Security of Open Radio Access Networks

Dudu Mimran; Ron Bitton; Yehonatan Kfir; Eitan Klevansky; Oleg Brodt; Heiko Lehmann; Yuval Elovici; Asaf Shabtai

doi:10.1016/j.cose.2022.102890

Security of Open Radio Access Networks

Dudu Mimran, Ron Bitton, Yehonatan Kfir, Eitan Klevansky, Oleg Brodt, Heiko Lehmann, Yuval Elovici, Asaf Shabtai

Research output: Contribution to journal › Article › peer-review

17 Scopus citations

Abstract

The Open Radio Access Network (O-RAN) is a promising radio access network (RAN) architecture aimed at reshaping the RAN industry toward an open, adaptive, and intelligent RAN. In this paper, we perform a comprehensive security analysis of O-RANs. Specifically, we review the architectural blueprint designed by the O-RAN Alliance, leader in the cellular ecosystem. As part of the security analysis, we provide a detailed overview of the O-RAN architecture; present an ontology for evaluating the security of a system that is currently at an early development stage; identify O-RAN's high-risk areas; enumerate O-RAN's threat actors; and model potential threats to O-RAN. The significance of this work is in providing an updated attack surface to cellular network operators. Based on the attack surface, cellular network operators can carefully deploy the appropriate countermeasures to improve O-RAN's security.

Original language	English
Article number	102890
Journal	Computers and Security
Volume	122
DOIs	https://doi.org/10.1016/j.cose.2022.102890
State	Published - Nov 2022
Externally published	Yes

Bibliographical note

Publisher Copyright:
© 2022

Funding

Ron Bitton reports financial support was provided by Deutsche Telekom AG, T-Labs.

Funders	Funder number
Deutsche Telekom AG

Keywords

5G
Open radio access networks
Risk assessment
Threat analysis

Access to Document

10.1016/j.cose.2022.102890

Cite this

@article{db54ccc0116f4258bcb804fdc9ae1a7b,

title = "Security of Open Radio Access Networks",

abstract = "The Open Radio Access Network (O-RAN) is a promising radio access network (RAN) architecture aimed at reshaping the RAN industry toward an open, adaptive, and intelligent RAN. In this paper, we perform a comprehensive security analysis of O-RANs. Specifically, we review the architectural blueprint designed by the O-RAN Alliance, leader in the cellular ecosystem. As part of the security analysis, we provide a detailed overview of the O-RAN architecture; present an ontology for evaluating the security of a system that is currently at an early development stage; identify O-RAN's high-risk areas; enumerate O-RAN's threat actors; and model potential threats to O-RAN. The significance of this work is in providing an updated attack surface to cellular network operators. Based on the attack surface, cellular network operators can carefully deploy the appropriate countermeasures to improve O-RAN's security.",

keywords = "5G, Open radio access networks, Risk assessment, Threat analysis",

author = "Dudu Mimran and Ron Bitton and Yehonatan Kfir and Eitan Klevansky and Oleg Brodt and Heiko Lehmann and Yuval Elovici and Asaf Shabtai",

note = "Publisher Copyright: {\textcopyright} 2022",

year = "2022",

month = nov,

doi = "10.1016/j.cose.2022.102890",

language = "אנגלית",

volume = "122",

journal = "Computers and Security",

issn = "0167-4048",

publisher = "Elsevier Ltd.",

}

TY - JOUR

T1 - Security of Open Radio Access Networks

AU - Mimran, Dudu

AU - Bitton, Ron

AU - Kfir, Yehonatan

AU - Klevansky, Eitan

AU - Brodt, Oleg

AU - Lehmann, Heiko

AU - Elovici, Yuval

AU - Shabtai, Asaf

PY - 2022/11

Y1 - 2022/11

N2 - The Open Radio Access Network (O-RAN) is a promising radio access network (RAN) architecture aimed at reshaping the RAN industry toward an open, adaptive, and intelligent RAN. In this paper, we perform a comprehensive security analysis of O-RANs. Specifically, we review the architectural blueprint designed by the O-RAN Alliance, leader in the cellular ecosystem. As part of the security analysis, we provide a detailed overview of the O-RAN architecture; present an ontology for evaluating the security of a system that is currently at an early development stage; identify O-RAN's high-risk areas; enumerate O-RAN's threat actors; and model potential threats to O-RAN. The significance of this work is in providing an updated attack surface to cellular network operators. Based on the attack surface, cellular network operators can carefully deploy the appropriate countermeasures to improve O-RAN's security.

AB - The Open Radio Access Network (O-RAN) is a promising radio access network (RAN) architecture aimed at reshaping the RAN industry toward an open, adaptive, and intelligent RAN. In this paper, we perform a comprehensive security analysis of O-RANs. Specifically, we review the architectural blueprint designed by the O-RAN Alliance, leader in the cellular ecosystem. As part of the security analysis, we provide a detailed overview of the O-RAN architecture; present an ontology for evaluating the security of a system that is currently at an early development stage; identify O-RAN's high-risk areas; enumerate O-RAN's threat actors; and model potential threats to O-RAN. The significance of this work is in providing an updated attack surface to cellular network operators. Based on the attack surface, cellular network operators can carefully deploy the appropriate countermeasures to improve O-RAN's security.

KW - 5G

KW - Open radio access networks

KW - Risk assessment

KW - Threat analysis

UR - http://www.scopus.com/inward/record.url?scp=85137346615&partnerID=8YFLogxK

U2 - 10.1016/j.cose.2022.102890

DO - 10.1016/j.cose.2022.102890

M3 - ???researchoutput.researchoutputtypes.contributiontojournal.article???

AN - SCOPUS:85137346615

SN - 0167-4048

VL - 122

JO - Computers and Security

JF - Computers and Security

M1 - 102890

ER -

Security of Open Radio Access Networks

Abstract

Bibliographical note

Funding

Keywords

Access to Document

Other files and links

Fingerprint

Cite this