{"title":"Security among UPFs belonging to Different 5G/B5G/6G Networks","authors":"Liang-Sheng Hsiao, Kun-Lin Tsai, Jung-Chun Liu, Fang-Yie Leu, Yu-Syuan Lu, I-Long Lin","doi":"10.1007/s10796-024-10510-0","DOIUrl":null,"url":null,"abstract":"<p>Recently, 5G/B5G/6G networks (5G for short) have been gloriously developed to give us colorful lives and make our daily activities more convenient than before. On the other hand, online meetings, like video conferences and online educations, have been popularly held everywhere in the world. Nevertheless, in such a meeting on 5G networks, a packet P transmitted from a User Plane Function (UPF), e.g., UPF<sub>1</sub> of a 5G, e.g., 5G<sub>1</sub>, to P’s destinations, e.g., the set {UPF<sub>2</sub>, UPF<sub>3</sub>, …UPF<sub><i>n</i></sub>}, respectively, in {5G<sub>2</sub>, 5G<sub>3</sub>, …5G<sub><i>n</i></sub>}, is not secure, even not encrypted, particularly when P goes through the Internet. Hackers may duplicate P, i.e., data leakage on the connections among these UPFs. The situation needs to be avoided when data of the meetings ought not to be leaked, e.g., for an important military conference. Therefore, in this study, we propose a security architecture, named Group Key using IKA (GKIKA), which encrypts/decrypt packets before sending them, e.g., EC<sub>1</sub> in 5G<sub>1</sub> encrypts P and then sends P’s ciphertext which will be decrypted by edge computers {EC<sub>2</sub>, EC<sub>3</sub>, …EC<sub><i>n</i></sub>} where EC<sub><i>j</i></sub> is in 5G<sub><i>j</i></sub>, <span>\\(2\\le j\\le n\\)</span>. Our security scenarios include data transmission among <i>n</i>-parties, <i>n</i> <span>\\(\\ge\\)</span> 2. When<i> n</i> <span>\\(=\\)</span> 2, symmetric or asymmetric cryptography is adopted depending on the security level and time constraints required. As <i>n</i> <span>\\(>\\)</span> 2, the Initial Key Agreement (IKA) is utilized to establish a secret key for all participating ECs. Other security mechanisms, like message authentication code and time stamp, are also utilized to enhance the security level of data transmission. Our analyses show that the GKIKA can effectively avoid some types of attacks.</p>","PeriodicalId":13610,"journal":{"name":"Information Systems Frontiers","volume":"7 1","pages":""},"PeriodicalIF":6.9000,"publicationDate":"2024-07-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Information Systems Frontiers","FirstCategoryId":"94","ListUrlMain":"https://doi.org/10.1007/s10796-024-10510-0","RegionNum":3,"RegionCategory":"管理学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}
引用次数: 0
Abstract
Recently, 5G/B5G/6G networks (5G for short) have been gloriously developed to give us colorful lives and make our daily activities more convenient than before. On the other hand, online meetings, like video conferences and online educations, have been popularly held everywhere in the world. Nevertheless, in such a meeting on 5G networks, a packet P transmitted from a User Plane Function (UPF), e.g., UPF1 of a 5G, e.g., 5G1, to P’s destinations, e.g., the set {UPF2, UPF3, …UPFn}, respectively, in {5G2, 5G3, …5Gn}, is not secure, even not encrypted, particularly when P goes through the Internet. Hackers may duplicate P, i.e., data leakage on the connections among these UPFs. The situation needs to be avoided when data of the meetings ought not to be leaked, e.g., for an important military conference. Therefore, in this study, we propose a security architecture, named Group Key using IKA (GKIKA), which encrypts/decrypt packets before sending them, e.g., EC1 in 5G1 encrypts P and then sends P’s ciphertext which will be decrypted by edge computers {EC2, EC3, …ECn} where ECj is in 5Gj, \(2\le j\le n\). Our security scenarios include data transmission among n-parties, n\(\ge\) 2. When n\(=\) 2, symmetric or asymmetric cryptography is adopted depending on the security level and time constraints required. As n\(>\) 2, the Initial Key Agreement (IKA) is utilized to establish a secret key for all participating ECs. Other security mechanisms, like message authentication code and time stamp, are also utilized to enhance the security level of data transmission. Our analyses show that the GKIKA can effectively avoid some types of attacks.
期刊介绍:
The interdisciplinary interfaces of Information Systems (IS) are fast emerging as defining areas of research and development in IS. These developments are largely due to the transformation of Information Technology (IT) towards networked worlds and its effects on global communications and economies. While these developments are shaping the way information is used in all forms of human enterprise, they are also setting the tone and pace of information systems of the future. The major advances in IT such as client/server systems, the Internet and the desktop/multimedia computing revolution, for example, have led to numerous important vistas of research and development with considerable practical impact and academic significance. While the industry seeks to develop high performance IS/IT solutions to a variety of contemporary information support needs, academia looks to extend the reach of IS technology into new application domains. Information Systems Frontiers (ISF) aims to provide a common forum of dissemination of frontline industrial developments of substantial academic value and pioneering academic research of significant practical impact.