使用OpenBTS和软件定义无线电的物联网节点脆弱性评估

2020 3rd International Conference on Signal Processing and Information Security (ICSPIS) Pub Date : 2020-11-25 DOI:10.1109/ICSPIS51252.2020.9340151

José de Jesús Rugeles Uribe, E. Guillén

{"title":"使用OpenBTS和软件定义无线电的物联网节点脆弱性评估","authors":"José de Jesús Rugeles Uribe, E. Guillén","doi":"10.1109/ICSPIS51252.2020.9340151","DOIUrl":null,"url":null,"abstract":"Large-scale cyber attacks using IoT devices have increased in recent years. One of the strategies to deal with this problem is the use of penetration test techniques. The aim of this study was to develop a vulnerability assessment for an IoT M2M node that uses GSM technology. A test scenario was designed consisting of a GMS network created using USRP N210 and OpenBTS radios in a multicell configuration. An IoT-GSM node was designed from a sim8001 radio module, used in several M2M devices. The IoT node stores the measurements of the radio bases operational parameters that make up the GSM network. An algorithm for controlling an attacking base radio was designed using the OpenBTS API, which allows the deployment of a “man in the middle” attack. The entire test deployment can be carried out remotely. Analysis of the results of the measurements obtained lets us understand the attack's behavior in detail and determine the IoT-GSM node's vulnerability. The results obtained show the potential of SDR and OpenBTS technology as penetration test tools to analyze vulnerabilities of IoT systems.","PeriodicalId":373750,"journal":{"name":"2020 3rd International Conference on Signal Processing and Information Security (ICSPIS)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-11-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"Vulnerability Assessment for IoT Nodes Using OpenBTS and Software Defined Radios\",\"authors\":\"José de Jesús Rugeles Uribe, E. Guillén\",\"doi\":\"10.1109/ICSPIS51252.2020.9340151\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Large-scale cyber attacks using IoT devices have increased in recent years. One of the strategies to deal with this problem is the use of penetration test techniques. The aim of this study was to develop a vulnerability assessment for an IoT M2M node that uses GSM technology. A test scenario was designed consisting of a GMS network created using USRP N210 and OpenBTS radios in a multicell configuration. An IoT-GSM node was designed from a sim8001 radio module, used in several M2M devices. The IoT node stores the measurements of the radio bases operational parameters that make up the GSM network. An algorithm for controlling an attacking base radio was designed using the OpenBTS API, which allows the deployment of a “man in the middle” attack. The entire test deployment can be carried out remotely. Analysis of the results of the measurements obtained lets us understand the attack's behavior in detail and determine the IoT-GSM node's vulnerability. The results obtained show the potential of SDR and OpenBTS technology as penetration test tools to analyze vulnerabilities of IoT systems.\",\"PeriodicalId\":373750,\"journal\":{\"name\":\"2020 3rd International Conference on Signal Processing and Information Security (ICSPIS)\",\"volume\":\"1 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2020-11-25\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2020 3rd International Conference on Signal Processing and Information Security (ICSPIS)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICSPIS51252.2020.9340151\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2020 3rd International Conference on Signal Processing and Information Security (ICSPIS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICSPIS51252.2020.9340151","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

摘要

近年来，使用物联网设备的大规模网络攻击有所增加。处理这个问题的策略之一是使用渗透测试技术。本研究的目的是为使用GSM技术的物联网M2M节点开发漏洞评估。设计了一个测试场景，包括在多小区配置中使用USRP N210和OpenBTS无线电创建的GMS网络。基于sim8001无线电模块设计了一个IoT-GSM节点，用于多个M2M设备。物联网节点存储构成GSM网络的无线电基站操作参数的测量值。使用OpenBTS API设计了一种控制攻击基础无线电的算法，该算法允许部署“中间人”攻击。整个测试部署可以远程执行。对获得的测量结果进行分析，可以让我们详细了解攻击行为，并确定IoT-GSM节点的脆弱性。获得的结果表明，SDR和OpenBTS技术作为渗透测试工具分析物联网系统漏洞的潜力。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Vulnerability Assessment for IoT Nodes Using OpenBTS and Software Defined Radios

Large-scale cyber attacks using IoT devices have increased in recent years. One of the strategies to deal with this problem is the use of penetration test techniques. The aim of this study was to develop a vulnerability assessment for an IoT M2M node that uses GSM technology. A test scenario was designed consisting of a GMS network created using USRP N210 and OpenBTS radios in a multicell configuration. An IoT-GSM node was designed from a sim8001 radio module, used in several M2M devices. The IoT node stores the measurements of the radio bases operational parameters that make up the GSM network. An algorithm for controlling an attacking base radio was designed using the OpenBTS API, which allows the deployment of a “man in the middle” attack. The entire test deployment can be carried out remotely. Analysis of the results of the measurements obtained lets us understand the attack's behavior in detail and determine the IoT-GSM node's vulnerability. The results obtained show the potential of SDR and OpenBTS technology as penetration test tools to analyze vulnerabilities of IoT systems.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2020 3rd International Conference on Signal Processing and Information Security (ICSPIS)

自引率

0.00%

发文量