https://laforge.gnumonks.org/enThu, 24 Oct 2024 20:08:49 GMTNikola (getnikola.com)http://blogs.law.harvard.edu/tech/rsshttps://laforge.gnumonks.org/blog/20170307-usim_sequence_numbers/Harald Welte<p>I always though I understood UMTS AKA (authentication and key agreement), including the re-synchronization procedure. It's been years since I wrote tools like <a class="reference external" href="http://osmocom.org/projects/osmo-sim-auth/wiki">osmo-sim-auth</a> which you can use to perform UMTS AKA with a SIM card inserted into a PC reader, i.e. simulate what happens between the AUC (authentication center) in a network and the USIM card.</p> <p>However, it is only now as the sysmocom team works on 3G support of the dedicated <a class="reference external" href="http://osmocom.org/projects/osmo-hlr">OsmoHLR</a> (outside of OsmoNITB!), that I seem to understand all the nasty little details.</p> <p>I always thought for re-synchronization it is sufficient to simply increment the SQN (sequence number). It turns out, it isn't as there is a MSB-portion called SEQ and a lower-bit portion called IND, used for some fancy array indexing scheme of buckets of highest-used-SEQ within that IND bucket.</p> <p>If you're interested in all the dirty details and associated spec references (the always hide the important parts in some Annex) see the discussion between Neels and me in <a class="reference external" href="https://osmocom.org/issues/1965">Osmocom redmine issue 1965</a>.</p>cryptogsmosmocomumtshttps://laforge.gnumonks.org/blog/20170307-usim_sequence_numbers/Tue, 07 Mar 2017 16:00:00 GMT