Security for Heterogeneous Access in Mobile Applications and Networks

Objectif

We shall conduct R&D on the security infrastructures for two major aspects of mobile communications that will become important following on from Release 2000 of UMTS.
These are:
- the ability of the mobile user to roam globally and to connect into the Network and its services using a variety of heterogeneous access networks, based on, for instance, wireless LAN and Bluetooth;
- the development of mobile terminals consisting of dynamically configured components, some of which may be worn, and which use wireless communications;
together with applications environments to support access to programs and data.
We shall develop security architectures providing specifications of interfaces, protocols and mechanisms to provide protection. We shall also provide supporting technologies.
PKI and smart card security modules. Results will be disseminated for adoption in international standards.

Objectives:
To develop extensions to the security architecture for future mobile telecommunications systems in order to provide secure global roaming, secure access over heterogeneous radio networks and security for highly configurable mobile terminals.

This leads to the following sub-goals:
- to review the security requirements arising from the identified security issues and define a comprehensive set of additional security features to be provided by the UMTS security architecture
- to define a comprehensive set of additional security mechanisms, protocols and procedures required to provide the necessary security features
- to specify a public key infrastructure to support security mechanisms, protocols and procedures defined to address the identified security issues
- to define the security features and procedures involving smart cards and other security modules
- to demonstrate the technical feasibility and the functionality of salient or critical aspects of the results and to validate the specifications
- to disseminate the results of the project for adoption in the standards bodies and industrial forums, and in particular to provide a sound and validated technical basis for the definition of extensions to the UMTS security standards
- to build on the work of and collaborate with relevant EC projects.

Work description:
The background of the work is the success of the ACTS USECA project in its contribution to the security architecture for Release 99 of the 3GPP standards for UMTS. The next release will include the incorporation of Internet protocols, and further security for the core networks. Beyond this, we see the two parallel developments providing major enhancements to the services available to the mobile user.

These are:
(i) the appearance of a variety of heterogeneous, locality-specific access networks supplementing the direct cellular connection (e.g. wireless LAN and Bluetooth), and
(ii) the arrival of mobile terminals consisting of a number of components that may be reconfigured dynamically to support the particular service needs at that time.

The work addresses the development of security services and architectures that enable these features to integrate into the overall UMTS security provision. Two independent tasks operate in parallel on these topics, supported by two further tasks that provide essential support for the security solutions. One addresses the public key infrastructure that will allow this seamless integration and operation to take place; the other will provide security modules based on smart card technology that will protect kernel security functionality and security-critical data and parameters in mobile terminals. A further task takes the salient and critical aspects of the technical results of these four workpackages and validates them through system design and prototyping.

Result will fall into two categories:

- technical and architectural specifications and reports destined for adoption in European and international standards;

- validation and demonstration of the functionality and feasibility of critical or salient results and recommendations of the work.

Milestones:
Major mile-stoned results will be delivered in the following months:
M06 - Intermediate reports on heterogeneous access and terminal architecture;
M09 - Specifications of requirements for PKI and Security Modules;
M12 - Intermediate functional and architectural specifications for HA and TA;
M15 - Intermediate technical specifications for PKI and SM;
M18 - Detailed technical specifications for HA and TA;
M24 - Demonstration and final technical report containing all results.

Champ scientifique (EuroSciVoc)

CORDIS classe les projets avec EuroSciVoc, une taxonomie multilingue des domaines scientifiques, grâce à un processus semi-automatique basé sur des techniques TLN. Voir: Le vocabulaire scientifique européen.

• sciences naturelles informatique et science de l'information internet protocole internet
• sciences naturelles informatique et science de l'information sécurité informatique cryptographie
• ingénierie et technologie génie électrique, génie électronique, génie de l’information ingénierie de l’information télécommunication technologie radio bluetooth

Programme(s)

Programmes de financement pluriannuels qui définissent les priorités de l’UE en matière de recherche et d’innovation.

• FP5-IST - Programme for research, technological development and demonstration on a "User-friendly information society, 1998-2002"

Thème(s)

Les appels à propositions sont divisés en thèmes. Un thème définit un sujet ou un domaine spécifique dans le cadre duquel les candidats peuvent soumettre des propositions. La description d’un thème comprend sa portée spécifique et l’impact attendu du projet financé.

• 2000-4.5.2 - Terrestrial wireless systems and networks

Appel à propositions

Procédure par laquelle les candidats sont invités à soumettre des propositions de projet en vue de bénéficier d’un financement de l’UE.

Régime de financement

Régime de financement (ou «type d’action») à l’intérieur d’un programme présentant des caractéristiques communes. Le régime de financement précise le champ d’application de ce qui est financé, le taux de remboursement, les critères d’évaluation spécifiques pour bénéficier du financement et les formes simplifiées de couverture des coûts, telles que les montants forfaitaires.

CSC - Cost-sharing contracts

Coordinateur

Participants (7)