From: Ralph A. S. d. <ra...@sc...> - 2015-01-24 08:16:33
|
It seems possible, at least in the German T-Mobile-Network even oldest SIMs were able to register when they turned on the network. Ralph. -----Original Message----- From: Sipos Csaba [mailto:sip...@kv...] Sent: Friday, January 23, 2015 14:34 To: Tom Tsou Cc: OpenBTS Discuss Subject: Re: [Openbts-discuss] OpenBTS-UMTS autch and ciphering failure Hi Tom, "There is no Milenage support that I'm aware of, so GSM fallback seems to be the way to go." Have you checked the link I sent you in regards of OpenLTE? We are using Milenage capable test USIMs and they pass both authentication a security mode command :-) This was the reason I linked it, maybe the developers are interested in the code base and they can port it to OpenBTS-UMTS. Anyway, the GSM fallback (in terms of security) is even possible? I mean is it possible to use GSM auth and ciphering while you try to connect to a UMTS network? In here, all the 3 major operators needed to change the SIMs, otherwise no phone was able to camp on the 3G network. And I think it was the new security requirements of the UMTS standard. Anyway if you don't see any auth and ciphering failure, or security mode reject messages, maybe not the full process is already implemented. Regards, Csaba ----- Eredeti üzenet ----- Feladó: "Tom Tsou" <to...@ts...> Címzett: "Sipos Csaba" <sip...@kv...> Másolatot kap: "Michael Iedema" <mic...@ra...>, "OpenBTS Discuss" <ope...@li...> Elküldött üzenetek: Csütörtök, 2015. Január. 22. 22:21:19 Tárgy: Re: [Openbts-discuss] OpenBTS-UMTS autch and ciphering failure On Thu, Jan 22, 2015 at 1:03 PM, Sipos Csaba <sip...@kv...> wrote: > What test SIM did you used exactly? Did you checked the QXDM log on the MS side? Maybe it worths to take a look. I'm using sysmoSIM-GR2 cards setup with dummy values (012345...) so I don't forget what Ki value that I program in. UE side enters FACH state; I didn't look beyond that. > According to the wiki the implemented part is Integrity Protection of GSM SIMs, no ciphering or USIM based auth at the moment. There is no Milenage support that I'm aware of, so GSM fallback seems to be the way to go. Security Mode Command would be the first use of the Kc value for at least integrity protection on signalling bearers. That's the last RRC message I see. -TT ---------------------------------------------------------------------------- -- New Year. New Location. New Benefits. New Data Center in Ashburn, VA. GigeNET is offering a free month of service with a new server in Ashburn. Choose from 2 high performing configs, both with 100TB of bandwidth. Higher redundancy.Lower latency.Increased capacity.Completely compliant. http://p.sf.net/sfu/gigenet _______________________________________________ Openbts-discuss mailing list Ope...@li... https://lists.sourceforge.net/lists/listinfo/openbts-discuss |