DES

Data Encryption Standard

Security
Introduced in Rel-4
A symmetric-key block cipher algorithm used in early 3GPP specifications for encrypting user data and signaling. It provided confidentiality for circuit-switched services and certain authentication mechanisms. Its use has been deprecated in favor of stronger algorithms like AES due to its 56-bit key length being vulnerable to brute-force attacks.

Description

The Data Encryption Standard (DES) is a symmetric-key block cipher that operates on 64-bit blocks of data using a 56-bit key. Within 3GPP systems, DES was implemented as a cryptographic primitive for ensuring data confidentiality, primarily in early releases for securing user plane traffic in circuit-switched domains and within specific security protocols. The algorithm employs a Feistel network structure, consisting of 16 rounds of permutation and substitution operations. Each round uses a different 48-bit subkey derived from the original 56-bit key through a key schedule. The core operations include expansion, substitution via S-boxes, permutation, and XOR with the round key, providing confusion and diffusion to the plaintext.

In the 3GPP architecture, DES was integrated into security functions at the core network and, in some early implementations, for over-the-air encryption. For example, it was specified for use in the A5/1 and A5/2 stream ciphers for GSM, which derived keystreams based on DES principles to encrypt voice and data over the radio interface. Within the core network, DES could be utilized in protocols for securing signaling messages or for encrypting data in transit between network elements, such as between a Mobile Switching Center (MSC) and a Base Station Controller (BSC). The algorithm's operation was typically managed by security modules within network nodes, ensuring that sensitive information remained protected from eavesdropping.

Despite its historical role, DES's technical limitations, particularly its short key length, made it susceptible to exhaustive key search attacks. This led 3GPP to phase out DES in favor of the Triple DES (3DES) variant, which applies the DES algorithm three times with two or three different keys, effectively increasing the key strength to 112 or 168 bits. However, even 3DES has been largely superseded by the Advanced Encryption Standard (AES) in later releases due to its superior security and efficiency. DES's inclusion in 3GPP specs served as a foundational cryptographic method, but its deprecation highlights the evolution toward more robust security mechanisms in mobile networks.

Purpose & Motivation

DES was incorporated into early 3GPP standards to provide a standardized method for encrypting user data and signaling, addressing the need for confidentiality in mobile communications. Prior to its adoption, many telecommunications systems lacked robust, interoperable encryption, leaving voice calls and data transmissions vulnerable to interception. DES offered a well-vetted, government-standardized algorithm that could be implemented across network equipment from different vendors, ensuring a baseline level of security for circuit-switched services like voice calls in GSM and early UMTS networks.

The creation of DES was motivated by the growing recognition of privacy concerns in wireless communications and the necessity to protect against eavesdropping on radio links. In the context of 3GPP, it solved the problem of securing over-the-air traffic between the mobile device and the base station, as well as backhaul connections within the network. By encrypting data streams, DES helped prevent unauthorized access to sensitive information, thereby enhancing user trust and meeting regulatory requirements for data protection. Its use in authentication and key agreement protocols also contributed to the overall security framework of early cellular systems.

However, DES's purpose was eventually undermined by advancements in computational power, which rendered its 56-bit key vulnerable to brute-force attacks. This limitation prompted 3GPP to transition to stronger algorithms, but DES's initial implementation laid the groundwork for cryptographic security in mobile networks, demonstrating the importance of encryption in telecommunications and paving the way for more advanced standards like AES.

Key Features

  • Symmetric-key block cipher with 56-bit key length
  • Operates on 64-bit data blocks using a Feistel network structure
  • Provides data confidentiality through encryption and decryption functions
  • Utilizes 16 rounds of permutation and substitution for security
  • Integrated into early 3GPP specs for circuit-switched service encryption
  • Supported in protocols like A5/1 and A5/2 for GSM radio interface security

Evolution Across Releases

Rel-4 Initial

Introduced DES as a cryptographic algorithm for data encryption in 3GPP specifications, primarily for securing circuit-switched services and certain authentication mechanisms. It was defined in core security specs to provide baseline confidentiality, with implementations in network elements for encrypting user data and signaling. The initial architecture relied on DES for over-the-air encryption in GSM-derived systems and backhaul protection.

TS 21.905TS 23.048TS 24.022TS 31.113TS 31.114TS 33.210TS 35.909

Defining Specifications

SpecificationTitle
TS 21.905 3GPP TS 21.905
TS 23.048 3GPP TS 23.048
TS 24.022 3GPP TS 24.022
TS 31.113 3GPP TR 31.113
TS 31.114 3GPP TR 31.114
TS 33.210 3GPP TR 33.210
TS 35.909 3GPP TR 35.909