SDR Radio-Specific S/W in MExE by 7t2cv1NQ

VIEWS: 5 PAGES: 5

									     Figure 1: SDR / MExE Download Framework

  Repository              Download + Verification
  (Java sandbox)              Using MExE               Network
                   MExE Applet                MExE

                                    •SDR Forum
“New radio          Header:         •Manufacturer
S/W arrived”       •Capability
                   •Regulatory
         SDR                        •Regulator
                                                      Server
         Framework                  •Manufacturer              Gateway


       Additional Certification     How to install   Handset
                                                     Manufacturer
                                                     Specific
                      INSTALL (via API/VMI)
         Figure 2: Updating Security Capabilities in a Terminal

                                                                                                                    A                          B                                     C                                       D
                           Download Process                                                                                            Download Process
             User            Management                       Authentication                   Network              User                                                       Authentication                             Network
                                                                                                                                         Management

Initiation                                                  Services Offer

                     Initiation
                                                                                                           Download
                                                           Download Request                                Software
                                                                                                                                  Status                                                 Data

                                                             Source Authentication                                                Status                                                 Data

                                      Source Authentication Validation                                                                              Integrity Test
Mutual                                Request
                                                                                                                                                                                                Integrity Test Results
Authentication
                                      Source Authentication Validation
                                      Response                                                                                                                                                  Integrity Test Response
                                                                                                                                                     Software Module Authentication
                                                                                                                                                     Request
                                                       Terminal Authentication                                                                       Software Module Authentication
                                                                                                                                  Status             Response

Capability                                                  Request Capability Data                        Installation                                      Prepare Installation
Exchange                                                                                                                                                     of the Software
                                                       Terminal Capability Response                                                                          Downloaded Module
                                                                                           Software                               Status
                                                                                            module                                                                Software Downloaded Module Installation Status
                                                         Download Channel Opening          selection
                                                 (QoS associated with module to be downloaded)                                                                         Billing Licensing Negotiation Request
                                                                                                                          Accept Billing Licensing Request
                                                                                                                              Negotiation ?
Download
Acceptance
                     Accept ?                              Download Installation Profile                                          Billing                              Billing Licensing Negotiation Acceptance
                                                                                                                                Licensing
                    Acceptance                                                                                                 Negotiation                        Software Downloaded Module Key License
                                                           Download Installation Response                                          User
                                                                                                                               Acceptance          Software Downloaded
                                                           Download Installation Parameters                                                        Module + Key
                      Status                                                                                                                                      Usable Software
                                                                                                                                                              Downloaded Module
                                                                                                                                                           Software Downloaded
                                                                                                                                  Status                   Module Installation

             A                    B                                C                                   D   In-situ test                                       Test of the
                                                                                                                                                              Terminal
                                                                                                                                  Status
                                                                                                                                                                        Terminal    Tests Results

                                                                                                                                                                     Signal Successful    Installation


                                                                                                                                                             Terminal
                                                                                                                                  Status                     Configuration Update
  Figure 3: The Public Key Infrastructure (PKI)

• PKI is generally viewed as an essential technology for E-business. It
  should be amenable to wireless as well as wired transactions

• PKI “signs and seals” an electronic transaction: identifies, authenticates
  the parties involved, and protects their information from compromise

• Each PKI user has a registered identity stored in a digital certificate

• PKI provides i) confidentiality through encryption; ii) authentication,
  data integrity & nonrepudiation through digital certificate signatures

• PKI acts in a consistent manner across a wide variety of applications
                Figure 4: Elements of a PKI

•   Manages key and certificate lifecycle on behalf of users and applications
•   Partial list of PKI functions:
     – Certification Authority (CA, issues digital certificates)
     – Certificate repository and revocation system
     – Key management (issuance, update, backup, recovery, etc.)
     – Cross-certification (extend 3rd-party trust between CA domains)
     – Support for legacy applications
•   All users have registered identity thru a PK certificate (via CA)
•   User’s corresponding secret key must be protected in the terminal (e.g.,
    tamper-proof SmartCard or encrypted storage)
•   Standard protocol for application interface is PKI X.509
 Figure 5: Extended Wireless Security Framework

                                     Administrator                    International
                                   (MoU,treaty body                    certification
Security                                 etc.                            agency
Entities

 Root netwk      Root            Root          Root             National        National
  operator     manufactr         TTP1          TTP2            authority 1     authority 2
 certificate   certificate     certificate   certificate       certificate     certificate



                                                      Regulator 1        Regulator 2
                                                       certificate        certificate
                                     Financial
  Service
                                    institution
  provider       Software                              Test house 1           Test house 2
                                    certificate
 certificate      supplier                              certificate            certificate
                 certificate


                                                                 Manufacturers

								
To top