【协议解读】GPRS加密算法GEA1易遭破解，很快将会被抛弃，release 12开始必须禁止使用

GPRS终端必须支持GEA2，GEA3和GEA0（不加密）算法，GEA4是新引入的128 bit加密算法，正在推广期；而GEA1是将要被淘汰的加密算法，在Release 11终端被警告使用，Release及之后将被禁止使用

3GPP TSG-SAWG3 Meeting #70                                                     z[H1] S3-130221

Sophia Antipolis, France, 21-25 January 2013

CR-Form-v10

CHANGE REQUEST

 

z[H2] 

43.020

CR

0029

z[H3] rev

-

z[H4]  Current version:

11.0.0

z[H5] 

 

Reason for change:  z[H1] 

In light of the attacks against the GEA1 GPRS encryption algorithm it is clear that the algorithm no longer offers the same level of protection as GEA2, (which in turn is not as strong as GEA3). Therefore it shall not be supported in mobile stations from Release 12 onwards. This significant change in Release 12 is indicated as a warning in Release 11.

 

 

 

Summary of change:                    z[H2] 

Warning regarding the removal of GEA1 from the list of ciphering algorithms that the ME is allowed to implement, from Release 12.

 

 

Consequences if     z[H3] 
not approved:

Operators and implementers would not anticipate the changes regarding the use of GEA1.

3GPP 43.020 Annex D

It is mandatory for GEA2, GEA3 and nonencrypted mode (i.e. GEA0) to be implemented in mobile stations. GEA1 and GEA4 may be implemented in the mobile stations.

NOTE:     As mobile stations are not allowed to implement GEA1 from Release 12 onwards, it is strongly discouraged to support GEA1 in Release 11 MS.

No other GPRS encryption algorithms shallbe supported in mobile stations.