摘要： 为防止用户的永久身份信息不被窃取，研究第三代移动通信系统的安全结构。通过对UMTS系统接入安全机制，即鉴权和密钥分配机制进行分析，提出一种终端用户安全鉴权的方案。利用USIM对鉴权随机参数RAND进行验证，如果验证失败则给出错误的鉴权结果，反之给出正确的鉴权结果。该方案能最大限度地保证用户的身份信息不被监听窃取，同时提高身份的机密性，且实施周期短。

关键词: 鉴权, 随机数RAND, 密钥, 安全

Abstract: In order to prevent the permanent information of a user from being identified by a rogue, the 3G security architecture is researched. By analyzing the mechanism of access security of UMTS systems, especially authentication and key agreement, this paper finds a method for authentication. The main idea of the method is to verify the random parameter RAND for authentication by USIM. If the process is not successful, USIM will respond fault result parameter; otherwise will respond correct result parameter. This method can ensure the identification information not been listened easily and improve the level of confidentiality the furthest. The period of putting in practice for the method is short.

Key words: authentication, random parameter RAND, key, security

中图分类号: 

• TP393.08