Open RAN security: Challenges and opportunities

Liyanage, Madhusanka; Braeken, An; Shahabuddin, Shahriar; Ranaweera, Pasika

doi:10.1016/j.jnca.2023.103621

Cited by 58 publications

(8 citation statements)

References 56 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…In this section, results of measured throughput are shown for some parameter settings and compared with the maximum throughput calculated using (3). The measurements are done with about one-meter distance between the base station antennas and the modem antennas.…”

Section: ) Measured Throughputmentioning

confidence: 99%

“…The consequence is an incomplete control over the network infrastructure they have invested in. Addressing this challenge, a new paradigm known as open RAN has recently emerged, capturing substantial attention from academia as well as industry [3]. Open RAN solutions promote virtualized RAN where disaggregated components communicate via standardized interfaces.…”

mentioning

confidence: 99%

See 1 more Smart Citation

Performance Evaluation of an Open Source Implementation of a 5G Standalone Platform

Håkegård,

Lundkvist,

Rauniyar

et al. 2024

IEEE Access

View full text Add to dashboard Cite

Fifth-generation (5G) mobile communication systems are currently implemented worldwide. Moreover, the diversity between different deployments is growing, from operator-deployed macro networks to local private networks. The 5G system is very flexible with a large number of parameters and configurations impacting platform performance. With the availability of private spectrum and open-source software, there is an increasing possibility to get insight into what performance can be achieved in different dimensions, and how it depends on the configuration of various parameters, through experiments and testing. This paper presents a detailed account of a 5G Standalone (SA) platform based on the open5GS and srsRAN software suites installed on a general-purpose workstation. The performance of the platform is measured and compared to theoretical results and information from the 3GPP standardisation documentation. While some aspects of the performance are close to the theoretical expectations, others are further away. The softwaredefined radio (SDR) platform and the lack of hardware acceleration are probably the main limiting factors on coverage, uplink throughput and latency. The paper goes through several radio parameters and their impact on performance and discusses the performance implications and limitations of the experimental platform to share the lessons learned.

show abstract

Section: ) Measured Throughputmentioning

confidence: 99%

mentioning

confidence: 99%

Performance Evaluation of an Open Source Implementation of a 5G Standalone Platform

Håkegård,

Lundkvist,

Rauniyar

et al. 2024

IEEE Access

View full text Add to dashboard Cite

show abstract

“…Consequently, internal attackers can perform man-in-the-middle attacks and jeopardize the policy integrity of the Non-RT RIC. Unauthorized policy changes and access can severely impact RAN performance and functionality [4], [10]. • O1 Interface : The O1 interface allows the SMO and the Near-RT RIC to access resources and services.…”

Section: A Threats To O-ran Transport Interfacementioning

confidence: 99%

“…The official O-RAN documentation [4], [5] enumerates a range of potential threats to O-RAN components and interfaces, including U-plane, S-Plane, and C-Plane attacks between O-RU and O-DU [6], malicious base station attacks against O-RU [7], malicious xApps attacks on Near-RT RIC [8], threats arising from the lack of authentication in SMO and O1 [9], and threats to the A1 interface between Non-RT RIC and Near-RT RIC [10]. These threats have been discussed from the O-RAN architecture and components perspectives.…”

Section: Introductionmentioning

confidence: 99%

Security Threats to xApps Access Control and E2 Interface in O-RAN

Hung,

Chen,

Tseng

et al. 2024

IEEE Open J. Commun. Soc.

View full text Add to dashboard Cite

Open Radio Access Networks (O-RANs) represent a novel wireless access network architecture that decomposes traditional RAN functions and makes them openly accessible. O-RANs enable realtime coordination, RAN performance optimization, and management through RAN Intelligent Controllers (RICs) and their related xApps. Due to the openness of O-RAN, developers have the flexibility to download various pre-developed xApps from the internet for deployment. They can even develop their xApps to enhance the flexibility and innovation of the RAN. The current O-RAN official WG11 has defined numerous specifications for secure implementations. However, not only is accurately detecting malicious xApps a significant challenge, but the existing H-Release also does not fully adhere to the specifications in its implementation. This could potentially introduce security risks and threats. In this paper, we implement an experimental O-RAN H-Release environment and discover significant threats from the absence of specified access control permissions for xApps. Malicious attackers can illegally access APIs to utilize other services or launch attacks on legitimate xApps and E2 nodes through the E2 interface, potentially causing a complete RAN disruption. We used the identified vulnerabilities to design three attacks, providing detailed explanations and a comprehensive analysis of their impact on the system. Finally, we also submit the discovered threats to CVEs (CVE-2023-42358 and CVE-2023-41628), providing a reference for O-RAN officials to improve security in the future.

show abstract

“…Espera-se que os componentes da RAN aberta sejam implementados baseados em software de código-fonte aberto e, por isso, herdem as vulnerabilidades conhecidas pela comunidade pelo uso desse tipo de software [Liyanage et al, 2023]. A O-RAN Software Community 2 (OSC) é responsável pela implementação das especificações O-RAN em código aberto.…”

Section: Software De Código-fonte Abertounclassified

Minicursos do XXIII Simpósio Brasileiro de Segurança da Informação e de Sistemas Computacionais

2023

View full text Add to dashboard Cite

Mensagem dos Coordenadores GeraisÉ com imensa alegria e satisfação que recebemos todos no XXIII Simpósio Brasileiro em Segurança da Informação e de Sistemas Computacionais (SBSeg 2023) que será realizado presencialmente, entre os dias 18 a 21 de Setembro de 2023. Esta edição do SBSeg é especial, pois após anos afastados, estamos nos encontrando presencialmente e contribuindo com a consolidação do SBSeg como o mais importante evento nacional na área de segurança. Gostaríamos de agradecer a todos os envolvidos, pelo apoio, dedicação e comprometimento durante a organização do evento. Primeiro, aos patrocinadores que confiaram no SBSeg 2023, pelo incentivo à pesquisa, desenvolvimento e inovação, tão importantes nos dias de hoje: o Comitê Gestor da Internet no Brasil (CGI.br) e o Núcleo de Informação e Coordenação do Ponto BR (NIC.br), a

show abstract

Open RAN security: Challenges and opportunities

Cited by 58 publications

References 56 publications

Performance Evaluation of an Open Source Implementation of a 5G Standalone Platform

Performance Evaluation of an Open Source Implementation of a 5G Standalone Platform

Security Threats to xApps Access Control and E2 Interface in O-RAN

Minicursos do XXIII Simpósio Brasileiro de Segurança da Informação e de Sistemas Computacionais

Contact Info

Product

Resources

About