公开(公告)号：US20220124673A1

公开(公告)日：2022-04-21

申请号：US17451123

申请日：2021-10-15

Applicant: Korea Advanced Institute of Science and Technology

Inventor： Yongdae Kim ,  CheolJun Park ,  Hojoon Yang ,  Sangwook Bae ,  Mincheol Son ,  Jiho Lee ,  Hongil Kim

IPC: H04W68/02 ,  H04W56/00

Abstract: A fake base station (FBS) redirection attack method using unicast message injection in a long term evolution (LTE) wireless section and a system thereof are provided. The FBS redirection attack method includes synchronizing with a signal of a commercial base station connected with a target device being an attack target, transmitting an international mobile subscriber identity (IMSI) paging message to the target device using an IMSI of the target deice, and injecting a unicast message including a frequency of an FBS into the target device, before a base station re-access process is completed in the target device which decodes the IMSI paging message.

公开(公告)号：US11463880B2

公开(公告)日：2022-10-04

申请号：US16716055

申请日：2019-12-16

Applicant: Korea Advanced institute of Science and Technology

Inventor： Yongdae Kim ,  Hongil Kim ,  Jiho Lee ,  Eunkyu Lee

IPC: H04W12/108 ,  H04L69/22 ,  G06F11/36 ,  H04W12/106 ,  H04W12/122 ,  G06K9/62 ,  H04B1/00 ,  H04L9/32

Abstract: A security analysis method for a control plane and a system therefor are disclosed. The method includes generating a test case for a security property unsuitable for a control plane operation, transmitting the generated test case to target equipment and receiving a response of the control plane for the test case from the target equipment, and diagnosing security for the security property of the target equipment by analyzing the received response. The generating includes generating the test case for the security property by modulating a value of a specific field in a control plane protocol header into a value unsuitable for an operation on standards.

公开(公告)号：US11405787B2

公开(公告)日：2022-08-02

申请号：US17124634

申请日：2020-12-17

Applicant: Korea Advanced Institute of Science and Technology

Inventor： Yongdae Kim ,  Hojoon Yang ,  Sangwook Bae ,  Mincheol Son ,  Hongil Kim ,  Song Min Kim

IPC: H04W12/122 ,  H04W12/106 ,  H04L9/40 ,  H04W56/00 ,  H04W72/04

Abstract: A physical signal overshadowing attack method for an LTE broadcast message and a system thereof are provided. The method includes identifying physical configuration information of user equipment (UE) which is an attack target and manipulating a physical downlink shared channel (PDSCH), a physical downlink control channel (PDCCH), and a physical control format indicator channel (PCFICH) for subframes of the LTE broadcast message transmitted to the UE to form a subframe for attack, synchronizing a time domain and a frequency domain of the subframe for attack depending on the LTE broadcast message, and injecting the synchronized subframe for attack into legitimate subframes of the LTE broadcast message transmitted to the UE and transmitting the injected subframes.

公开(公告)号：US10111120B2

公开(公告)日：2018-10-23

申请号：US15432552

申请日：2017-02-14

Applicant: Korea Advanced Institute of Science and Technology

Inventor： Yongdae Kim ,  Byeong Do Hong ,  Sung-Ju Lee ,  Shinjo Park ,  Hongil Kim ,  HyunWook Hong ,  Dongkwan Kim ,  Hyunwoo Choi

IPC: H04B17/00 ,  H04W24/08 ,  H04L12/26

Abstract: A network anomaly diagnosis device and a method thereof are provided. The network anomaly diagnosis device includes a data analyzer configured to receive a control plane message for a service provided to a terminal by a mobile network operator (MNO) from the terminal and analyze the control plane message, a database configured to collect results of analyzing control plane messages for services provided to the terminal by different MNOs including the MNO from the data analyzer and store the result of analyzing the control plane message for each MNO, and a controller configured to compare the result of analyzing the control plane message of the MNO at the data analyzer with the result of analyzing the control plane message for each MNO, the result being stored in the database.

公开(公告)号：US12010650B2

公开(公告)日：2024-06-11

申请号：US17451123

申请日：2021-10-15

Applicant: Korea Advanced Institute of Science and Technology

Inventor： Yongdae Kim ,  CheolJun Park ,  Hojoon Yang ,  Sangwook Bae ,  Mincheol Son ,  Jiho Lee ,  Hongil Kim

IPC: H04W68/02 ,  H04W56/00

CPC classification number: H04W68/02 ,  H04W56/001

Abstract: A fake base station (FBS) redirection attack method using unicast message injection in a long term evolution (LTE) wireless section and a system thereof are provided. The FBS redirection attack method includes synchronizing with a signal of a commercial base station connected with a target device being an attack target, transmitting an international mobile subscriber identity (IMSI) paging message to the target device using an IMSI of the target deice, and injecting a unicast message including a frequency of an FBS into the target device, before a base station re-access process is completed in the target device which decodes the IMSI paging message.

公开(公告)号：US20220124504A1

公开(公告)日：2022-04-21

申请号：US17451222

申请日：2021-10-18

Applicant: Korea Advanced Institute of Science and Technology

Inventor： Yongdae Kim ,  Hongil Kim ,  Yeong Bin Hwang

IPC: H04W12/121

Abstract: Disclosed are a method of validating a man-in-the-middle attack on a cellular control plane protocol and a system thereof, which can diagnose the vulnerability of a man-in-the-middle attack in a mobile communication network through automated test execution and security threat detection by generating test cases. The method includes generating a test case defining an operation of the control plane protocol, performing a man-in-the-middle attack scenario by the test case in conjunction with mobile communication equipment and user equipment by using the test case, and determining whether there is a security threat to the user equipment or a network by analyzing a control plane message generated by performing the scenario of the test case.