2010 Second International Conference on Communication Software and Networks
A Review of Some Security Aspects of WiMAX & Converged Network
Masood Habib
Department of Computer Science & IT
Shaheed Zulfikar Ali Bhutto Institute of Science and
Technology Islamabad, Pakistan
[email protected]
[email protected]
AbstractThe future for WiMAX-based mobile wireless access
is so bright. With the increasing popularity of WiMAX, it is
gaining a great position in the next generation of wireless
networks. Due to the evolution of new technologies wireless is
not secured as like others networking technologies. On the
other side the trend is towards converged network in which the
same networking infrastructure is used for both data and voice
transmission. A lot of security concerns are needed to secure a
converged network. This paper aims to review the study of
WiMAX and converged network and security considerations
for both the technologies. WiMAX security in converged
network is studied. The security threats that can occur in
converged network to WiMAX and countermeasures that can
be taken against these threats are reviewed.
Keywords-WiMAX; Converged Network; Security threats;
Security mechanisms; Wireless Technologies
I. INTRODUCTION
Many wireless networks are based on radio waves, which
are too easy to be attack. Security of a network plays a key
role in the performance of a network. Security is more
important than ever before due to many reasons. When a
network is implemented poorly, security threats and attacks
are always there. But if that network is made fully secure by
implementing high level of security, there will be a fewer
amounts of security threats. Applying security to a network
is too much costly than its advantages. Both Network
operator and the network user concerned over network
security.
The objective of this paper is to done literature review
and to provide a critical review of Converged network and its
security considerations and also for WiMAX and its security
consideration. The paper mainly focuses on the threats to
both the technologies and security measures for these threats.
New ideas are taking birth on daily basis. The concept of
a converged network [2], [3] is one that has the capabilities
to transmit voice, data, video, or some combination of these
signal types or some other type of transmission signals. The
latest trends are towards converged network; in this type of
networking infrastructure both data and voice
communication can be accommodated. Converged network
has an open ways to the security threats and attacks, so it is a
challenge for the network professional to secure a converged
network. The threats to the converged network are the same
as they are in separate networks. Every threat has its own
level of attack.
978-0-7695-3961-4/10 $26.00 2010 IEEE
DOI 10.1109/ICCSN.2010.93
Masood Ahmad
Department of Computer Science
National University of Computer & Emerging Sciences
Peshawar, Pakistan
There has been great evolution in wireless
communications over the last few years. WiMAX is an
emerging wireless technology used for deploying broadband
wireless metropolitan area network [1] (WMAN). WiMAX
is a wireless technology that offers many features with a lot
of flexibility. WiMAX has replaced many of the existing
telecommunication technologies and provides last mile
connectivity with higher speed at longer distances, from 30
to 50 miles and its transfer rate is up to 70 Mbps. Initial
version of the 802.16 standard was operating in 10-to-66-
GHz [1],[6],[7] providing line-of-sight transmissions. The
other standard 802.16a provide non line-of-sight
transmission and provide lower frequency band (2 to 11
GHz). These two main classes of WiMAX systems are fixed
WiMAX and mobile WiMAX. The latest 802.16 standard
adds support for mobility of SS. This could make
802.16/WiMax more vulnerable to these attacks against the
PHY layer because an attacker does not necessarily have to
reside in a fixed point [11].
Mainly the threats in WiMAX are to the Physical layer
and MAC layer. But the physical layer is much vulnerable to
threats as compared to MAC layer. The physical layer (PHY)
handles signal connectivity, error correction, initial ranging,
registration, bandwidth requests, and connection channels for
management and data. The MAC layer manages connections
and security [10].
In Section II the Literature is reviewed; Section III
describes the critical evaluation based on the evaluation of
the literature review, we conclude in Section IV, which will
summarize the work done in the paper followed by the future
work. In last the references are given.
II. LITERATURE REVIEW
The purpose of this literature review is to study the
literature of both converged network and WiMAX/802.16.
The review is basically of security mechanisms for both
technologies and the security threats to both of these
technologies which are described in certain papers by
different authors. This section is again divided into
subsections for review.
A. Converged Networks Security considerations
The technologies related to the internet are changing with
the passage of time, means to say that the technologies are
becoming advanced. Converged network is a networking
infrastructure where data, voice and video communication
372
can be transmitted over the same network. According to [2]
the concept of a converged network is not new. This concept
was introduced in 1980s when the Integrated Services
Digital Network (ISDN) was in development stages. But
when the ISDN was implemented, it was not easy to be done
as it was said to transmit voice with data on the existing
telephone networks. [2] Also describes the migration of the
existing network towards Convergence that there was a need
that the voice should also be sent with data packets. So it was
made possible, IP was the platform for this purpose. VoIP
was adopted to transfer voice and data packets on the
internet. The converged networks provide data transfer at
high rates but having a seamless security. The packet
delivery technique for the internet is Internet Protocol (IP).
According to [3] IP was only designed for data transportation
not voice. IP depends upon Transmission Control Protocol
(TCP) to enhance its reliability. The key challenge for
converged networks is that: How can be a connection-
oriented application transmitted over a connectionless
network? This challenge is addressed by three ways in this
paper; i) by building a network infrastructure capable of
transmitting both voice and data packets, ii) Management of
the network & iii) enhancing the quality of service. This
paper is that it is just a theoretical view about the converged
network; no implementation is done in this regard.
[4] Examines the drivers and technologies that enable
true convergence. Three view points are discussed for
Convergence: User services convergence, device
convergence and network convergence. In user service
convergence different services can be provided over different
networks to the same users and to different devices. While in
device convergence common devices support several access
types. At last the network convergence refers to provide
different user services, to several access types by keeping in
mind the cost efficiency and providing quality of service.
Internet Protocol (IP) is being introduced in areas of
communication. The development in technology leads
towards the increasing of bandwidth and supports the
mobility which enables true converged services. Challenge
reviewed here is related to the business environment. Some
aspects of convergence could affect the network operators
business plans. The network operators will have a capability
of quickly adopting the new environment. Here the view of
converged network is described in another way. In this paper
it is stated the cost efficiency feature and Quality of Service
features in network convergence but how to implement
these?
Security is an essential element of information
technology (IT) infrastructure and applications. In [5] the
discussion is about the security in converged networks, that
how a converged network can be secured from outside
threats. Attacks are growing on daily basis due to which
Converged network can also be attacked. A high level of
security is required for the converged network to make it
secure, because in the converged network, a seamless
security is provided. There has been published that when
voice applications are deployed on the converged network it
become vulnerable to threats like of disclosure, integrity, and
denial of services. The threats to integrity are Spoofing &
373
Man-in-the-middle attack, the first attack is solved by
Authentication and digital signatures while the lateral is
counter-measured by Signing and verifying the data. The
threat to disclosure is Eavesdropping and for solving this
problem Encryption technique is used. Denial of Service
attack referred to as blocking of services to the destination
point. DDoS is also a threats which is much dangerous than
simple DoS attack and also difficult to detect and
countermeasure.
To secure a converged network a few security measures
are discussed. First is to secure the enterprise infrastructure,
secondly to secure the communication applications of
converged networks and thirdly to make secure the services
and maintenance access. The limitation here is that every
step has been taken to secure the Converged network but still
unable to provide security services and still are vulnerable to
threats. Some are counter-measured and some are still there
like; DDoS attack. Some steps to be taken against this type
of attack.
B. WiMAX & its Security Considerations
The previous section was about the security
considerations of a converged network. This section is the
review of the WiMAX and its security mechanisms and also
threats to its security.
[6] Has analyzed security threats to wireless networks
and the analysis of threats according to the level of risks to
WiMAX/802.16 has been conducted. The threats to the Mac
layer and Physical layer of WiMAX are described.
According to the Authors robust wireless protocols with
strong encryption techniques along with using Intrusion
Prevention systems is effective to eliminate a lot of wireless
threats. The physical layer of WiMAX is vulnerable to
threats as compared to MAC layer. The attacks on physical
layer are jamming and scrambling. The authors tried to
describe every point open to threats, and these threats were
also classified according to classes. Some of these threats are
easy to be countermeasure but problems are still there
because some of these attacks are difficult to
countermeasure; like DDoS attack (Distributed Denial of
service) the detection of this attack is also difficult. The
limitation of this paper is that the protocol defined for
securing the wireless has certain vulnerabilities as key
management and using weak RC4.
[7] Has also analyzed the security attacks on WiMAX.
An analysis of WiMAX/802.16 architecture has been
conducted, that shows how the IP packets and ATM cells are
converted into Frames. The main focus here is on the threats
analysis of the two layers; Physical layer and MAC layer in
detail. In physical layer the flow of bits is structured in a
sequence of frames having equal length. Author describes
two threats to the WiMAX; Jamming and Scrambling.
Jamming attack may be unintentional or malicious and also
stated that jamming is easy to detect and when detected then
it is easy to countermeasure. Scrambling attack is difficult to
achieve and also difficult to detect. In the description of
MAC layer the author describes the MAC layer threats with
respect to confidentiality and Authentication. The most
threats are relating to the level of authentication.
 MAC layer PDU is also discussed. [7] Also stated that
there was no protection for the integrity of data traffic of
802.16, but 802.16e introduces this sort of protection
mechanism for data protection. Authentication of traffic
messages has been discussed. Modification of messages is
possible when AES is not used, and modification of traffic
becomes a major threat. A DDoS attack is also a major
problem on this point and it is also unable to handle. The
author advised Intrusion Detection System for handling some
of the threats. This paper has discussed the most recent work
done by the IEEE and the WiMAX forum. The strength of
this paper is that the author has used a unique methodology
for the analysis of risk regarding to the threats. The weakness
of this paper is that three options for authentication are
discussed, device list based, X.509 certificate based or EAP
based. But all the three can be compromised by an attacker
or by an adversary.
[8] Is a review based paper, the review has been taken
from the other published materials, journals, literature and
mostly from websites. It is described that the IEEE 802.16 is
still on paper and some of its methods are under
development stages. The physical layer and MAC layer of
WiMAX has been discussed. Firstly the MAC and physical
TABLE I.
layers are reviewed and then there security issues are
discussed. Some risks and vulnerabilities to the WiMAX are
overviewed. The main flaws discussed were mutual
authentication, unclear definitions, data privacy and key
management.
The doors of WiMAX/802.16 are open to threats, which
are the Traffic Encryption Key (TEK) and Authorization
Key (AK) issues. That could be exposed and can create a
problem. The issues of user authentication, the issues relating
to mobility are pointed. The Author have not provided any
new idea, just he has described the saying of other
researchers. He has taken the views of others and has placed
these views in sequences in his paper. It is just a review,
Issues relating to mobility are just pointed and only
suggestion is given that more research is needed in this area.
Examination in [9] is just about the security of WiMAX
in a Converged Network. It is a general paper which
describes the scenario of securing wireless communications,
the data link layer and application layer security
considerations. The list of vulnerabilities is given and also
the security infrastructure for these issues is described in
detail. The security threats of WiMAX are the same as the
threats in Converged network.
SUMMARIZED TABLE OF THE REVIEW

Author Summary Problems/ Solutions Limitations

Challenges
When voice applications are
AVAYA, How a converged network can be secured deployed on the converged Authentication, digital Still unable to provide security.
February 2003 from outside threats. The focus is network it become signature, Some threats are still there like;
specifically on security considerations of a vulnerable to threats like of Signing and verifying. DDoS attack. Which is too
converged network. disclosure, integrity, and & tough to detect and
denial of services. Encryption countermeasure.
An analysis of the security attacks on the Jamming, Scrambling, Spread spectrum scheme, Three options for authentication
WiMAX and architecture has been DDoS, Strong Encryption are discussed, device list based,
conducted. Main focus is on the threats Rouge BS, techniques. X.509 certificate based or EAP
Michel Barbeau analysis of Physical and MAC layer. The X.509 digital certificate Communication keys should based. But all the three can be
2005 author advised Intrusion Detection System Compromised be secure. compromised by an attacker.
for handling some of the threats. Mutual Authentication is
needed.
The physical layer and MAC layer of Message authentication,
WiMAX has been discussed. The main Eavesdropping, Availability of Data, Just a review, Issues relating to
flaws discussed were mutual DoS attack, Anti replay, mobility are just pointed and
Jamshed Hasan authentication, data privacy and key Replay attack, Mutual authentication, only suggestion are given that
2006 management. The author has suggested Man-in-the middle attack, Authorization, more research is needed in this
that more research is needed in this area to Jamming and scrambling. DES in CBC mode for data area
make it more and more mature. privacy.
AES
Mahmoud Security threats to wireless networks and Spread spectrum scheme,
Nasreldin, Heba the analysis of threats according to the Jamming & Scrambling. Security Association, Strong The protocol defined for
Aslan, Magdy level of risks to WiMAX/802.16. Threats DDoS, Encryption techniques, securing the wireless has certain
El-Hennawy, to the Mac and Physical layer are Threats to Eavesdropping of Mutual Authentication. vulnerabilities as key
Adel El- discussed. Described every point open to management messages. Authentication protocol management and using weak
Hennawy. threats, and these threats were also Rouge BS (EAP). RC4.
2008 classified according to classes.
Introduces the improvements between the Time stamp with a signature. Authors have suggested that
Mobile and Fixed WiMAX along with the Authentication and non- authorization is done by an
Prof. Dr. Ing. elements of the WiMAX security. Replay- and DoS-Attack. repudiation. Encryption, authorization key (AK) if that
Evren Eren Authentication, Authorization and Man-in-the-Middle-Attack, Increasing the sequence key s compromised the whole
and Encryption are described. Attacks are Forgery-attack, number length, communication is
Prof. Dr. Ing. discussed and countermeasures for these Attacks against the Key Using 70 days as highest compromised. One of the main
Kai-Oliver attacks are described. In last the authors Sequence Number duration of an AK and 30 points for secure and authorize
Detken has compared the fixed and mobile minutes as the smallest communication is X.509
2008 WiMAX and the encryption of data and duration of a TEK. certificates which may also be
keys in both the technologies. Also CMAC key is used compromised.
against Replay attack

374
 The author describes that if we use secure devices by the
WiMAX then the communication can be secure. Application
level security is needed to secure the communication. The
strength of this paper is that a detail and a great security
infrastructure is provided, that how to secure the
communication. Here [9] describes the mechanism for the
detection of DoS attack; that the (SBC) session border
controller can be used to detect the DoS attack. It is a general
paper and the limitations were not so specific in this paper.
The security infrastructure define by the author is so much
secure but its cost will be too high in deployment. So the cost
is making a main issue here.
[10] Introduces the basic improvements between the
Mobile WiMAX and Fixed WiMAX along with the elements
of the WiMAX security. The security mechanisms;
Authentication, Authorization and Encryption are studied in
detail for the Base Station (BS) and Mobile Station (MS) in
different phases. The focus is on the two essential phases
which have shortcomings: Authentication Phase and Key
Material Exchange Phase. In last the comparison of fixed
and mobile WiMAX and the encryption of data and keys in
both the technologies. The strength of this paper is that the
methodology used by the Authors is changed from others.
They have explained every main aspect of the threats or
countermeasure to these threats of WiMAX. The limitation
of this paper is that the authors have suggested that
authorization of BS and MS is done by an authorization key
(AK) if that key is compromised the whole communication is
compromised. One of the main points for secure and
authorize communication discussed is X.509 certificates
which may also be compromised.
III. CRITICAL EVALUATION
In this section the evaluation of review is done
critically. Table 1 contains the tabular format of a
summarized review of the literature. What are the challenges
to the converged network and WiMAX? & what are the
solutions for these challenges. Every author has its own
view. The limitations found in the reviewed papers are also
mentioned in this table.
In previous section the review of converged
network and WiMAX is described along with their security
threats and measure. Different security threats are given and
then solutions for these threats are also discussed by different
authors. A lot of solutions are given for the problems but still
any of the networking technology is not secure from threats.
If we compare the threats of both the technologies
(Converged Network & WiMAX) we get that threats
described by all authors having some sort of similarity with
each other. And the countermeasures for these attacks
are also the same, but every researcher has its own way
of research and presenting of idea. The methodology
used by every author is not the same.
When voice applications are deployed on the converged
network it become vulnerable to threats like disclosure,
integrity, and denial of services. So these threats can be
solved by Authentication, digital signature, Signing and
verifying & Encryption techniques but still unable to provide
375
security. A few threats are there like; DDoS attack that is too
tough to detect and countermeasure.
An analysis of the security attacks on the WiMAX and
architecture has been conducted. Main focus is on the threats
analysis of Physical and MAC layer. Intrusion Detection
System is advised to be used for handling some of the
threats. Jamming, Scrambling, DDoS, Rouge BS creation,
compromising of X.509 digital certificates are some the
common attacks on WiMAX technology. The techniques
used to countermeasure these attacks/threats are spread
spectrum scheme, Strong Encryption techniques.
Communication keys security and Mutual Authentication but
still the threats are there. Three options for authentication are
discussed, but all the three can be compromised by an
attacker.
[9] Describes threats like Client and server
impersonation, Message tampering, Session
tampering/hijacking, Signaling request resulting in DoS
attack and has proposed the security services like Firewalls
and NAT traversal, topology hiding, DoS and flood attack
detection, Signaling and media security, theft of service
prevention, Granular access control, Session admission
control, Firewalls specially designed for application-specific
gateways, IDS and IPS. But the problem arise here that the
security infrastructure define by the author is so much secure
but its cost too much in deployment the given services for
security. So the cost and security are proportional to each
other.
IV. CONCLUSION
The security threats to the converged network are merely
similar to that of WiMAX network infrastructure. WiMAX is
designed with a lot of security mechanisms to make it secure
form the threats, but still not so secure from threats. The
security of WiMAX was described by keeping in mind the
Data link Layer. The Physical layer is having an open access
which is easy to be attacked. Threats to the security of
WiMAX were analyzed. These threats were having five
classes: interception attack, fabrication attack, modification,
replay attack, reaction attack, interruption attack and
repudiation attack. Security mechanisms are also provided to
make WiMAX secure from the threats.
A lot of wireless attacks could be countermeasure by
using wireless protocols and strong encryption techniques.
One of the dangerous threats is eavesdropping of
management messages, which enables the attacker to capture
important data when the network is using weak encryption
techniques. Other serious threat is DOS attack which is done
on availability, this attack could also be countermeasure but
the DDOS Distributed DOS attack is not easy to
countermeasure.
Converged networks are also vulnerable to security
threats. End-to-end secure communications can be achieved
by keeping security in mind. The security threats to a
converged network were studied and security mechanisms
for these threats were also discussed. In addition, three steps
are also discussed for securing a converged that are; first to
secure the enterprise infrastructure, second to secure the
communication applications of converged networks and third
to secure the services and maintenance access. That leads
towards a secure converged network.
WiMAX security in converged network is also a main
concern. WiMAX provides a robust security, but still have
threats. By deploying WiMAX in converged network,
security should be the main agenda. There is the security of
converged network plus the security of WiMAX but some
extra security measures should also be taken to make the
new infrastructure secure. The security measure can be
software based or hardware based. By deploying secure
devices for WiMAX we can secure the communication at
application layer. But then the problem of cost occurs,
because robust security providence leads to higher cost.
FUTURE WORK
After studying different aspects of the study about the
Converged Network and WiMAX and their security
measures, we came to an end that a lot of security services
are provided to secure the communication but still not
secure. A lot of security concerns should be provided, so
future work is needed in this area to secure the
communication and countermeasure the security threats/
attacks.

REFERENCES

[1] William C. Y. Lee, Wireless and Cellular Telecommunications

Third Edition, Chapter 7.
[2] Mark A. Miller, Introduction to Converged Networking WHITE
PAPER, A technical briefing series on VoIP and converged networks
Volume 1, August 2005
[3] Lillian Goleniewski, Telecommunication Essentials 2nd Edition,
Chapter 10 Next generation networks & Convergence.
[4] White Paper by ERICSSON, Evolution towards converged services
and networks. April 2005
[5] White Paper by AVAYA, Security in Converged Networks
February 2003 www.avaya.com
[6] Mahmoud Nasreldin, Heba Aslan, Magdy El-Hennawy, Adel El-
Hennawy, WiMAX Security International Conference on
Advanced Information Networking and Applications 2008, IEEE
[7] Michel Barbeau, WiMax/802.16 Threat Analysis ACM Int.
Workshop on Quality of Service & Security in Wireless and Mobile
Networks, Q2SWinet 05, October 13, 2005.
[8] Jamshed Hasan Security Issues of IEEE 802.16 (WiMAX) School
of Computer and Information Science, Edith Cowan University,
Australia, 2006
[9] By Ramana Mylavarapu Security considerations for WiMAX-based
converged network (August 2005) www.rfdesign.com
[10] Prof. Dr. Ing. Evren Eren and Prof. Dr. Ing. Kai-Oliver Detken
WiMAX-Security Assessment of the Security Mechanisms in
IEEE 802.16d/e 2008
[11] Hyung-Joon Kim IEEE 802.16/WiMax Security Dept. of Electrical
and Computer Engineering Stevens Institute of Technology, Hoboken,
New Jersey

376