Litcius/Paper detail

A Vulnerability Assessment of Open-Source Implementations of Fifth-Generation Core Network Functions

Filippo Dolente, Rosario G. Garroppo, Michele Pagano

2023Future Internet16 citationsDOIOpen Access PDF

Abstract

The paper presents an experimental security assessment within two widely used open-source 5G projects, namely Open5GS and OAI (Open-Air Interface). The examination concentrates on two network functions (NFs) that are externally exposed within the core network architecture, i.e., the Access and Mobility Management Function (AMF) and the Network Repository Function/Network Exposure Function (NRF/NEF) of the Service-Based Architecture (SBA). Focusing on the Service-Based Interface (SBI) of these exposed NFs, the analysis not only identifies potential security gaps but also underscores the crucial role of Mobile Network Operators (MNOs) in implementing robust security measures. Furthermore, given the shift towards Network Function Virtualization (NFV), this paper emphasizes the importance of secure development practices to enhance the integrity of 5G network functions. In essence, this paper underscores the significance of scrutinizing security vulnerabilities in open-source 5G projects, particularly within the core network’s SBI and externally exposed NFs. The research outcomes provide valuable insights for MNOs, enabling them to establish effective security measures and promote secure development practices to safeguard the integrity of 5G network functions. Additionally, the empirical investigation aids in identifying potential vulnerabilities in open-source 5G projects, paving the way for future enhancements and standard releases.

Topics & Concepts

Computer scienceCore networkComputer securityVulnerability (computing)Function (biology)Network securityCellular networkNetwork architectureRadio access networkNetwork managementComputer networkBase stationBiologyMobile stationEvolutionary biologySoftware-Defined Networks and 5GIoT and Edge/Fog ComputingCloud Data Security Solutions