Public-ID B (MAC Address B) Public-ID A (MAC Address A) Public-ID A (MAC Address A) Private-ID A Public-ID B (MAC Address B) KPS Module Private-ID A KPS Module Private-ID B Private-ID B KAB KBA Basic Flow of the KPS Communications 1. Setting a Private-ID 2. KPS Communications KAB=KBA (Procedure necessary only once) (Generated Key is without connections) S. Watanabe Seiko Epson Corp.
Principle behind KPS Communications KAB = KBA KAB ≠ KCA for any of C; C ≠ B KBA ≠ KCB for any of C; C ≠ A S. Watanabe Seiko Epson Corp.
HUB NIC4 (MAC0) (MAC4) Ethernet LAN (Switch) Switch NIC4 (MAC0) (MAC4) NIC1 NIC2 NIC3 (MAC1) (MAC2) (MAC3) NIC : Network Interface Card : NIC4 Network Interface Card NIC1 NIC2 NIC3 ( Attacker ) (MAC1) (MAC2) (MAC3) : Packet (HUB ⇒ MAC1) KPS Security (1) • HUB vs Switch Ethernet LAN (HUB) S. Watanabe Seiko Epson Corp.
KPS Security (2) • WEP vs WEP + KPS 802.11WEP Only 802.11WEP + KPS S. Watanabe Seiko Epson Corp.
Authentication Masquerade S. Watanabe Seiko Epson Corp.
Implementing KPS to 802.11 MAC • Parameters • Public-ID: Apply the MAC address as it is. 48 bits length. • System-ID: 1024 x 1024 x 40 bits. • Conspiracy number 1024 • Private-ID size: 5 k bytes • Shared key length: 40 bit (based on current standard) • MIB privacy group • AKPS Invoked:0: KPS is off (default) 1: KPS is on S. Watanabe Seiko Epson Corp.
KPS Algorithm Output RC4 Key (40bit) Public-ID(48bit) RC4 Key RC4 Private-ID PRNG RC4 One-Way PRNG Fixed Data(Secret) XOR Scheme 1 (40bit) Effective-ID(1024bit) Default Key #0 Shared Key(40bit) XOR (40bit) RC4 KPS Private-ID PRNG Algorithm (1024 40) × × 1 40bit 1024 × 0 40bit Input × 1 40bit Output (Effective-ID) × 1 40bit RC4 10110 10 40bit ・・・・・・・・・・・・・ × XOR 0 40bit One-Way ・ ・ PRNG 1024bit Scheme 2 ・ ・ × 1 40bit × 0 40bit KPS Module • KPS Algorithm • Private-ID • One-Way Schemes S. Watanabe Seiko Epson Corp.
Who should administrate the KPS Center • Private system: Each vendor can create System-IDs independently • Multi-vendor system: • Idea 1: A public organization creates and strictly controls a System-ID. The public organization duplicates and ciphers the System-ID and delivers it with a KPS Center tool to vendors. • Idea 2: A public organization creates and strictly controls a System-ID. It issues Private-IDs in response to demands from venders. The organization should inspect whether the demands are from the right vendors.We propose that 802.11 controls the KPS Center S. Watanabe Seiko Epson Corp.
SEC9H: MAC chip with KPS SEC9H: MAC controller with KPS Evaluation board GBT9: Hi-datarate BB processor S. Watanabe Seiko Epson Corp.
SEC9H: MAC controller with KPS • Target baseband processor • HFA3860B (Intersil) • GBT9 (Seiko Epson Corporation) • IEEE802.11b protocol compliant • Hi-data rate, • 5.5 M/11 Mbps with HFA3860B • 3.7 M/5.5 M / 7.3 M / 9.2 M / 11.0 M / 12.8 Mbps with GBT9 • KPS: Automatic shared key generation • Dual host bus: ISA and PCMCIA • Low power consumption S. Watanabe Seiko Epson Corp.
About KPS • Inventor • Prof. Tsutomu Matsumoto, Yokohama National University • Prof. Hideki Imai, Tokyo University • Patents • Japan: • US: • Patent Number 5,016,276 (May 14, 1991) • Europe: • Patent Number 0 277 247 (04.05. 1994) Cipher Key Sharing Method Patent Number: 1984390, October 25, 1995 Owner of the patent: Advance Co., Ltd. S. Watanabe Seiko Epson Corp.
Conclusion • Use KPS to enhance WLAN security.KPS solves the Key Distribution Problem. • Seiko Epson can provide evaluation chips and tools. • KPS Features: • It distributes unique shared keys to every sender/receiver pairs without exchanging any secret data • It performs authentication inherently, with no additional schemes • It releases the system administrator from controlling encryption keys • It does not require changing current security protocols to implement KPS • It is easy to use and implement S. Watanabe Seiko Epson Corp.
End KPS Robust cryptography S. Watanabe Seiko Epson Corp.
