Abstract
The fake cell test shall be an important method to research the network information or privacy safety in many scenarios. This article will discuss the possibility of a proposal that how to conduct a fake cell test based on the 5G NR radio control layer message. By using the redirection (cell reselection priority) method, the UE (user equipment) shall be redirected to a specified cell which is described by the ARFCN [1] (absolute radio frequency channel number) and Cell ID. The radio resources control (RRC) layer, which is responsible for the cell camp, selection and reselection operations [2]. Also, the RRC message can be easily decoded by some open-source software, which means that the intruder can obtain the details of the target cell and construct a fake one. The intruder shall be able to catch the user’s data and extract the privacy information. Especially with the development of automobile networks, mobile communication has been widely used on V2X, and the hacking of vehicles is considered more destructive than using mobile phones. The paper introduces a test method of the fake cell and successfully builds the fake cell to test, which also illustrates the limitation of this kind of fake cell test.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Similar content being viewed by others
References
Aaron, X.: Implementation of the GSM Test Network with OpenBTS (in Chinese). 9. 4. 2018. https://blog.csdn.net/xrh003/article/details/79447468. Accessed 17 Feb 2020
3. W. Group: LTE Evolved Universal Terrestrial Radio Access (E-UTRA) Radio Resource Control (RRC) Protocol specification (3GPP TS 36.331 version 9.0.0 Release 9). in Group, 3GPP Work (2009)
Huawei Technologies Co., “Vo5G Technical White Paper. In: Huawei Technologies Co., Ltd. (2018)
3. W. Group: Radio Resource Control (RRC) Protocol Specification (3GPP TS 38.331 version 15.8.0 Release 15), In: 3GPP 5G Work Group (2020)
3. W. Group: Digital cellular telecommunications system (Phase 2 +) Universal Mobile Telecommunications System (UMTS) Circuit Switched (CS) fallback in Evolved Packet System (EPS) Stage 2 (3GPP TS 23.272 version 9.15.0 Release 9), in Group, 3GPP Work (2013)
Ghadialy, Z.: UMTS Security: A Primer, 06 11 2004. https://www.3g4g.co.uk/Tutorial/ZG/zg_security.html. Accessed 30 Mar 2020
3. U. Team, Yang, Q., Huang, L., Zhang, W., Haoqi, S., Jun, L.: Radio security attack and defense revealed (in Chinese), Beijing: Publishing House of Electronics Industry (2016)
OpenBTS.org, “OpenBTS-UMTS,” 2 12 2014. http://openbts.org/w/index.php?title=Main_Page. Accessed 15 Mar 2020
Buchanan, C., Ramachandran, V.: Kali Linux Wireless Penetration Testing Beginner’s Guide (in Chinese). Post & Telecom Press, Beijing (2018)
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2020 Springer Nature Singapore Pte Ltd.
About this paper
Cite this paper
Zhang, Y., Ma, C., Wang, D., Liu, T., Wu, Z. (2020). A Methodology of Fake Cell Test Based on the RRC Redirection or Reselection Priorities from the 5G Network. In: Xiang, Y., Liu, Z., Li, J. (eds) Security and Privacy in Social Networks and Big Data. SocialSec 2020. Communications in Computer and Information Science, vol 1298. Springer, Singapore. https://doi.org/10.1007/978-981-15-9031-3_19
Download citation
DOI: https://doi.org/10.1007/978-981-15-9031-3_19
Published:
Publisher Name: Springer, Singapore
Print ISBN: 978-981-15-9030-6
Online ISBN: 978-981-15-9031-3
eBook Packages: Computer ScienceComputer Science (R0)