IEEE 802.11-17/1373r1 PHY Security Overview

Slide Note
Embed
Share

This document outlines the security requirements for the IEEE 802.11-17/1373r1 protocol, focusing on authentication, encryption algorithms, key management, and message integrity in both associated and unassociated states. It also addresses securing against adversaries with specified response times, focusing on Type A and Type B adversaries with varying capabilities. The proposed FRD text highlights the need for secured modes to protect against different adversary types across various wireless operations.

darianysf
darianysf Follow

Uploaded on Sep 06, 2024 | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. Download presentation by click this link. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

E N D

Presentation Transcript

  1. doc.: IEEE 802.11-17/1373r1 PHY Security FRD and SRD Text Date: 2017-09-06 Authors: Name SK Yong Affiliations Address Apple Inc. Phone email skyong@apple.com mingguang_xu@apple.com Mingguang Xu Apple Inc. Submission Slide 1 SK Yong and Mingguang Xu, Apple

  2. doc.: IEEE 802.11-17/1373r1 FRD (424r6) Recap 2.1.6 Security and Privacy TGaz R35 The 11az positioning protocol shall have at least one secured mode that meets all of the following security requirements in the associated state:[Ref-11] a. Authentication - Mutual authentication of initiator and responder. b. Encryption Algorithm - The cryptographic cipher combined with various methods for encrypting the message* used in 11az-positing protocol. c. Key Management - Create, distribute and maintain the keys. d. Message Integrity - Ensures that the encrypted message* has not been tampered with. (* Message refers to frame and/or field(s) within the frame.) TGaz R36 The 11az positioning protocol shall have at least one secured mode that meets all of the following security requirements in the unassociated state:[Ref-11] a. Authentication - Mutual authentication of initiator and responder (provided there is a prior security context established). b. Encryption Algorithm - The cryptographic cipher combined with various methods for encrypting the message* used in 11az-positing protocol. c. Key Management - Create, distribute and maintain the keys. d. Message Integrity - Ensures that the encrypted message* has not been tampered with. (* Message refers to frame and/or field(s) within the frame.) Submission Slide 2 SK Yong and Mingguang Xu, Apple

  3. doc.: IEEE 802.11-17/1373r1 FRD (424r6) Recap Cont d 2.1.6 Security and Privacy TGaz R37 The 11az protocol shall have at least one secured mode that protects against adversaries with capabilities as specified by R1 to R4 below and with the following response time.[Ref-11] a. Type A Adversary is assumed to have response time to standard-specified OTA events or scenario dependent fields of 1 msec or longer. b. Type B Adversary is assumed to have response time to known OTA events or known pre-defined fields of 1usec or longer (up to 1msec). Note: the STA capabilities is TBD (for both types of adversaries). An adversary may have at least one or more of the following capabilities and limitations: [R1] An adversary that uses commercial NIC/Sniffer; [R2] At most, the adversary may deploy/use two non-co-located Tx and Rx chains; [R3] The adversary shall be TOA and TOD capable on all received/transmitted frames; [R4] The adversary shall be able to compose and transmit any 802.11 packet or part of it. Submission Slide 3 SK Yong and Mingguang Xu, Apple

  4. doc.: IEEE 802.11-17/1373r1 Proposed FRD Text TGaz R37: The 11az protocol shall have at least one secured mode that protects against adversaries with capabilities as specified by R1 to R4 below and with the following response time.[Ref-11] a. Type A Adversary (targeting VHT/HE/DMG/EDMG operation) is assumed to have response time to standard-specified OTA events or scenario dependent fields of 1 msec or longer. b. VHT/HE Type B Adversary is assumed to have response time to known OTA events or known pre-defined fields of 1usec or longer (up to 1msec). c. DMG/EDMG Type B Adversary is assumed to have response time to known OTA events or known pre-defined fields of 10nsec or longer (up to 1msec). Submission Slide 4 SK Yong and Mingguang Xu, Apple

  5. doc.: IEEE 802.11-17/1373r1 SFD (0462r5) Recap 6. Security [May 2017] (1) The security setup to be negotiated in a separate optional step prior to the 802.11az protocol parameter negotiation a) Note that in lieu of security negotiation, keys derived using an out-of- band mechanism may be used to secure the exchange between the initiator and the responder [May 2017] (2) The REVmc, HEz, and VHTz FTM modes, the fields over which range measurements are performed shall be protected against a Type B adversary attack [May 2017] Submission Slide 5 SK Yong and Mingguang Xu, Apple

  6. doc.: IEEE 802.11-17/1373r1 Proposed SFD Text (2)The REVmc, HEz and VHTz FTM modes, the fields over which range measurements are performed shall be protected against a VHT/HE Type B adversary attack (TGaz R37) (3)The DMGz and EDMGz FTM modes, the fields over which range measurements are performed shall be protected against a DMG/EDMG Type B adversary attack (TGaz R37) (4) In the PHY Security mode (VHTz, HEz, DMGz, EDMGz), the field used for channel/ToA measurement shall not include any form of repetition in time domain or structure that is predictable Submission Slide 6 SK Yong and Mingguang Xu, Apple

  7. doc.: IEEE 802.11-17/1373r1 Straw Poll 1 Do you support to add the proposed text as shown in slide 4 to the FRD? Result: Y: 14 N: 1 A: 4 Submission Slide 7 SK Yong and Mingguang Xu, Apple

  8. doc.: IEEE 802.11-17/1373r1 Straw Poll 2 Do you support to add the proposed text as shown in slide 6 to the SFD? Result: Y: 11 N: 1 A:7 Submission Slide 8 SK Yong and Mingguang Xu, Apple

  9. doc.: IEEE 802.11-17/1373r1 Motion Move to incorporate text as shown in slide 4 to the FRD Result: Y: N: A: Submission Slide 9 SK Yong and Mingguang Xu, Apple

  10. doc.: IEEE 802.11-17/1373r1 Motion Move to incorporate text as shown in slide 6 to the SFD Result: Y: N: A: Submission Slide 10 SK Yong and Mingguang Xu, Apple

Related


Ethernet PHY Registers Tool Operation

Ethernet PHY Registers Tool Operation

berkshire_r
IEEE 802.11-19-0202/r1 TGbd Agreed Terminology and Requirements

IEEE 802.11-19-0202/r1 TGbd Agreed Terminology and Requirements

valerio
IEEE 802.11-20/0095 PHY-Related Agreements for SST

IEEE 802.11-20/0095 PHY-Related Agreements for SST

alexandru
Proposal for Integration of PHY Layer Enhancement in IEEE 802.11 Standards

Proposal for Integration of PHY Layer Enhancement in IEEE 802.11 Standards

bengston_j
Proposed Approach for MAC Address Assignment in IEEE 802.11

Proposed Approach for MAC Address Assignment in IEEE 802.11

adlai
Suitability of IEEE 802.11ah for LPWAN Applications Analysis

Suitability of IEEE 802.11ah for LPWAN Applications Analysis

milia
Discussion on IEEE 802.11be MLD Architecture Alignment

Discussion on IEEE 802.11be MLD Architecture Alignment

jannat
Considerations on PHY for 60 GHz in IEEE 802.11-22/1865r0 Document

Considerations on PHY for 60 GHz in IEEE 802.11-22/1865r0 Document

calanthe
IEEE 802.11-21/0012r1 Considerations on Open Issues in PHY Requirements

IEEE 802.11-21/0012r1 Considerations on Open Issues in PHY Requirements

ianthe
Evaluation Results on Payload of Pulsed Modulation PHY for IEEE 802.15-18-0171-02-0013

Evaluation Results on Payload of Pulsed Modulation PHY for IEEE 802.15-18-0171-02-0013

gcas
IEEE 802.11-22/0059r0 Submission for Next Generation MAC/PHY Standards

IEEE 802.11-22/0059r0 Submission for Next Generation MAC/PHY Standards

higa_ya
Relevance of Lean PHY for EHT in 6 GHz

Relevance of Lean PHY for EHT in 6 GHz

hjod
IEEE-SA Fellowship Program at IEEE 802 Plenary March 2019 Schedule

IEEE-SA Fellowship Program at IEEE 802 Plenary March 2019 Schedule

jshah
IEEE 802.11-20/0021-00 Priority Access Support for NS/EP Services Overview

IEEE 802.11-20/0021-00 Priority Access Support for NS/EP Services Overview

finlo
IEEE 802.11be MLD Architecture Discussion

IEEE 802.11be MLD Architecture Discussion

aylin
IEEE 802.1CQ: Address Assignment and Validation Protocols

IEEE 802.1CQ: Address Assignment and Validation Protocols

coia227
IEEE Std. 802.11-22/1017r0 Overview and Architecture Presentation

IEEE Std. 802.11-22/1017r0 Overview and Architecture Presentation

jewel
Evolution of Standards: IEEE 802.11 and 802.1D Relationship

Evolution of Standards: IEEE 802.11 and 802.1D Relationship

amethyst
Simulation Results for LC-Optimized PHY Proposal in July 2019

Simulation Results for LC-Optimized PHY Proposal in July 2019

cout_an
Understanding JESD204B Physical Layer (PHY) in High-Speed Serial Interfaces

Understanding JESD204B Physical Layer (PHY) in High-Speed Serial Interfaces

cab_ov
IEEE 802.11-23/2092r2 AIML Report Summary

IEEE 802.11-23/2092r2 AIML Report Summary

eudora
IEEE 802.11-23-1689r1 Vice Chair Report - November 2023 Plenary Session

IEEE 802.11-23-1689r1 Vice Chair Report - November 2023 Plenary Session

tina
IEEE 802 Viewpoints on WRC-23 Agenda Items

IEEE 802 Viewpoints on WRC-23 Agenda Items

chtz996
IEEE-SA Fellowship Program at IEEE 802 Plenary March 2018

IEEE-SA Fellowship Program at IEEE 802 Plenary March 2018

wale

More Related Content