Threat modeling framework for mobile communication systems

Siddharth Prakash Rao*, Hsin Yi Chen, Tuomas Aura

*Corresponding author for this work

Research output: Contribution to journalArticleScientificpeer-review

5 Citations (Scopus)
436 Downloads (Pure)

Abstract

This paper presents a domain-specific threat-modeling framework for the cellular mobile networks. We survey known attacks against mobile communication and organize them into attack phases, tactical objectives, and techniques. The Bhadra framework aims to provide a structured way to analyze and communicate threats on a level that abstracts away the technical details but still provides meaningful insights into the adversarial behavior. Our goals are similar to existing threat modeling frameworks for enterprise information systems, but with a focus on mobile operator networks. The framework fills a gap that has existed in tools and methodology for sharing of threat intelligence within and between organizations in the telecommunications industry. The paper includes concrete case studies of applying the framework. It can also be read as a survey of attacks against mobile networks.

Original languageEnglish
Article number103047
Pages (from-to)1-23
Number of pages23
JournalComputers and Security
Volume125
Early online dateDec 2022
DOIs
Publication statusPublished - Feb 2023
MoE publication typeA1 Journal article-refereed

Keywords

  • Mobile communication
  • Security framework
  • Threat modeling

Fingerprint

Dive into the research topics of 'Threat modeling framework for mobile communication systems'. Together they form a unique fingerprint.

Cite this