TY - GEN
T1 - ASTRA-5G
T2 - 17th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2024
AU - Khandker, Syed
AU - Guerra, Michele
AU - Bitsikas, Evangelos
AU - Jover, Roger Piqueras
AU - Ranganathan, Aanjhan
AU - Pöpper, Christina
N1 - Publisher Copyright:
© 2024 Owner/Author.
PY - 2024/5/27
Y1 - 2024/5/27
N2 - Despite the widespread deployment of 5G technologies, there exists a critical gap in security testing for 5G Standalone (SA) devices. Existing methods, largely manual and labor-intensive, are ill-equipped to fully uncover the state of security in the implementations of 5G SA protocols and standards on devices, severely limiting the ability to conduct comprehensive evaluations. To address this issue, in this work, we introduce a novel, open-source framework that automates the security testing process for 5G SA devices. By leveraging enhanced functionalities of 5G SA core and Radio Access Network (RAN) software, our framework offers a streamlined approach to generating, executing, and evaluating test cases, specifically focusing on the Non-Access Stratum layer. Our application of this framework across multiple 5G SA devices provides in-depth security insights, significantly improving testing efficiency and breadth.
AB - Despite the widespread deployment of 5G technologies, there exists a critical gap in security testing for 5G Standalone (SA) devices. Existing methods, largely manual and labor-intensive, are ill-equipped to fully uncover the state of security in the implementations of 5G SA protocols and standards on devices, severely limiting the ability to conduct comprehensive evaluations. To address this issue, in this work, we introduce a novel, open-source framework that automates the security testing process for 5G SA devices. By leveraging enhanced functionalities of 5G SA core and Radio Access Network (RAN) software, our framework offers a streamlined approach to generating, executing, and evaluating test cases, specifically focusing on the Non-Access Stratum layer. Our application of this framework across multiple 5G SA devices provides in-depth security insights, significantly improving testing efficiency and breadth.
KW - 5g
KW - automated testing
KW - open5gs
KW - security
KW - srsran
UR - http://www.scopus.com/inward/record.url?scp=85198139089&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85198139089&partnerID=8YFLogxK
U2 - 10.1145/3643833.3656141
DO - 10.1145/3643833.3656141
M3 - Conference contribution
AN - SCOPUS:85198139089
T3 - WiSec 2024 - Proceedings of the 17th ACM Conference on Security and Privacy in Wireless and Mobile Networks
SP - 89
EP - 100
BT - WiSec 2024 - Proceedings of the 17th ACM Conference on Security and Privacy in Wireless and Mobile Networks
PB - Association for Computing Machinery, Inc
Y2 - 27 May 2024 through 29 May 2024
ER -