Skip to content

wspr-ncsu/5GAC

BranchesTags

Repository files navigation

5GAC

5GAC is an analysis tool for 5G core implementations. It's main purpose is to identify which Network Functions (NFs) call APIs in other NFs for the purpose of least-privilege analysis. 5GAC is designed to analyze 4 open-source 5G cores and 2 versions of one 5G core:

  • free5GC
  • Open5GS (Based on 3GPP Release 16)
  • Open5GS (Based on 3GPP Release 17)
  • OpenAirInterface (OAI)

This repository contains the CodeQL files to analyze the cores. 5GAC is extensible in that there is a higher level model defined by the CodeQL module CoreAPI and each 5G core's subfolder includes the implementation. This allows much of the analysis abstractions to be re-used across code bases.

Running 5GAC

The best way to run 5GAC is by using the included Dockerfile. Specifically, run

git clone --recursive https://github.com/wspr-ncsu/5GAC.git # --recursive is important!
docker build  ./ -t 5gac:latest && docker run -v $(pwd):/repo 5gac:latest

If you want to use podman instead of docker, use the following command to run the container:

podman build ./ --format=docker -t 5gac:latest && podman run -v $(pwd):/repo 5gac:latest

The analysis results will be added to the json folder in this directory. Each result file name is the 5G core that was analyzed followed by the date and time the analysis was run.

If you want to run 5GAC without docker, we recommend running the commands one by one as they are listed in the Dockerfile. This handles cloning the repos and any packages needed to compile and run all of the 5G cores as well as analyze the output.

Output

The output will be in the output folder, which shows a simple YAML format providing a least-privilege policy for all 5G cores analyzed. The union of the access tokens will give the most meaningful results.

Citation

If you use 5GAC in your research, please cite our work using this bibtex entry:

@conference{fivegac-wisec24,
    title = {{5GAC-Analyzer: Identifying Over-Privilege Between 5G Core Network Functions}},
    author = {Thorn, Seaver and English, K. Virgil and Butler, Kevin R. B. and Enck, William},
    booktitle = {{Proceedings of the 17th ACM Conference on Security and Privacy in Wireless and Mobile Networks}},
    year = {2024}
}

About

No description, website, or topics provided.

Resources

Readme
Activity
Custom properties

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages