Survey of 5G Network Security Vulnerability Discovery and Classification Solutions

Abstract

Abstract: Discovering and solving 5G network security threats is an important means to ensure the stable operation of 5G network and user data security. By summarizing the new features of 5G network, this paper analyzes the security challenges faced by 5G network, systematically discusses the methods of discovering 5G security threats, classifies 5G security threats from the perspective of functional architecture, outlines the solutions and disposal measures of security threats, and looks forward to the impact of related technologies on the discovery and resolution of future 5G security threats. This paper aims to provide a reference framework for researchers and practitioners to discover and resolve 5G security threats.

Key words: 5G security challenges, threat detection methods, security threat classification, threat disposal measures

摘要： 发现及解决5G网络安全威胁是保障5G网络的稳定运行和用户数据安全的重要手段.通过概述5G网络的新特征，分析了5G网络所面临的独特安全挑战，系统地探讨了5G安全威胁发现方法，从功能架构的角度对5G安全威胁进行分类，概述了安全威胁的解决方法与处置措施，并展望相关技术对未来5G安全威胁发现及解决的影响，旨在为研究人员和实践者提供一个5G安全威胁发现与解决方法的参考框架.

关键词: 5G安全挑战, 威胁检测方法, 安全威胁分类, 威胁处置措施

CLC Number:

王瀚洲, 周洺宇, 刘建伟, 蔡林沁, 李东禹, . 5G网络安全威胁发现及解决方法综述[J]. 信息安全研究, 2024, 10(4): 340-.

References

［1］邬贺铨. 5G时代的网络安全挑战与服务［J］. 中国信息安全, 2020 (10): 3033［2］杨红梅, 冯泽冰, 邱勤,等. 5G安全知识库［R］. 北京: 中国信息通信研究院, 2021［3］3rd Generation Partnership Project (3GPP). 3GPP TS 23.503 V18.1.0 Policy and Charging Control Framework for the 5G System (5GS) (Release 18)［SOL］. 2023 ［20230501］. https:www.3gpp.orgftpSpecsarchive23_series23.503［4］3rd Generation Partnership Project (3GPP). 3GPP TS 33.521 V17.2.0 5G Security Assurance Specification; Network Data Analytics Function (NWDAF) (Release 17)［SOL］. 2023 ［20230501］. https:www.3gpp.orgftpSpecsarchive33_series33.521［5］The 5G Infrastructure Public Private Partnership (5G PPP). 5G PPP 5GENSURE Security and Privacy Enablers［EBOL］. ［20230501］. https:5gppp.eu5gensuresecurityandprivacyenablers［6］王建英, 吕俟林, 李文江. 5G网络安全监测预警机制浅析［J］. 通信技术, 2020, 54(11): 27802785［7］徐国荣. 5G网络安全监测预警机制［J］. 数字通信世界, 2021(10): 137138［8］陶宏才.安全协议结构及其范式研究［D］. 成都: 西南交通大学, 2007［9］Burrows M, Abadi M, Needham R. A logic of authentication［J］. ACM Trans on Computer Systems, 1990, 8(1): 1836［10］Gong L, Needham R M, Yahalom R. Reasoning about belief in cryptographic protocols［C］ Proc of IEEE Symp on Security and Privacy. Piscataway, NJ: IEEE, 1990: 234248［11］Abadi M, Tuttle M R. A semantics for a logic of authentication［C］ Proc of the 10th Annual ACM Symp on Principles of Distributed Computing. New York: ACM, 1991: 201216［12］Syverson P F, Van Oorschot P C. On unifying some cryptographic protocol logics［C］ Proc of the 1994 IEEE Computer Society Symp on Research in Security and Privacy. Piscataway, NJ: IEEE, 1994: 1428［13］Millen J K, Clark S C, Freedman S B. The interrogator: Protocolsecuity analysis［J］. IEEE Trans on Software Engineering, 1987, 13(2): 274288［14］Meadows C. The NRL protocol analyzer: An overview［J］. The Journal of Logic Programming, 1996, 26(2): 113131［15］Dolev D, Yao A. On the security of public key protocols［J］. IEEE Trans on Information Theory, 1983, 29(2): 198208［16］Meier S, Schmidt B, Cremers C, et al. The TAMARIN prover for the symbolic analysis of security protocols［C］ Proc of the 25th Int Conf on Computer Aided Verification. Berlin: Springer, 2013: 696701［17］Sidhu D P. Authentication protocols for computer networks: I［J］. Computer Networks and ISDN Systems, 1986, 11(4): 297310［18］Varadharajan V. Verification of network security protocols［J］. Computers & Security, 1989, 8(8): 693708［19］Bolignano D. An approach to the formal verification of cryptographic protocols［C］ Proc of the 3rd ACM Conf on Computer and Communications Security. New York: ACM, 1996: 106118［20］Paulson L C. Proving properties of security protocols by induction［C］ Proc of the 10th Computer Security Foundations Workshop. Piscataway, NJ: IEEE, 1997: 7083［21］Fábrega F J T, Herzog J C, Guttman J D. Honest ideals on strand spaces［C］ Proc of the 11th IEEE Computer Security Foundations Workshop. Piscataway, NJ: IEEE, 1998: 6677［22］Basin D, Dreier J, Hirschi L, et al. A formal analysis of 5G authentication［C］ Proc of the 2018 ACM SIGSAC Conf on Computer and Communications Security. New York: ACM, 2018: 13831396［23］李晓逸. 5G认证协议设计及形式化验证［D］. 北京: 北京交通大学, 2021［24］Xiao Y, Gao S. Formal verification and analysis of 5G AKA protocol using mixed strand space model［J］. Electronics, 2022, 11(9): 1333［25］余晓光, 曹扬, 张国翊, 等. 5G安全靶场技术与关键能力研究［J］. 保密科学技术, 2021, 129(6): 2936［26］The MathWorks, Inc. 5G Toolbox: Simulate, analyze, and test 5G communications systems［CPOL］. ［20230501］. https:www.mathworks.comproducts5g［27］Mark T. The challenges of fuzzing 5G protocols［ROL］. Manchester: NCC Group, 2021［20230501］. https:research.nccgroup.com20211011thechallengesoffuzzing5gprotocols［28］解晓青, 余晓光, 余滢鑫,等. 5G网络安全渗透测试框架和方法［J］. 信息安全研究, 2021, 7(9): 795801［29］邱勤, 刘胜兰, 韩晓露,等. 5G应用安全参考架构与解决方案研究［J］. 信息安全研究, 2020, 6(8): 680687［30］邵晓萌, 韩文婷. 5G网络攻击技术研究及防护建议［J］. 信息通信技术与政策, 2022 (12): 7981［31］王蕴实, 张曼君, 徐雷,等. 5G核心网异网漫游安全风险及安全防护策略［J］. 通信世界, 2022 (17): 3941［32］刘建伟, 韩祎然, 刘斌, 等. 5G网络切片安全模型研究［J］. 信息网络安全, 2020, 20(4): 111［33］张鑫亮. 面向安全需求的网络切片部署与调整方法研究［D］. 郑州: 战略支援部队信息工程大学, 2022［34］彭健, 李文彬, 陈丰. 5G网络能力开放安全架构和流程研究［J］. 邮电设计技术, 2023 (4): 1016［35］王东升, 孙凡清等. 电力5G业务切片全生命周期研究［J］. 电力信息与通信技术, 2020, 18(8): 102108.［36］杨红梅, 王亚楠. 5G边缘计算安全关键问题及标准研究［J］. 信息安全研究, 2021, 7(5): 390395［37］庄小君, 杨波, 杨利民, 等. 面向垂直行业的5G边缘计算安全研究［J］. 保密科学技术, 2020, 120(9): 2027［38］3GPP. 3GPP TS 33.501 V18.1.0. Security architecture and procedures for 5G system (Release 18)［SOL］. (20230330) ［20230501］. https:www.3gpp.orgftpSpecsarchive33_series33.501［39］郑东, 张应辉. 密码技术在5G安全中的应用［J］. 信息安全与通信保密, 2019 (1): 5058［40］尹魏昕, 贾咏哲, 高艳松,等. 物理不可克隆函数(PUF)研究综述［J］. 网络安全技术与应用, 2018 (6): 4142, 54［41］陆海涛, 李刚, 高旭昇. 5G网络的设备及其接入安全［J］. 中兴通讯技术, 2019, 25(4): 1924, 55［42］Seok B,Sicato J C S, Erzhena T, et al. Secure D2D communication for 5G IoT network based on lightweight cryptography［J］. Applied Sciences, 2019, 10(1): 217［43］Wang M, Yan Z, Niemi V. UAKAD2D: Universal authentication and key agreement protocol in D2D communications［J］. Mobile Networks and Applications, 2017, 22(3): 510525［44］Sun Y, Cao J, Ma M, et al. Privacypreserving device discovery and authentication scheme for D2D communication in 3GPP 5G HetNet［C］ Proc of the 2019 Int Conf on Computing, Networking and Communications (ICNC). Piscataway, NJ: IEEE, 2019: 425431［45］Zhang A, Lin X. Securityaware and privacypreserving D2D communications in 5G［J］. IEEE Network, 2017, 31(4): 7077［46］邱勤, 张弘扬, 张峰,等. 网络虚拟化安全技术研究［J］. 保密科学技术, 2022 (9): 5864［47］GonzálezGranadillo G, GonzálezZarzosa S, Diaz R. Security information and event management (SIEM): Analysis, trends, and usage in critical infrastructures［J］. Sensors, 2021, 21(14): 4759［48］王丽娜, 王斐, 刘维杰. 面向SDN的安全威胁及其对抗技术研究［J］. 武汉大学学报: 理学版, 2019, 65(2): 153164［49］陈紫晨. 异构无线网络干扰抑制技术研究［D］. 西安: 西安电子科技大学, 2019［50］成思玥, 李华圣. 基于无线电管理的5G技术发展趋势研究［J］. 中国无线电, 2015 (4): 1920［51］王永娟, 樊昊鹏, 代政一,等. 侧信道攻击与防御技术研究进展［J］. 计算机学报, 2023, 46(1): 202228

[1]	. Theoretical and Legislative Research on State Ownership of Public Data [J]. Journal of Information Security Reserach, 2024, 10(4): 377-.
[2]	. Research on Procuratorial Civil Public Interest Litigation System in the Field of Personal Information Protection [J]. Journal of Information Security Reserach, 2024, 10(4): 383-.
[3]	. Multi-party Shuffling Protocol Based on Elastic Secret Sharing [J]. Journal of Information Security Reserach, 2024, 10(4): 347-.
[4]	. Research on Banking DAO Digital Security Operation System [J]. Journal of Information Security Reserach, 2024, 10(4): 360-.
[5]	. A Formal Modeling and Verification Method for Bitcoin Payment Protocol [J]. Journal of Information Security Reserach, 2024, 10(4): 311-.
[6]	. Research on the Latticebased Access Control Encryption Technology [J]. Journal of Information Security Reserach, 2024, 10(4): 318-.
[7]	. Research on Privacy Protection Technology in Federated Learning [J]. Journal of Information Security Reserach, 2024, 10(3): 194-.
[8]	. A Comparative Research on Hash Function in Blockchain in Post Quantum Era#br# #br# [J]. Journal of Information Security Reserach, 2024, 10(3): 223-.
[9]	. The Path and Choice of Improving Legislation of Personal Information Right [J]. Journal of Information Security Reserach, 2024, 10(3): 263-.
[10]	. Research on Location Attack Detection of VANET Based on Incremental Learning [J]. Journal of Information Security Reserach, 2024, 10(3): 277-.
[11]	. Survey of 5G Network Security Vulnerability Discovery and Classification Solutions [J]. Journal of Information Security Reserach, 0, (): 340-.
[12]	. Multi-party Shuffling Protocol Based on Elastic Secret Sharing [J]. Journal of Information Security Reserach, 0, (): 347-.
[13]	. Research on Banking DAO Digital Security Operation System [J]. Journal of Information Security Reserach, 0, (): 360-.
[14]	. Research on Identity Authentication Technology Based on Block Chain and PKI [J]. Journal of Information Security Reserach, 2024, 10(2): 148-.
[15]	. Research on Locally Verifiable Aggregate Signature Algorithm Based on SM2 [J]. Journal of Information Security Reserach, 2024, 10(2): 156-.