21-07-0344-00-0000 1

IEEE 802.21 MEDIA INDEPENDENT HANDOVER

DCN: 21-07-0344-00-0000

Title: Security SG Report

Date Submitted: September 20, 2007

Presented at IEEE 802.21 session #22 in Hawaii

Authors or Source(s):

 Yoshihiro Ohba

Abstract: Security SG Report of Session #22

21-07-0344-00-0000 2

IEEE 802.21 presentation release statementsThis document has been prepared to assist the IEEE 802.21 Working Group. It is

offered as a basis for discussion and is not binding on the contributing individual(s) or organization(s). The material in this document is subject to change in form and content after further study. The contributor(s) reserve(s) the right to add, amend or withdraw material contained herein.

The contributor grants a free, irrevocable license to the IEEE to incorporate material contained in this contribution, and any modifications thereof, in the creation of an IEEE Standards publication; to copyright in the IEEE’s name any IEEE Standards publication even though it may include portions of this contribution; and at the IEEE’s sole discretion to permit others to reproduce in whole or in part the resulting IEEE Standards publication. The contributor also acknowledges and accepts that this contribution may be made public by IEEE 802.21.

The contributor is familiar with IEEE patent policy, as outlined in Section 6.3 of the IEEE-SA Standards Board Operations Manual <http://standards.ieee.org/guides/opman/sect6.html#6.3> and in Understanding Patent Issues During IEEE Standards Development http://standards.ieee.org/board/pat/guide.html> 

IEEE 802.21 presentation release statementsThis document has been prepared to assist the IEEE 802.21 Working Group. It is

offered as a basis for discussion and is not binding on the contributing individual(s) or organization(s). The material in this document is subject to change in form and content after further study. The contributor(s) reserve(s) the right to add, amend or withdraw material contained herein.

The contributor grants a free, irrevocable license to the IEEE to incorporate material contained in this contribution, and any modifications thereof, in the creation of an IEEE Standards publication; to copyright in the IEEE’s name any IEEE Standards publication even though it may include portions of this contribution; and at the IEEE’s sole discretion to permit others to reproduce in whole or in part the resulting IEEE Standards publication. The contributor also acknowledges and accepts that this contribution may be made public by IEEE 802.21.

The contributor is familiar with IEEE patent policy, as stated in Section 6 of the IEEE-SA Standards Board bylaws <http://standards.ieee.org/guides/bylaws/sect6-7.html#6> and in Understanding Patent Issues During IEEE Standards Development http://standards.ieee.org/board/pat/faq.pdf> 

21-07-0344-00-0000 3

Outlines• Three meeting slots: Sep. 17 (Mon) PM2, Sep. 19 (Wed) PM1 and

PM2

• Officers• Chair Election: A SG Roll Call vote was taken

• Voting result: Yoshihiro Ohba:36, Srinivas Sreemanthula:15, Clint Chaplin:6• The election result was affirmed by the WG unanimous

• Editor: Marc Meylemans (appointed by Chair)• Looking for Secretary

• 7 technical contributions, all falling within the two problems:• Problem 1: Security Signaling Optimization during Handover• Problem 2: MIH-level Security Mechanism

• Agreement on Table of Contents of TR (Technical Report) document

• Agreement on Milestones

21-07-0344-00-0000 4

Problem 1: Security Signaling Optimization during Handover

• The purpose is to minimize handover signaling latency related to network access authentication and key management

• Support for inter-technology handover and inter-domain handover

• Three types of handovers in terms of security signaling: • Authentication-based handovers• Key Hierarchy based handovers• Ticket-based handovers

• Clear work separation from IETF HOKEY WG is needed

21-07-0344-00-0000 5

Problem 2: MIH-Level Security Mechanism

• The purpose is to define a mechanism to secure MIH protocol signaling within MIH protocol in order to eventually realize flexible access control for MIH services in a secure manner

• One typical use case is to provide different pieces of information on neighboring networks depending on the subscription policies of the user

• All MIH Services (i.e., Event Service, Command Service and Information Service) are part of the Problem

21-07-0344-00-0000 6

Summary on the Technical Contributions

• http://www.ieee802.org/21/doctree/Security_SG/21-07-0297-02-0000-MIH%20security%20approaches.ppt

• Detailed explanation on the two Problems

• http://www.ieee802.org/21/doctree/Security_SG/21-07-0291-00-0000-hokey-preauth-ps.ppt• Explanation on IETF HOKEY EAP pre-authentication problem statement draft

• http://www.ieee802.org/21/doctree/Security_SG/21-07-0301-00-0000-Security_Architecture.ppt• Focused on authentication-based handovers for Problem 1• Mapping to existing 802.21 communication model is described • Needs study on technical feasibility study on non-EAP authentication• Needs study on the potential impact on existing link-layer technologies

• http://www.ieee802.org/21/doctree/Security_SG/21-07-0299-00-0000-Security-SG-Scenarios.ppt• One Use Case for utilizing existing SA across multiple PoAs for Problem 1• One Use Case relating to Multi-Radio Power Management work is identified for Problem 2

• http://www.ieee802.org/21/doctree/Security_SG/21-07-0299-00-0000-Fast_re-Authentication_Protocol.ppt

• Proposal on ticket-based handovers for inter-domain handovers for Problem 1

• http://www.ieee802.org/21/doctree/Security_SG/21-07-0310-00-0000-MIH-Security-Options.ppt• Solid Use Cases on Problem 2• Some Use Case requires server-only authentication while others do mutual authentication• Some Use Case is tightly coupled with network access authentication while others are independent of

network access authentication

• http://www.ieee802.org/21/doctree/Security_SG/21-07-0302-01-0000-MIH_Security_Technical_Requirements_Skeleton.doc

• Agreement on Table of Contents of TR• Agreement on the need for SG agreement on Use Cases for any contribution to get included in TR

21-07-0344-00-0000 7

Security SG Milestones

• November 2007• All contributions intended to be included in the TR need to be submitted before the

meeting• Detailed submission guidelines will be posted to the reflector

• PAR/5C discussion

• January 2008• All major studies are expected to be done• PAR/5C discussion

• February 2008• Submit PAR/5C to IEEE 802 EC to create a TG

• March 2008• Completion of TR• Discuss feedback on PAR/5C