Authors: Filippo Giambartolomei, Marc Barceló, Alessandro Brighente, Aitor Urbieta, Mauro Conti

Published on: March 04, 2024

Impact Score: 8.2

Arxiv code: Arxiv:2403.01871

Summary

• What is new: This paper presents the first security assessment of the 5G core from a web security perspective using the STRIDE threat modeling.
• Why this is important: There is no existing security assessment of the web security of the 5G core network, which is vulnerable to attacks.
• What the research proposes: The paper uses STRIDE threat modeling approach and a suite of security testing tools to define and test against possible threat vectors on the 5G core.
• Results: All tested open-source 5G core implementations (Open5GS, Free5Gc, and OpenAirInterface) are found to be vulnerable to at least two identified attack vectors.

Technical Details

Technological frameworks used: STRIDE

Models used: Security testing tools

Data used: Open5GS, Free5Gc, OpenAirInterface

Potential Impact

Telecommunications industry, especially companies deploying or planning to deploy 5G networks, could benefit or need to reassess their security measures.

Want to implement this idea in a business?

We have generated a startup concept here: SecureCore5G.