• 中国计算机学会会刊
  • 中国科技核心期刊
  • 中文核心期刊

计算机工程与科学 ›› 2024, Vol. 46 ›› Issue (12): 2149-2157.

• 计算机网络与信息安全 • 上一篇    下一篇

5G-AKA认证机制脆弱性分析与验证

韩晓璇,周文安,韩震


  

  1. (北京邮电大学计算机学院,北京 100876) 

  • 收稿日期:2023-04-17 修回日期:2023-12-14 接受日期:2024-12-25 出版日期:2024-12-25 发布日期:2024-12-23

Vulnerability analysis and verification of 5G-AKA authentication mechanism

HAN Xiao-xuan,ZHOU Wen-an,HAN Zhen   

  1. (School of Computer Science,Beijing University of Posts and Telecommunications,Beijing 100876,China)
  • Received:2023-04-17 Revised:2023-12-14 Accepted:2024-12-25 Online:2024-12-25 Published:2024-12-23

PDF

199

摘要: 鉴权认证机制的安全性研究一直是移动通信领域重要的关注点,每一代移动通信标准都制定了不同的认证密钥协议(AKA)。随着5G物联网中接入终端类型和接入场景的多样化,3GPP制定了统一的用户安全接入认证机制5G-AKA,经调研发现该机制仍存在脆弱性。通过分析5G-AKA双向认证流程中的请求参数和响应内容,发现认证流程存在用户身份验证标识(SUPI)泄露的风险,设计了SUPI窃听攻击模型。同时,基于UERANSIM和open5gs测试平台设计了网络拓扑结构和实验场景,模拟信令流量并验证上述模型。

关键词: 安全;鉴权认证机制, 用户身份验证标识

Abstract: Research on the security of authentication mechanism has been an important concern in mobile communication, and each generation of mobile communication standards has developed different authentication and key agreement (AKA). With the diversification of access terminal types and access scenarios in 5G IoT, 3GPP has developed an unified user security access authentication mechanism, 5G-AKA, which is still found to be vulnerable after investigation. In this paper, by analyzing the request parameters and response contents in the bidirectional authentication process of 5G-AKA, the risk of user authentication identifier (SUPI) leakage is found, and a SUPI eavesdropping attack model is designed. Based on the UERANSIM and open5gs testing platforms, this paper designs the network topology and experimental scenarios, simulating signaling traffic to validate the aforementioned model.

Key words: security, authentication mechanism, user authentication identifier

湘公网安备 43010502000083号

湘ICP备10006030号

版权所有 © 《计算机工程与科学》 编辑部

地址:中国湖南省长沙市开福区德雅路109号(410073) 电话:0731-87002567 Email: jsjgcykx@vip.163.com

本系统由北京玛格泰克科技发展有限公司设计开发 技术支持:support@magtech.com.cn