公开(公告)号：US20240114047A1

公开(公告)日：2024-04-04

申请号：US17980062

申请日：2022-11-03

Applicant: INSTITUTE FOR INFORMATION INDUSTRY

Inventor： YI-HSUEH TSAI

IPC: H04L9/40 ,  H04W12/08 ,  H04W48/16

CPC classification number: H04L63/1433 ,  H04L63/1408 ,  H04W12/08 ,  H04W48/16

Abstract: An information security testing method and an information security testing system of an open radio access network (O-RAN) base station are provided. The information security testing method includes at least the following steps: configuring a processing device to execute a radio resource control (RRC) signaling integrity test process to determine whether or not an RRC signaling sent by a central unit (CU) is integrity protected; and in response to determining that the RRC signaling sent by the CU is integrity protected, configuring the processing device to execute an RRC signaling security test process.

公开(公告)号：US20250133398A1

公开(公告)日：2025-04-24

申请号：US18511953

申请日：2023-11-16

Applicant: INSTITUTE FOR INFORMATION INDUSTRY

Inventor： YI-HSUEH TSAI

IPC: H04W12/0431 ,  H04W12/10 ,  H04W12/73 ,  H04W76/10

Abstract: An information security testing method and an information security testing device are provided. The information security testing method and the information security testing device can obtain at least one integrity key, at least one encryption key, a Tunnel End Identifier (TEID), a first Internet Protocol (IP) address of user plane of central unit, a second IP address of distributed unit and a third IP address of user equipment from the signaling transmitted after the user equipment, base station and core network establishing the communication connection, and generate a first test packet transmitted to the user plane of the central unit to determine whether the central unit has a first security mechanism for checking the TEID, the third IP address or a first source IP address.