User Authentication in Multi-mode Mobile Phones
Master thesis
Permanent lenke
http://hdl.handle.net/11250/261598Utgivelsesdato
2007Metadata
Vis full innførselSamlinger
Sammendrag
IMS-WLAN interworking is a step towards extending IMS functionality into other access technologies, but this architecture is very comprehensive and is unlikely to be employed everywhere. The result is a need for alternative options. Using SIP to deliver services in the Internet or any network where IMS is not available is perhaps the most obvious choice. The reason for that argument is that IMS is based on SIP, and SIP is considered to be a flexible framework for this use, it may be extended to fit almost any purpose IMS in itself is a perfect example of that. The only problem is, when migrating from an IMS-network to an arbitrary internet with SIP, two things happen: 1. The user has two different identities in the two networks 2. SIP does not employ the same authentication mechanism as IMS For the sake of security and horizontal integration of services, any alternative to IMS must offer approximately the same level of security. The services and access technologies in mention are diverse, in concept, technology and with regards to complexity. They each fulfill a specific purpose all on their own. When proposing a unified authentication framework, it is important to take in to account the individual needs of the elements involved. As such, any proposed solution must not compromise the basic nature of each element, or be damaging to its basic operation. SIM Authentication can be achieved in the SIP client, but the authentication in itself only solves half the problem. The next challenge is to personalize the service, and this can only be done if there is a connection between identities, and their corresponding profiles, across networks. My opinion is that the only way to fulfill the requirements is by introducing an element of connection between the different identities. Federating user identities, Service Providers and Identity Providers together, gives a whole new flexibility with regards to the use of user resources which would otherwise just exist in separate networks.