Why GSM do challenge-response authencation before encryption?

Asked 1 year, 11 months ago

Viewed 59 times

I read this Wikipedia article and I can't understand, why GSM do challenge-response authencation before encryption? Why it doesn't start encryption at the beggining and authencate with it?

Why this:

MS sends its IMSI to operator
Operator check IMSI and sends correspoinding RAND
MS make response and Kc with RAND and Ki, store the Kc and sends the response to operator
Operator check the response and send info about used encryption protocol etc to MS
And now all communication will be encrypted with Kc

Instead of this:

MS sends its IMSI to operator
Operator check IMSI and sends correspoinding RAND
MS make Kc with RAND and Ki, store the Kc and starts encrypt all communication with the Kc
Operator decrypt all communication with Kc and if decrypted content is ok, authencation is done

asked Dec 4, 2023 at 9:49

worner

213 bronze badges

There might be a real answer to this but most likely it's simply there's no need for encryption before the MS is authenticated.

Zac67
– Zac67 ♦

2023-12-04 11:26:56 +00:00
Commented Dec 4, 2023 at 11:26
Yes, but my point is, why is separate authencation needed? Encryption with Kc do authencate as well, right?

worner
– worner

2023-12-04 12:58:18 +00:00
Commented Dec 4, 2023 at 12:58

Add a comment |

0

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.

Stack Exchange Network

Why GSM do challenge-response authencation before encryption?

0

Hot Network Questions

Why GSM do challenge-response authencation before encryption?

0

Know someone who can answer? Share a link to this question via email, Twitter, or Facebook.

Related

Hot Network Questions