본문 바로가기
  • Home

Analysis of the IP Spoofing Attack Exploiting Null Security Algorithms in 5G Networks

  • Journal of The Korea Society of Computer and Information
  • Abbr : JKSCI
  • 2022, 27(9), pp.113-120
  • DOI : 10.9708/jksci.2022.27.09.113
  • Publisher : The Korean Society Of Computer And Information
  • Research Area : Engineering > Computer Science
  • Received : August 17, 2022
  • Accepted : September 15, 2022
  • Published : September 30, 2022

Tae-Keun Park 1 Jong-Geun Park 2 Keewon Kim 3

1단국대학교
2한국전자통신연구원
3목포해양대학교

Accredited

ABSTRACT

In this paper, we analyze the feasibility of the IP spoofing attack exploiting null security algorithms in 5G networks based on 3GPP standard specifications. According to 3GPP standard specifications, the initial Registration Request message is not protected by encryption and integrity. The IP spoofing attack exploits the vulnerability that allows a malicious gNB (next generation Node B) to modify the contents of the initial Registration Request message of a victim UE (User Equipment) before forwarding it to AMF (Access and Mobility Management Function). If the attack succeeds, the victim UE is disconnected from the 5G network and a malicious UE gets Internet services, while the 5G operator will charge the victim UE. In this paper, we analyze the feasibility of the IP spoofing attack by analyzing whether each signaling message composing the attack conforms to the 3GPP Rel-17 standard specifications. As a result of the analysis, it is determined that the IP spoofing attack is not feasible in the 5G system implemented according to the 3GPP Rel-17 standard specifications.

Citation status

* References for papers published after 2022 are currently being built.

This paper was written with support from the National Research Foundation of Korea.