当前位置:首页 > 报告详情

破解5G堡垒:窥探5G的脆弱深渊.pdf

上传人: 竿*** 编号:981606 2025-11-29 44页 2.61MB

1、#BHUSA BlackHatEventsCracking the 5G Fortress:Peering Cracking the 5G Fortress:Peering Into 5Gs Vulnerability AbyssInto 5Gs Vulnerability AbyssSpeakers:Kai Tu,Yilu DongContributors:Abdullah Al Ishtiaq,Syed Md Mukit Rashid,Weixuan Wang,Tianwei Wu,Syed Rafiul Hussain#BHUSA BlackHatEventsWho We AreKai

2、TuPhD StudentMobile Network and Device Security,Automatic Vulnerability Discovery hellotkk.github.ioYilu DongPhD StudentCellular Networks,Applied Cryptography,and Software Testingyilud.me#BHUSA BlackHatEvents5G Network Roles and Applications#BHUSA BlackHatEvents Users will run into critical problems

3、 if basebands are not secure.Compromised 5G device may also affect other components in 5G network.Why is 5G Baseband Security Important?Source:https:/ BlackHatEventsHow secure are the 5G devices?Can we develop an automated way to test them?We are curious#BHUSA BlackHatEventsWhat we Are Going to Talk

4、 About Today 5G cellular network overview Workflow of our automated 5G baseband testing tool Summary of findings 5G AKA bypass end-to-end exploitations demos Impact and Status Takeaways#BHUSA BlackHatEvents5G Network ArchitectureAMF5G UEgNodeBUDMSMFUPF5G Core NetworkInternet#BHUSA BlackHatEvents5G C

5、ontrol PlaneRadio connectionSecurity Mode Control ProcedureAuthentication ProcedureAS Security ActivationRegistered to Core Network and ready to get servicesNASRRC#BHUSA BlackHatEventsOur ScopeAMFUEgNBUDMSMFUPF5G Core NetworkInternet#BHUSA BlackHatEventsWhy can protocol implementations in commercial

6、 basebands go wrong?Baseband Protocol Implementation-Easy Work?#BHUSA BlackHatEventsBaseband protocol is hard to ImplementHundreds of documentsDifficult to understandConflicts and underspecifications#BHUSA BlackHatEventsNon-compliant behavior may lead to Exploitable vulnerabilitiesInteroperability i

word格式文档无特别注明外均可编辑修改,预览文件经过压缩,下载原文更清晰!
三个皮匠报告文库所有资源均是客户上传分享,仅供网友学习交流,未经上传用户书面授权,请勿作商用。
根据报告的内容,全文主要内容概括如下: - **5G基带安全重要性**:5G基带不安全可能导致用户遇到严重问题,并可能影响整个5G网络的其他组件。 - **5GBaseChecker工具**:介绍了一种自动化测试5G基带安全的工具,用于识别安全策略违规。 - **测试发现**:在17个设备中发现13个漏洞,涉及5个不同基带供应商和2个开源实现。 - **漏洞类型**:包括信息泄露、拒绝服务、降级和钓鱼等。 - **5G AKA绕过**:演示了CVE-2023-50804漏洞,允许攻击者绕过5G认证和密钥协商过程。 - **测试结果**:所有发现的问题都已报告给相应供应商,并分配了12个CVE编号。 - **结论**:在发货前需要对调制解调器产品进行更多安全测试,黑盒测试是检测逻辑错误的有效方法。
你了解多少?" "5G设备安全测试,自动化时代来临!" "5G网络安全漏洞,黑盒测试如何应对?"
客服
商务合作
小程序
服务号
折叠