Privacy-preserved mutually-trusted 5G communications in presence of pervasive attacks

IF 6 3区计算机科学 Q1 COMPUTER SCIENCE, INFORMATION SYSTEMS

Internet of Things Pub Date : 2025-01-11 DOI:10.1016/j.iot.2025.101491

Yomna Ibrahim , Mai A. Abdel-Malek , Mohamed Azab , Mohamed RM Rizk

{"title":"Privacy-preserved mutually-trusted 5G communications in presence of pervasive attacks","authors":"Yomna Ibrahim , Mai A. Abdel-Malek , Mohamed Azab , Mohamed RM Rizk","doi":"10.1016/j.iot.2025.101491","DOIUrl":null,"url":null,"abstract":"<div><div>Ensuring secure fifth-generation (5G) cellular communications is crucial for protecting the privacy of Internet of Things (IoT) devices, especially wearables that can disclose sensitive information if the communication stream is compromised. Confidentiality must be maintained for personal health metrics, location data, and other private information transmitted over cellular networks. Users inherently trust cellular infrastructure protocols to deliver robust security. Therefore, the security provided by 5G networks is indispensable, as it mitigates cyber threats and ensures the integrity and confidentiality of data collected and transmitted by wearables and other IoT devices, thereby upholding user privacy in the increasingly connected IoT ecosystem. The 5G Authentication and Key Agreement (5G-AKA) protocol builds upon and enhances its fourth-generation (4G) predecessor to address and proactively mitigate inherited vulnerabilities. However, it still faces multiple vulnerabilities, primarily due to the lack of mutual authentication in the access and the unprotected signaling during the 5G-AKA procedure further increases exposure. This paper highlights vulnerabilities in the 5G-AKA protocol related to user privacy and data availability, particularly those emerging during bootstrapping and from unprotected messages within the AKA procedure. We propose security enhancements within the bootstrapping and 5G-AKA procedures to address the lack of authentication between the User Equipment (UE) and the Serving Network (SN) and to encapsulate unprotected messages within the 5G-AKA signaling. To demonstrate the effectiveness of our proposed security enhancements, we conduct both qualitative and formal security analyses. Furthermore, the proposed authentication algorithm is implemented as a part of a 5G-based communication simulation to investigate the increased computational and communication delays associated with the proposed security enhancements.</div></div>","PeriodicalId":29968,"journal":{"name":"Internet of Things","volume":"30 ","pages":"Article 101491"},"PeriodicalIF":6.0000,"publicationDate":"2025-01-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Internet of Things","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S2542660525000046","RegionNum":3,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

Ensuring secure fifth-generation (5G) cellular communications is crucial for protecting the privacy of Internet of Things (IoT) devices, especially wearables that can disclose sensitive information if the communication stream is compromised. Confidentiality must be maintained for personal health metrics, location data, and other private information transmitted over cellular networks. Users inherently trust cellular infrastructure protocols to deliver robust security. Therefore, the security provided by 5G networks is indispensable, as it mitigates cyber threats and ensures the integrity and confidentiality of data collected and transmitted by wearables and other IoT devices, thereby upholding user privacy in the increasingly connected IoT ecosystem. The 5G Authentication and Key Agreement (5G-AKA) protocol builds upon and enhances its fourth-generation (4G) predecessor to address and proactively mitigate inherited vulnerabilities. However, it still faces multiple vulnerabilities, primarily due to the lack of mutual authentication in the access and the unprotected signaling during the 5G-AKA procedure further increases exposure. This paper highlights vulnerabilities in the 5G-AKA protocol related to user privacy and data availability, particularly those emerging during bootstrapping and from unprotected messages within the AKA procedure. We propose security enhancements within the bootstrapping and 5G-AKA procedures to address the lack of authentication between the User Equipment (UE) and the Serving Network (SN) and to encapsulate unprotected messages within the 5G-AKA signaling. To demonstrate the effectiveness of our proposed security enhancements, we conduct both qualitative and formal security analyses. Furthermore, the proposed authentication algorithm is implemented as a part of a 5G-based communication simulation to investigate the increased computational and communication delays associated with the proposed security enhancements.

查看原文本刊更多论文

求助全文

约1分钟内获得全文求助全文

来源期刊

Internet of Things Multiple-

CiteScore

3.60

自引率

5.10%

发文量

115

审稿时长

37 days

期刊介绍： Internet of Things; Engineering Cyber Physical Human Systems is a comprehensive journal encouraging cross collaboration between researchers, engineers and practitioners in the field of IoT & Cyber Physical Human Systems. The journal offers a unique platform to exchange scientific information on the entire breadth of technology, science, and societal applications of the IoT. The journal will place a high priority on timely publication, and provide a home for high quality. Furthermore, IOT is interested in publishing topical Special Issues on any aspect of IOT.