Security among UPFs belonging to Different 5G/B5G/6G Networks

IF 6.9 3区 管理学 Q1 COMPUTER SCIENCE, INFORMATION SYSTEMS
Liang-Sheng Hsiao, Kun-Lin Tsai, Jung-Chun Liu, Fang-Yie Leu, Yu-Syuan Lu, I-Long Lin
{"title":"Security among UPFs belonging to Different 5G/B5G/6G Networks","authors":"Liang-Sheng Hsiao, Kun-Lin Tsai, Jung-Chun Liu, Fang-Yie Leu, Yu-Syuan Lu, I-Long Lin","doi":"10.1007/s10796-024-10510-0","DOIUrl":null,"url":null,"abstract":"<p>Recently, 5G/B5G/6G networks (5G for short) have been gloriously developed to give us colorful lives and make our daily activities more convenient than before. On the other hand, online meetings, like video conferences and online educations, have been popularly held everywhere in the world. Nevertheless, in such a meeting on 5G networks, a packet P transmitted from a User Plane Function (UPF), e.g., UPF<sub>1</sub> of a 5G, e.g., 5G<sub>1</sub>, to P’s destinations, e.g., the set {UPF<sub>2</sub>, UPF<sub>3</sub>, …UPF<sub><i>n</i></sub>}, respectively, in {5G<sub>2</sub>, 5G<sub>3</sub>, …5G<sub><i>n</i></sub>}, is not secure, even not encrypted, particularly when P goes through the Internet. Hackers may duplicate P, i.e., data leakage on the connections among these UPFs. The situation needs to be avoided when data of the meetings ought not to be leaked, e.g., for an important military conference. Therefore, in this study, we propose a security architecture, named Group Key using IKA (GKIKA), which encrypts/decrypt packets before sending them, e.g., EC<sub>1</sub> in 5G<sub>1</sub> encrypts P and then sends P’s ciphertext which will be decrypted by edge computers {EC<sub>2</sub>, EC<sub>3</sub>, …EC<sub><i>n</i></sub>} where EC<sub><i>j</i></sub> is in 5G<sub><i>j</i></sub>, <span>\\(2\\le j\\le n\\)</span>. Our security scenarios include data transmission among <i>n</i>-parties, <i>n</i> <span>\\(\\ge\\)</span> 2. When<i> n</i> <span>\\(=\\)</span> 2, symmetric or asymmetric cryptography is adopted depending on the security level and time constraints required. As <i>n</i> <span>\\(&gt;\\)</span> 2, the Initial Key Agreement (IKA) is utilized to establish a secret key for all participating ECs. Other security mechanisms, like message authentication code and time stamp, are also utilized to enhance the security level of data transmission. Our analyses show that the GKIKA can effectively avoid some types of attacks.</p>","PeriodicalId":13610,"journal":{"name":"Information Systems Frontiers","volume":"7 1","pages":""},"PeriodicalIF":6.9000,"publicationDate":"2024-07-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Information Systems Frontiers","FirstCategoryId":"94","ListUrlMain":"https://doi.org/10.1007/s10796-024-10510-0","RegionNum":3,"RegionCategory":"管理学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}
引用次数: 0

Abstract

Recently, 5G/B5G/6G networks (5G for short) have been gloriously developed to give us colorful lives and make our daily activities more convenient than before. On the other hand, online meetings, like video conferences and online educations, have been popularly held everywhere in the world. Nevertheless, in such a meeting on 5G networks, a packet P transmitted from a User Plane Function (UPF), e.g., UPF1 of a 5G, e.g., 5G1, to P’s destinations, e.g., the set {UPF2, UPF3, …UPFn}, respectively, in {5G2, 5G3, …5Gn}, is not secure, even not encrypted, particularly when P goes through the Internet. Hackers may duplicate P, i.e., data leakage on the connections among these UPFs. The situation needs to be avoided when data of the meetings ought not to be leaked, e.g., for an important military conference. Therefore, in this study, we propose a security architecture, named Group Key using IKA (GKIKA), which encrypts/decrypt packets before sending them, e.g., EC1 in 5G1 encrypts P and then sends P’s ciphertext which will be decrypted by edge computers {EC2, EC3, …ECn} where ECj is in 5Gj, \(2\le j\le n\). Our security scenarios include data transmission among n-parties, n \(\ge\) 2. When n \(=\) 2, symmetric or asymmetric cryptography is adopted depending on the security level and time constraints required. As n \(>\) 2, the Initial Key Agreement (IKA) is utilized to establish a secret key for all participating ECs. Other security mechanisms, like message authentication code and time stamp, are also utilized to enhance the security level of data transmission. Our analyses show that the GKIKA can effectively avoid some types of attacks.

Abstract Image

属于不同 5G/B5G/6G 网络的 UPF 之间的安全性
近来,5G/B5G/6G 网络(简称 5G)光彩夺目,为我们带来了丰富多彩的生活,使我们的日常活动比以前更加便捷。另一方面,视频会议和在线教育等在线会议已在世界各地普及。然而,在 5G 网络上举行这样的会议时,从用户平面功能(UPF)(如 5G1 的 UPF1)向 P 的目的地(如 {UPF2、UPF3、...UPFn} 中的集合 {UPF2、UPF3、...UPFn})传输的数据包 P 并不安全,甚至没有加密,尤其是当 P 通过互联网时。黑客可能会复制 P,即在这些 UPF 之间的连接上泄漏数据。当会议数据不应泄漏时,如重要的军事会议,就需要避免这种情况。因此,在本研究中,我们提出了一种安全架构,命名为使用IKA的组密钥(GKIKA),它在发送数据包之前对其进行加密/解密,例如,5G1中的EC1对P进行加密,然后发送P的密文,密文将由边缘计算机{EC2,EC3,...ECn}解密,其中ECj在5Gj中,(2\le j\le n\)。我们的安全场景包括n方之间的数据传输,n()2。 当n()2时,根据所需的安全级别和时间限制,采用对称或非对称加密技术。当 n (=)2 时,使用初始密钥协议(IKA)为所有参与的 EC 建立密钥。其他安全机制,如信息验证码和时间戳,也被用来提高数据传输的安全级别。我们的分析表明,GKIKA 可以有效避免某些类型的攻击。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
求助全文
约1分钟内获得全文 求助全文
来源期刊
Information Systems Frontiers
Information Systems Frontiers 工程技术-计算机:理论方法
CiteScore
13.30
自引率
18.60%
发文量
127
审稿时长
9 months
期刊介绍: The interdisciplinary interfaces of Information Systems (IS) are fast emerging as defining areas of research and development in IS. These developments are largely due to the transformation of Information Technology (IT) towards networked worlds and its effects on global communications and economies. While these developments are shaping the way information is used in all forms of human enterprise, they are also setting the tone and pace of information systems of the future. The major advances in IT such as client/server systems, the Internet and the desktop/multimedia computing revolution, for example, have led to numerous important vistas of research and development with considerable practical impact and academic significance. While the industry seeks to develop high performance IS/IT solutions to a variety of contemporary information support needs, academia looks to extend the reach of IS technology into new application domains. Information Systems Frontiers (ISF) aims to provide a common forum of dissemination of frontline industrial developments of substantial academic value and pioneering academic research of significant practical impact.
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
确定
请完成安全验证×
copy
已复制链接
快去分享给好友吧!
我知道了
右上角分享
点击右上角分享
0
联系我们:info@booksci.cn Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。 Copyright © 2023 布克学术 All rights reserved.
京ICP备2023020795号-1
ghs 京公网安备 11010802042870号
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术官方微信