5G Open Radio Access Network Security - Vulnerabilities on O-RAN Interfaces and Components
摘要
The introduction of Open RAN (O-RAN) promises to enable network operators to integrate components of different vendors into their Radio Access Network (RAN). Additionally, O-RAN allows the deployment of specific and dynamic applications with further softwarized RAN management. However, opening the formerly proprietary and closed RAN architecture also broadens the attack surface due to a higher number of i) interfaces, components and protocols as well as ii) involved vendors with different implementations posing different security flaws. In this paper, we analyze possible attacks on different compromised O-RAN components. We first describe the protocol stack and highlight the security mechanisms used in O-RAN. Based thereon, we provide a survey of possible known attacks for each component if compromised by an attacker. We extend our analysis to possible security threats for the interconnected interfaces and the usage of Fake Base Stations (FBSs), in particular. Concluding our survey, we provide a discussion of the security vulnerabilities in O-RAN and possible research directions.