This paper presents our extensive investigation of the security aspects of control plane procedures based on dynamic testing of the control components in operational Long Term Evolution (LTE) networks. For dynamic testing in LTE networks, we implemented a semi-automated testing tool, named LTEFuzz, by using open-source LTE software over which the user has full control. We systematically generated test cases by defining three basic security properties by closely analyzing the standards. Based on the security property, LTEFuzz generates and sends the test cases to a target network, and classifies the problematic behavior by only monitoring the device-side logs. Accordingly, we uncovered 36 vulnerabilities, which have not been disclosed previously. These findings are categorized into five types: Improper handling of (1) unprotected initial procedure, (2) crafted plain requests, (3) messages with invalid integrity protection, (4) replayed messages, and (5) security procedure bypass. We confirmed those vulnerabilities by demonstrating proof-of-concept attacks against operational LTE networks. The impact of the attacks is to either deny LTE services to legitimate users, spoof SMS messages, or eavesdrop/manipulate user data traffic. Precise root cause analysis and potential countermeasures to address these problems are presented as well. Cellular carriers were partially involved to maintain ethical standards as well as verify our findings in commercial LTE networks.
Lightning is one of the most troubling weather phenomena for weather forecasters at space centers. In this study, proximity sounding and lightning data were used to evaluate the utility of thermodynamic and kinematic parameters for forecasting lightning prior to launch operations. Various parameters from 4138 radio sounding observations at five sites and cloud-to-ground (CG) stroke data from the Korea Meteorological Administration's Lightning Detection Network (KLDN) over South Korea during 2004-09 were used. To support launch operations, forecasts of the total membership function for lightning (TMF) were derived from the combination of membership functions of selected thermodynamic and kinematic parameters with each objective weight using a fuzzy logic algorithm. The forecast skill of TMF was evaluated by computing several skill statistics, which include probability of detection (POD), false alarm rate (FAR), percent correct (PC), critical success index (CSI), and the true skill statistic (TSS). The lightning forecasting method for Gwangju, South Korea (site nearest to the Naro Space Center), was found to have a POD of 0.68, an FAR of 0.45, a PC of 0.76, a CSI of 0.44, and a TSS of 0.47.
scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.