With the advent of 5G technology, the enhanced Mobile Broadband technology is translating 5G-based Internet of Things (IoT) such as smart home/building into reality. With such advances, security must mitigate greater risks associated with faster and more accessible technology. The 5G-based IoT security analysis is crucial to IoT Technology, which will eventually expand extensively into massive machine-type communications and Ultra-Reliable Low Latency Communications. This paper analyses the countermeasures and verification methods of eavesdropping vulnerabilities within IoT devices that use the current 5G Non-Standalone (NSA) network system. The network hierarchical structure of 5G-based IoT was evaluated for vulnerability analysis, performed separately for 5G Access Stratum (AS), Non-Access Stratum (NAS), and Internet Protocol (IP) Multimedia Subsystem (IMS). AS keystream reuse, NAS null-ciphering, and IMS IPsec off vulnerabilities were tested on mobile carrier networks to validate it on the 5G NSA network as well. A countermeasure against each vulnerability was presented, and our Intrusion Detection System based on these countermeasures successfully detected the presented controlled attacks.

中文翻译：

---

面向基于 5G 的物联网安全分析以防止 Vo5G 窃听

随着5G技术的出现，增强型移动宽带技术正在将智能家居/建筑等基于5G的物联网（IoT）转化为现实。随着这些进步，安全性必须降低与更快、更易于访问的技术相关的更大风险。基于 5G 的物联网安全分析对于物联网技术至关重要，物联网技术最终将广泛扩展到海量机器类通信和超可靠低延迟通信。本文分析了使用当前 5G 非独立 (NSA) 网络系统的物联网设备中窃听漏洞的对策和验证方法。对基于 5G 的物联网的网络层次结构进行漏洞分析评估，分别针对 5G 接入层 (AS)、非接入层 (NAS)、和互联网协议 (IP) 多媒体子系统 (IMS)。AS 密钥流重用、NAS 空加密和 IMS IPsec off 漏洞在移动运营商网络上进行了测试，以在 5G NSA 网络上进行验证。提出了针对每个漏洞的对策，我们基于这些对策的入侵检测系统成功地检测到了所提出的受控攻击。