liu.seSearch for publications in DiVA
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • oxford
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
5G Handover: When Forward Security Breaks
Linköping University, Department of Computer and Information Science, Software and Systems. Linköping University, Faculty of Science & Engineering. (IDA-SAS-RTSLAB)ORCID iD: 0000-0003-0123-1970
Linköping University, Department of Computer and Information Science, Software and Systems. Linköping University, Faculty of Science & Engineering. (IDA-SAS-RTSLAB)ORCID iD: 0000-0002-1485-0802
2023 (English)In: Proceedings of the 20th International Conference on Security and Cryptography / [ed] Sabrina De Capitani di Vimercati and Pierangela Samarati, Rome, Italy: SciTePress, Science and Technology Publications , 2023, Vol. 1, p. 503-510Conference paper, Published paper (Other academic)
Abstract [en]

5G mobility management is dependent on a couple of complex protocols for managing handovers, based on the available network interfaces (such as Xn and N2). In our work, we focus on the 5G Xn handover procedure, as defined by the 3GPP standard. In Xn handovers, the source base station hands the user equipment (UE) over to a target base station through two different mechanisms: horizontal or vertical key derivation. To ascertain the security of these complex protocols, recent works have formally described the protocols and proved some security properties. In this work, we formulate a new property, forward security, which ensures the secrecy of future handovers following a session key exchange in one handover. Using a formal model and the Tamarin prover, we show that forward security breaks in the 5G Xn handover in presence of an untrusted base station. We also propose a solution to mitigate this counter-example with a small modification of the 3GPP Xn handover procedures based on the p erceived source base station state.

Place, publisher, year, edition, pages
Rome, Italy: SciTePress, Science and Technology Publications , 2023. Vol. 1, p. 503-510
Series
Proceedings of the 20th International Conference on Security and Cryptography, ISSN 2184-7711
Keywords [en]
5G Xn Handover Protocol, Forward Security, Protocol Verification, Formal Analysis
National Category
Computer Sciences
Identifiers
URN: urn:nbn:se:liu:diva-196990DOI: 10.5220/0012128400003555ISI: 001072829100047ISBN: 9789897586668 (electronic)OAI: oai:DiVA.org:liu-196990DiVA, id: diva2:1788687
Conference
SECRYPT 2023, 20th International Conference on Security and Cryptography, July 10-12, 2023, in Rome, Italy
Funder
ELLIIT - The Linköping‐Lund Initiative on IT and Mobile Communications, B04
Note

Funding: ELLIIT, Excellence Center at Linkoping-Lund on Information Technology

Available from: 2023-08-16 Created: 2023-08-16 Last updated: 2023-11-15Bibliographically approved

Open Access in DiVA

fulltext(267 kB)142 downloads
File information
File name FULLTEXT01.pdfFile size 267 kBChecksum SHA-512
d1be8b0e7e875b6de973f4eacd078c2a078e3a7af548b7552e9dfac18ea6cd274a0e4209b158ab16a9151d616d7cfeecca3ad7ea98a66454b2467c03e4a1aed5
Type fulltextMimetype application/pdf

Other links

Publisher's full text

Authority records

Sivaraman, Navya

Search in DiVA

By author/editor
Sivaraman, NavyaTehrani, Simin-Nadjm
By organisation
Software and SystemsFaculty of Science & Engineering
Computer Sciences

Search outside of DiVA

GoogleGoogle Scholar
Total: 145 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

doi
isbn
urn-nbn

Altmetric score

doi
isbn
urn-nbn
Total: 449 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • oxford
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf