Toward a Secure Access to 5G Network

Liu, Fuwen; Peng, Jin; Zuo, Min

doi:10.1109/trustcom/bigdatase.2018.00156

Cited by 32 publications

(23 citation statements)

References 2 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The proposed scheme assumes that each UE has a unique identity and establishes a shared secret key with the home network, and the HN is fully trusted. In [23], Liu et. al.…”

Section: Related Workmentioning

confidence: 99%

Secure and Efficient AKA Scheme and Uniform Handover Protocol for 5G Network Using Blockchain

Haddad

Baza

Mahmoud

et al. 2021

IEEE Open J. Commun. Soc.

View full text Add to dashboard Cite

The fifth generation (5G) cellular network provides users with high-quality services due to its high transmission rate and low latency. It will support Internet of Things (IoT) devices and enable new applications in health, banking, education, etc. Security is essential in this network because vulnerabilities may be exploited to disrupt these applications which may directly impact our life. Authentication and key agreement (AKA) and handover (HO) are usually the target of cyberattacks in any cellular network. On the other hand, blockchain is a peer-to-peer network that aims to maintain an immutable and secure ledger. This new technology will be used widely to secure many applications. This paper aims to develop an efficient and secure AKA scheme and uniform handover protocol for 5G network using blockchain. The home network (HN) is not involved in the AKA scheme and HO protocol to protect the HN from attacks, such as denial of service (DoS) attacks, and also lower the communication and computation overhead. Moreover, our HO protocol is uniform in the sense that it can be used for all HO scenarios. The protocol is also efficient because it requires exchanging a few amount of data. It can also achieve forward/backward secrecy. Furthermore, the blockchain is used to verify the public keys of the network nodes which is necessary to secure our AKA scheme and HO protocol. It also records the locations of the users which is necessary for the functionality of the network. Our evaluations demonstrate that the proposed HO protocol is secure, uniform, and can achieve the forward/backward secrecy. Furthermore, our AKA scheme requires lower computation and computation overhead comparing to the existing schemes, and preserves the energy of the limited-energy mobile devices.

show abstract

“…The proposed scheme assumes that each UE has a unique identity and establishes a shared secret key with the home network, and the HN is fully trusted. In [23], Liu et. al.…”

Section: Related Workmentioning

confidence: 99%

Secure and Efficient AKA Scheme and Uniform Handover Protocol for 5G Network Using Blockchain

Haddad

Baza

Mahmoud

et al. 2021

IEEE Open J. Commun. Soc.

View full text Add to dashboard Cite

show abstract

“…Despite the evolutions to the AKA protocol made in each generation, the nutshell of the AAC mechanism stays the same and is based on symmetric cryptography and a secret key shared between the UE and the HN [36]. In 3G and 4G, the identity of the UE (IMSI) is sent in a clear text in the identity request part of the AKA protocol, which allows privacy attacks against the UE [37][38][39][40][41][42][43][44][45][46][47][48]. To address this problem, in 5G, the UE sends its identity protected by asymmetric encryption using the HN's public key.…”

Section: Aka-based Aac Flawsmentioning

confidence: 99%

“…The security flaws of the AKA-based AAC mechanism used in cellular networks, the different attacks against them and their formal security analysis were studied in several pieces of research [38][39][40][41][42][43]. If we focus on 5G-AKA as the main AAC mechanism in 5G, we can see that although it is not in the operational stage yet, some security flaws have already been recognized.…”

Section: Aka-based Aac Flawsmentioning

confidence: 99%

“…The attacker can capture the authentication request message which is sent from the network to the UE (or device) and replay it after. If the UE (or device) answers with the Synchronization Failure message, the attacker determines the presence of the target UE (or device) in a particular area [40][41][42][43]. In [38] the authors introduce the "Location Confidentiality Attack" which is against the user location confidentiality but as it is mentioned in [44], this attack is an extension of the "Linkability Attack".…”

Section: Aka-based Aac Flawsmentioning

confidence: 99%

“…The proposed solutions for addressing the mentioned vulnerability and the attacks are based on the encryption of the failure messages with the public keys of the connectivity providers (operators). But in this case, there is a need for a global PKI (Public Key Infrastructure) among all the operators which is not feasible [41]. The authors in [36] also introduce another attack called "Activity Monitoring Attacks" which is also caused by the transmission of the Synchronization Failure message in clear [42].…”

Section: Aka-based Aac Flawsmentioning

confidence: 99%

See 2 more Smart Citations

A new scalable authentication and access control mechanism for 5G-based IoT

Behrad

Bertin

Tuffin

et al. 2020

Future Generation Computer Systems

View full text Add to dashboard Cite

The fifth generation of mobile networks, 5G, is expected to support a set of many requirements and use cases such as handling connectivity for a massive number of IoT (Internet of Things) devices. Authenticating IoT devices and controlling their access to the network plays a vital role in the security of these devices and of the whole cellular system. In current cellular networks, as well as in 3GPP specifications release 16 on 5G, the AAC (Authentication and Access Control) of IoT devices is done in the same manner as the AAC of MBB (Mobile Broadband) UE (User Equipment). Considering the expected growth of IoT devices, this will likely induce a very high load on the connectivity provider's CN (Core Network) and cause network failures.To manage the AAC of this massive number of devices, we propose an SSAAC (Slice Specific Authentication and Access Control) mechanism that makes use of the flexibility provided by virtualization technologies. This mechanism allows the authentication and access control of IoT devices to be delegated to the 3rd parties providing these devices, thereby decreasing the load of the connectivity provider's CN, while increasing the flexibility and modularity of the whole 5G network. We evaluate the feasibility of our proposal with the OAI (Open Air Interface) open-source platform. Next, we provide a security analysis of the proposal and highlight the security requirements to use with this proposal. We also evaluate the impact of this delegation approach on the network load considering the anticipated number of AAC signaling messages compared to the existing AAC mechanisms in cellular networks. According to these evaluations, our approach is feasible and it would provide cellular networks the opportunity to overcome the security shortcomings in their AAC mechanisms. It also considerably reduces the AAC signaling load on the connectivity provider's CN. IntroductionAlong with mobility, security is one of the most important aspects of cellular systems. AAC (Authentication and access control) plays a vital role in ensuring the expected security level. In 3G and 4G, authentication and access control of subscribers are done through AKA (authentication and key agreement) protocols. These protocols (UMTS-AKA protocol in 3G and EPS-AKA in 4G) are based on the unique identities of subscribers and symmetric cryptographic algorithms [1,2] The system subscribers' identities and the secret keys (that are used in symmetric cryptographic algorithms) are provisioned in secured elements (e.g., SIM cards or embedded SIM) and stored in cellular system's database as well. Executing these AKA protocols to establish a secure connection with the cellular system is mandatory for each UE (composed of a mobile device and a secured element) to obtain its cellular connectivity [1,2]. However, these well-established principles may prevent cellular systems from supporting the connectivity of a massive number of devices [3], in particular when considering the context of the IoT-where a high growth rate of connected devices...

show abstract

Security Challenges in 5G Network

Sahu

Pawar

2022

EAI/Springer Innovations in Communication and Computing

View full text Add to dashboard Cite

Toward a Secure Access to 5G Network

Cited by 32 publications

References 2 publications

Secure and Efficient AKA Scheme and Uniform Handover Protocol for 5G Network Using Blockchain

Secure and Efficient AKA Scheme and Uniform Handover Protocol for 5G Network Using Blockchain

A new scalable authentication and access control mechanism for 5G-based IoT

Security Challenges in 5G Network

Contact Info

Product

Resources

About