Thread Links | Date Links | ||||
---|---|---|---|---|---|
Thread Prev | Thread Next | Thread Index | Date Prev | Date Next | Date Index |
Dear All:
Here is the meeting minutes of 16j security ad-hoc group on Apr 19th, 2007
Haihong Zheng Nokia haihong.1.zheng@nokia.com
Yousuf Saifullah Nokia Yousuf.Saifullah@nokia.com
cancan huang ZTE chuang@zteusa.com
Sergey Seleznev Samsung s.sergey@samsung.com
Yanling Lu Huawei luyanling@huawei.com
Kanchei(Ken) Loa III loa@nmi.iii.org.tw
Masato Okuda Fijitsu okuda@jp.fujitsu.com
Hang Zhang Nortel hazhang @nortel.com
Sheng Sun Nortel shengs@nortel.com
(Please be advised that I may have missed out some of comments in the minutes, please feel free to add and correct me)
1: #C802.16j-07/274 Security proposal for multi-hop relay system
Presenter : Sergey Seleznev Sumsang
Comments: - This proposal shares the design purposes and some characteristics with #134 (Nokia)
- This proposal has the scope with the relay network. how would it relate to the MS access authentication? (Nortel)
Actions for Authors: Discuss with Nortel about the potential harmonization
2: #C80216j-08_283 Secure extended MAC header II
Presenter: Yousuf Saifullah (Nokia)
Comments: - The counter value added in the header will increase the header size, also it needs synchronization, otherwise, no consistence (Fijitsu/ZTE)
- The A-HCS header is too short to protect the header, needs at 16/32bits (Sumsang)
- The new MAC header type also needs thorough investigation from Ad-hoc group (Nortel)
- The new HCS bits algorithm needs more investigation (Nortel)
Actions for Authors: - Also submit this proposal to PHY/MAC ad-hoc group
- Also investigate the strength of longer HCS protection
1: #C80216j-08_201 Centralized authentication for multi-hop relay system
Presenter : Haihong Zheng (Nokia)
Updates: - RS being transparent to authentication process could lead to expose the MR-BS to the attack (ZTE)
- The MS-CID is also carried over the transparent RS which disallows the aggregation (Nortel)
2 #C80216j-08_188 Shared Management Message in MR system: Format, Transfer and Security for next conference
Presenter: Yanling Lu (Hisilicon)
Comments: - The concern with the two-tier overhead with the addition of the HMAC/CMAC tuple (Nokia)
Actions for authors: Put the application bounds on this proposal
3 #C80216j-08_149 TEK Transfer in Relay Systems (Withdrawed and merged with #098)
Presenter: Masato Okuda(Fijitsu)
4 #C80216j-08_098 Distributed authentication for .16j relay system
Presenter: Sheng Sun (Nortel)
Comments: - The comprise of single RS which is vulnerable to attacks, could break the whole security system within the Relay network (Nokia/Sumsang/ZTE)
- The transfer AK down to RS is not safe as RS (Nokia/Sumsang)
5: #C80216j-08_134 Security Zone Key generation and management for multi-hop relay system
Presenter: Sheng Sun
Comments: - Short of time to discuss in depth, will discuss over the emails
- 2/9 supports Centralized Authentication only
- 1/9 supports Distributed authentication only
- 5/9 supports Both authentication should appear in the security
- 1/9 supports Centralized Authentication but willing to look at other distributed authentication scheme
Chairman's note: Suggest to adopt both authentication schemes which in essense still need improvements , in 16j baseline document so as to reflect majiority opinions since both schemes have strength and limitations in different application scenarios.
Thanks and regards
Robert Sun
Sheng(Robert) Sun
Security Architect,CTO's office
Nortel
ESN: 393-4460