Tech

IIT Madras team develops new software to prevent attacks on 5G networks

A new indigenous software technology solution can now proactively detect and prevent zero-day vulnerability attacks by hackers in 5G networks thereby reducing the need to pay ransom and also decreasing network downtime of 5G networks which are crucial for communication, according to an official statement issued today.

Currently most of the run time zero-day vulnerabilities are identified after the attack has taken place, thereby creating damage to the brand as well as increasing the cost of recovery.

IITM Pravartak Technologies Foundation at IIT Madras, a Technology Innovation Hub for Sensors, Networking, Actuators and Control Systems, along with its startup, is developing an indigenous security testing solution for 5G core network functions and Radio Access Network (RAN) software. The effort is supported by the Centre’s Department of Science and Technology

This technology solution can automatically identify zero-day vulnerabilities in the network in advance by using techniques such as fuzzing and test oracles.

This solution has been manually tested in the 5G security lab of IITM Pravartak. Since it can help avoid the attacks in advance, it protects organisations against loss and saving the credibility of the brands.

The team used ethical hacking for finding vulnerabilities in the system. They tested the functionality issue in the network, created various attack scenarios based on topology, feature interaction, and the number of nodes involved by following the defined 5G standards of 3GPP.

The team is testing interoperability and security issues with multi-vendor products. Tests are conducted at the network packet level, the binary level, the code level and also using the code vulnerability scanners. A combination of all these methods will help reducing zero-day attacks by pre-emption mechanism.

Around 90% of 5G technology is implemented into software by integrating several latest technologies (NFV, SDN, control plane/user plane segregation) which enable testing the technology easily. But attack surface area is increased multifold in this process and is impossible to manage manually. Automating the whole testing process and continuous monitoring is the only sustainable solution.

A zero-day vulnerability is a vulnerability in a system or device that has been disclosed but is not yet patched. Because they were discovered before security researchers and software developers became aware of them—and before they can issue a patch—zero-day vulnerabilities pose a higher risk to users for the following reasons:

•Cybercriminals race to exploit these vulnerabilities to cash in on their schemes

•Vulnerable systems are exposed until a patch is issued by the vendor.

Zero-day vulnerabilities are typically involved in targeted attacks; however, many campaigns still use old vulnerabilities.

Also read: IIT Madras and Indian railways set up 5G testing facility in Secunderabad

IN Bureau

Recent Posts

Protests erupt across PoGB over Kurram attack, shia community seeks justice

Protest demonstrations broke out across different areas of Pakistan-occupied Gilgit-Baltistan after Friday prayers, with thousands…

2 minutes ago

UKPNP Slams Pakistan’s Unconstitutional Presidential Order in PoJK

Jamil Maqsood, the President of the Foreign Affairs Committee of the United Kashmir People's National…

3 hours ago

Meeting of ASEAN-India Trade in Goods Agreement committee concludes in Delhi

The 6th meeting of the ASEAN-India Trade in Goods Agreement (AITIGA) Joint Committee concluded in…

4 hours ago

US adds 29 Chinese firms to Uyghur Forced Labor Prevention Act Entity list

The US Department of Homeland Security (DHS), on behalf of the Forced Labor Enforcement Task…

4 hours ago

Tibetan Parliament-in-Exile calls for UK’s action on China’s Abuses

A delegation from the Tibetan Parliament-in-Exile (TPiE), led by Speaker Khenpo Sonam Tenphel and accompanied…

5 hours ago

Indian Dornier 228 aircraft flypast on the sidelines of India-CARICOM Summit

On the sidelines of the 2nd India-CARICOM Summit, leaders of the member countries witnessed a…

5 hours ago