TechRxiv
SPARROW-20210827.pdf (822.39 kB)
Download file

SPARROW: A Novel Covert Communication Scheme Exploiting Broadcast Signals in LTE, 5G & Beyond

Download (822.39 kB)
preprint
posted on 19.10.2021, 10:32 by Reza SoosahabiReza Soosahabi
This work proposes a novel framework to identify and exploit vulnerable MAC layer procedures in commercial wireless technologies for covert communication. Examples of covert communication include data exfiltration, remote command-and-control (CnC) and espionage. In this framework, the SPARROW schemes use the broadcast power of incumbent wireless networks to covertly relay messages across a long distance without connecting to them. This enables the SPARROW schemes to bypass all security and lawful-intercept systems and gain ample advantage over existing covert techniques in terms of maximum anonymity, more miles per Watts and less hardware. The SPARROW schemes can also serve as an efficient solution for long-range M2M applications. This paper details one recently disclosed vulnerability (CVD-2021-0045 in GSMA coordinated vulnerability disclosure program) in the common random-access procedure in the LTE and 5G standards This work also proposes a rigorous remediation for similar access procedures in current and future standards that disrupts the most sophisticated SPARROW schemes with minimal impact on other users. [This pre-print is also available at https://arxiv.org/abs/2108.12161]

History

Email Address of Submitting Author

soosahabi@comsoc.org

ORCID of Submitting Author

0000-0002-3991-7647

Submitting Author's Institution

Keysight Technologies Inc

Submitting Author's Country

United States of America