Security Vulnerabilities in Handover Authentication Mechanism of 5G Network

2018 First International Conference on Secure Cyber Computing and Communication (ICSCCC) Pub Date : 2018-12-01 DOI:10.1109/ICSCCC.2018.8703355

Shubham Gupta, Balu L. Parne, N. Chaudhari

{"title":"Security Vulnerabilities in Handover Authentication Mechanism of 5G Network","authors":"Shubham Gupta, Balu L. Parne, N. Chaudhari","doi":"10.1109/ICSCCC.2018.8703355","DOIUrl":null,"url":null,"abstract":"The main objective of the Third Generation Partnership Project (3GPP) is to fulfill the increasing security demands of IoT-based applications with the evolution of Fifth Generation (5G) mobile telecommunication technology. In June 2018, the 3GPP has published the study report of the handover architecture and security functions of in 5G communication network. In this paper, we discuss the 5G handover key mechanism with its key hierarchy. In addition, the inter-gNB handover authentication mechanism in 5G communication network is analyzed and identify the security vulnerabilities such as false base-station attack, de-synchronization attack, key compromise, etc. In addition, the handover mechanism suffers from authentication complexity due to high signaling overhead. To overcome these problems, we recommend some countermeasures as pre-authentication of communication entities, delegation of authentication and predistribution of secret keys. This is first work in the 5G handover security analysis. We anticipate that the above security issues and key resilience problem can be avoided from the proposed solutions.","PeriodicalId":148491,"journal":{"name":"2018 First International Conference on Secure Cyber Computing and Communication (ICSCCC)","volume":"117 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"18","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2018 First International Conference on Secure Cyber Computing and Communication (ICSCCC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICSCCC.2018.8703355","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 18

Abstract

The main objective of the Third Generation Partnership Project (3GPP) is to fulfill the increasing security demands of IoT-based applications with the evolution of Fifth Generation (5G) mobile telecommunication technology. In June 2018, the 3GPP has published the study report of the handover architecture and security functions of in 5G communication network. In this paper, we discuss the 5G handover key mechanism with its key hierarchy. In addition, the inter-gNB handover authentication mechanism in 5G communication network is analyzed and identify the security vulnerabilities such as false base-station attack, de-synchronization attack, key compromise, etc. In addition, the handover mechanism suffers from authentication complexity due to high signaling overhead. To overcome these problems, we recommend some countermeasures as pre-authentication of communication entities, delegation of authentication and predistribution of secret keys. This is first work in the 5G handover security analysis. We anticipate that the above security issues and key resilience problem can be avoided from the proposed solutions.

查看原文本刊更多论文

5G网络切换认证机制中的安全漏洞

第三代合作伙伴计划(3GPP)的主要目标是随着第五代(5G)移动通信技术的发展，满足基于物联网的应用日益增长的安全需求。2018年6月，3GPP发布了《5G通信网络中的切换架构和安全功能研究报告》。本文讨论了5G密钥切换机制及其密钥层次结构。此外，对5G通信网络中gnb间切换认证机制进行了分析，识别出假基站攻击、反同步攻击、密钥泄露等安全漏洞。此外，由于信令开销高，切换机制的身份验证复杂性较大。为了克服这些问题，我们提出了通信实体的预认证、认证授权和密钥的预分发等对策。这是5G移交安全分析中的第一项工作。我们预计上述安全问题和关键弹性问题可以从提出的解决方案中避免。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2018 First International Conference on Secure Cyber Computing and Communication (ICSCCC)

自引率

0.00%

发文量