Method and system for identity authentication and key agreement

Abstract

The invention discloses a method and a system for identity authentication and key agreement. The method comprises the following steps that: an MS chooses a VLR from a plurality of VLRs according to a key broadcast protocol to acquire a public key of the chosen VLR, and then chooses a first random number; the MS sends the public key, an identifier of the HLR, the first random number and an international mobile subscriber identity, namely an IMSI of the MS which is encrypted by the public key of the chosen VLR to the chosen VLR; the chosen VLR uses a private key thereof to decrypt and acquire the IMSI, a shared key of the chosen VLR and an HLR is used for encrypting the decrypted IMSI, the IMSI is sent to the HLR, a second random number is generated, and then the second random number is sent to the MS; and the MS uses a private key thereof, the first random number and the second random number to construct an intermediate variable, and sends the intermediate variable to the chosen VLR, and then the chosen VLR performs authentication on the MS through the intermediate variable.

Description

technical field [0001] The present invention relates to the communication field, and in particular, relates to an identity authentication and key agreement method and system. Background technique [0002] Authentication and Key Agreement (Authentication.and Key Agreement, referred to as AKA) or Extensible Authentication Protocol-AKA (Extensible Authentication Protocol-Authentication.and Key Agreement, referred to as EAP-AKA) is based on a challenge-response mechanism and a symmetric cipher mechanism, which runs on the user identity module, and the AKA-based authentication and key distribution protocol requires the participation of three parties: the mobile station (MobileStation), the visiting office (VLR), and the home office (HLR). The EAP-AKA protocol is initiated by the VLR, and the VLR first sends an EAP request / identity mark message to the MS, and then begins the process of authentication and key distribution. The relevant protocols are described below: [0003] (1) ...

AI Technical Summary

Problems solved by technology

[0018] Although this enhanced identity encryption mechanism strengthens the confidentiality of user identity to a certain extent, this method increases the process of message transmission in the channel, resulting in increased transmission delay; The process of transmitting the plaintext IMSI in the access part becomes the transmission of the plaintext IMSI in the network, which cannot completely solve the problem of IMSI security; moreover, if the temporary identity TMSI of the mobile user is leaked, it is possible to obtain the permanent identity IMSI The mapping relationship between, if the user's specific location information is obtained, then a denial of service attack against a specific user may occur

[0019] (2) In the current authentication and key negotiation process, neither the MS nor the HLR authenticates the VLR

[0031] For the problem of poor confidentiality of IMSI and key transmission in related technologies, no effective solution has been proposed so far

Images