Analysis of the IP Spoofing Attack Exploiting Null Security Algorithms in 5G Networks

Tae-Keun Park (박태근); Jong-Geun Park (박종근); Keewon Kim (김기원)

doi:10.9708/jksci.2022.27.09.113

Analysis of the IP Spoofing Attack Exploiting Null Security Algorithms in 5G Networks

Journal of The Korea Society of Computer and Information
Abbr : JKSCI
2022, 27(9), pp.113-120
DOI : 10.9708/jksci.2022.27.09.113
Publisher : The Korean Society Of Computer And Information
Research Area : Engineering > Computer Science
Received : August 17, 2022
Accepted : September 15, 2022
Published : September 30, 2022

Tae-Keun Park ¹, Jong-Geun Park ², Keewon Kim ³

¹단국대학교
²한국전자통신연구원
³목포해양대학교

Accredited

ABSTRACT

In this paper, we analyze the feasibility of the IP spoofing attack exploiting null security algorithms in 5G networks based on 3GPP standard specifications. According to 3GPP standard specifications, the initial Registration Request message is not protected by encryption and integrity. The IP spoofing attack exploits the vulnerability that allows a malicious gNB (next generation Node B) to modify the contents of the initial Registration Request message of a victim UE (User Equipment) before forwarding it to AMF (Access and Mobility Management Function). If the attack succeeds, the victim UE is disconnected from the 5G network and a malicious UE gets Internet services, while the 5G operator will charge the victim UE. In this paper, we analyze the feasibility of the IP spoofing attack by analyzing whether each signaling message composing the attack conforms to the 3GPP Rel-17 standard specifications. As a result of the analysis, it is determined that the IP spoofing attack is not feasible in the 5G system implemented according to the 3GPP Rel-17 standard specifications.

KEYWORDS

5G, Null Security Algorithm, 3GPP Standard, IP Spoofing Attack, Attack Analysis

Citation status

* References for papers published after 2023 are currently being built.

[journal] A. Gupta / 2015 / A Survey of 5G Network: Architecture and Emerging Technologies / IEEE Access 3 : 1206~1232

[journal] J. Navarro-Ortiz / 2020 / A Survey on 5G Usage Scenarios and Traffic Models / IEEE Communications Surveys & Tutorials 22(2) : 905~929

[journal] O. O. Erunkulu / 2021 / 5G Mobile Communication Applications: A Survey and Comparison of Use Cases / IEEE Access 9 : 97251~97295

[journal] R. Khan / 2020 / A Survey on Security and Privacy of 5G Technologies: Potential Solutions, Recent Advancements and Future Directions / IEEE Communications Surveys & Tutorials 22(1) : 196~278

[journal] S. Sullivan / 2021 / 5G Security Challenges and Solutions: A Review by OSI Layers / IEEE Access 9 : 116294~116314

[confproc] S.R. Hussain / 2019 / 5GReasoner: A Property-Directed Security and Privacy Analysis Framework for 5G Cellular Network Protocol / Proc. 2019ACM SIGSAC Conference on Computer and Communications Security : 669~684

[confproc] H. Kim / 2019 / Touching the Untouchables:Dynamic Security Analysis of the LTE Control Plane / Proc. IEEE Symposium on Security and Privacy (SP) : 1153~1168

[confproc] S. R. Hussain / 2018 / LTEInspector: A Systematic Approach for Adversarial Testing of 4G LTE / Proc. 25th Annual Network and Distributed System Security Symposium : 18~21

[journal] R. Zhang / 2021 / Towards 5G Security Analysis against Null Security Algorithms Used in Normal Communication / Hindawi Security and Communication Networks 2021

[journal] 김기원 / 2021 / Analysis of Deregistration Attacks in 5G Standalone Non-Public Network / 한국컴퓨터정보학회논문지 / 한국컴퓨터정보학회 26(9) : 81~88

[journal] 김기원 / 2021 / Analysis of DoS Attack against Users with Spoofed RRC Connections in 5G SNPN / 한국정보기술학회논문지 / 한국정보기술학회 19(10) : 79~85

[journal] 김기원 / 2021 / Analysis of Incarceration Attacks with RRCReject and RRCRelease in 5G Standalone Non-Public Network / 한국컴퓨터정보학회논문지 / 한국컴퓨터정보학회 26(10) : 93~100

[other] / 2022 / 3GPP. TS 24.501 v17.6.1, Non-Access-Stratum (NAS) protocol for 5G System (5GS); Stage 3; (Rel-17)

[other] / 2022 / 3GPP. TS 38.331 v17.0.0, NR; Radio Resource Control (RRC)Protocol Sepcification (Rel-17)

[other] / 2022 / 3GPP. TS 23.502 v17.4.0, Procedures for the 5G System (5GS);Stage 2; (Rel-17)

[other] / 2022 / 3GPP. TS 33.501 v17.5.0, Security architecture and procedures for 5G system (Rel-17)

This paper was written with support from the National Research Foundation of Korea.

KJCKorea
Journal Central

Journal of The Korea Society of Computer and Information 2023 KCI Impact Factor : 0.65

Analysis of the IP Spoofing Attack Exploiting Null Security Algorithms in 5G Networks

ABSTRACT

KEYWORDS

Citation status

* References for papers published after 2023 are currently being built.

Journal of The Korea Society of Computer and Information 2023 KCI Impact Factor : 0.65

Analysis of the IP Spoofing Attack Exploiting Null Security Algorithms in 5G Networks

ABSTRACT

KEYWORDS

Statistics

Tools

Issue List

Citation status

KCI Citation Counts (1)

REFERENCES (16) * References for papers published after 2023 are currently being built.

Search PDF

Citation

* References for papers published after 2023 are currently being built.