{"id":"https://openalex.org/W4200405708","doi":"https://doi.org/10.1145/3485832.3485914","title":"Don\u2019t hand it Over: Vulnerabilities in the Handover Procedure of Cellular Telecommunications","display_name":"Don\u2019t hand it Over: Vulnerabilities in the Handover Procedure of Cellular Telecommunications","publication_year":2021,"publication_date":"2021-12-06","ids":{"openalex":"https://openalex.org/W4200405708","doi":"https://doi.org/10.1145/3485832.3485914"},"language":"en","primary_location":{"id":"doi:10.1145/3485832.3485914","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3485832.3485914","pdf_url":null,"source":{"id":"https://openalex.org/S4306417673","display_name":"Annual Computer Security Applications Conference","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Annual Computer Security Applications Conference","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5043516303","display_name":"Evangelos Bitsikas","orcid":"https://orcid.org/0000-0002-7850-6867"},"institutions":[{"id":"https://openalex.org/I120250893","display_name":"New York University Abu Dhabi","ror":"https://ror.org/00e5k0821","country_code":"AE","type":"education","lineage":["https://openalex.org/I120250893","https://openalex.org/I57206974"]}],"countries":["AE"],"is_corresponding":false,"raw_author_name":"Evangelos Bitsikas","raw_affiliation_strings":["New York University Abu Dhabi, United Arab Emirates"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"New York University Abu Dhabi, United Arab Emirates","institution_ids":["https://openalex.org/I120250893"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5113870699","display_name":"Christina P\u00f6pper","orcid":null},"institutions":[{"id":"https://openalex.org/I120250893","display_name":"New York University Abu Dhabi","ror":"https://ror.org/00e5k0821","country_code":"AE","type":"education","lineage":["https://openalex.org/I120250893","https://openalex.org/I57206974"]}],"countries":["AE"],"is_corresponding":false,"raw_author_name":"Christina P\u00f6pper","raw_affiliation_strings":["New York University Abu Dhabi, United Arab Emirates"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"New York University Abu Dhabi, United Arab Emirates","institution_ids":["https://openalex.org/I120250893"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":8.0393,"has_fulltext":false,"cited_by_count":40,"citation_normalized_percentile":{"value":0.99084158,"is_in_top_1_percent":true,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":95,"max":100},"biblio":{"volume":null,"issue":null,"first_page":"900","last_page":"915"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11504","display_name":"Advanced Authentication Protocols Security","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11504","display_name":"Advanced Authentication Protocols Security","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10651","display_name":"IPv6, Mobility, Handover, Networks, Security","score":0.9916999936103821,"subfield":{"id":"https://openalex.org/subfields/2208","display_name":"Electrical and Electronic Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.982200026512146,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/handover","display_name":"Handover","score":0.7837439775466919},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6373597383499146},{"id":"https://openalex.org/keywords/telecommunications","display_name":"Telecommunications","score":0.5707869529724121},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4994175434112549},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.4955552816390991},{"id":"https://openalex.org/keywords/cellular-radio","display_name":"Cellular radio","score":0.4858219623565674},{"id":"https://openalex.org/keywords/base-station","display_name":"Base station","score":0.11794722080230713}],"concepts":[{"id":"https://openalex.org/C111852164","wikidata":"https://www.wikidata.org/wiki/Q1414679","display_name":"Handover","level":2,"score":0.7837439775466919},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6373597383499146},{"id":"https://openalex.org/C76155785","wikidata":"https://www.wikidata.org/wiki/Q418","display_name":"Telecommunications","level":1,"score":0.5707869529724121},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4994175434112549},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.4955552816390991},{"id":"https://openalex.org/C2986910011","wikidata":"https://www.wikidata.org/wiki/Q17517","display_name":"Cellular radio","level":3,"score":0.4858219623565674},{"id":"https://openalex.org/C68649174","wikidata":"https://www.wikidata.org/wiki/Q1379116","display_name":"Base station","level":2,"score":0.11794722080230713}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3485832.3485914","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3485832.3485914","pdf_url":null,"source":{"id":"https://openalex.org/S4306417673","display_name":"Annual Computer Security Applications Conference","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Annual Computer Security Applications Conference","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","score":0.6600000262260437,"display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":23,"referenced_works":["https://openalex.org/W1986364080","https://openalex.org/W2036446780","https://openalex.org/W2093972407","https://openalex.org/W2107875249","https://openalex.org/W2116876232","https://openalex.org/W2413749762","https://openalex.org/W2443240360","https://openalex.org/W2518624726","https://openalex.org/W2612869182","https://openalex.org/W2734657996","https://openalex.org/W2792636363","https://openalex.org/W2809727329","https://openalex.org/W2810067257","https://openalex.org/W2906890170","https://openalex.org/W2943063051","https://openalex.org/W2945154566","https://openalex.org/W2946045894","https://openalex.org/W2947003210","https://openalex.org/W2963061006","https://openalex.org/W2963139382","https://openalex.org/W2987215725","https://openalex.org/W3132665496","https://openalex.org/W3172023548"],"related_works":["https://openalex.org/W2520149731","https://openalex.org/W1981519115","https://openalex.org/W1985631144","https://openalex.org/W2128480633","https://openalex.org/W2270230623","https://openalex.org/W1919045130","https://openalex.org/W2150454033","https://openalex.org/W2160441381","https://openalex.org/W1926168192","https://openalex.org/W2152944189"],"abstract_inverted_index":{"Mobility":[0],"management":[1],"in":[2,10,118,152],"the":[3,27,32,37,45,51,73,87,94,103,120,125,150,153,166,171,186,190,204,218,221],"cellular":[4,28,74,98],"networks":[5,29],"plays":[6],"a":[7,18,57,110,140,145,193],"significant":[8],"role":[9],"preserving":[11],"mobile":[12],"services":[13],"with":[14],"minimal":[15],"latency":[16],"while":[17],"user":[19,167],"is":[20,93],"moving.":[21],"To":[22,86],"support":[23],"this":[24,69,79,92],"essential":[25],"functionality":[26,81],"rely":[30],"on":[31,97,102,124,203],"handover":[33,52,104,121,154,191,209,222],"procedure.":[34,105],"Most":[35],"often,":[36],"User":[38],"Equipment":[39],"(UE)":[40],"provides":[41],"signal":[42,130],"measurements":[43],"to":[44,49,156,213],"network":[46,206],"via":[47],"reports":[48,64,128],"facilitate":[50],"decision":[53],"when":[54],"it":[55],"discovers":[56],"more":[58],"suitable":[59],"base":[60,115,142],"station.":[61],"These":[62],"measurement":[63,127],"are":[65,133,179],"cryptographically":[66],"protected.":[67],"In":[68,106],"paper,":[70],"we":[71,108,184,216],"examine":[72],"specification":[75],"and":[76,129,162,176,197,224],"illustrate":[77],"that":[78,208,229],"crucial":[80],"has":[82],"critical":[83],"security":[84],"implications.":[85],"best":[88],"of":[89,113,189,220],"our":[90],"knowledge,":[91],"first":[95],"work":[96],"Man-In-The-Middle":[99,160],"attacks":[100,117],"based":[101,123],"particular,":[107],"demonstrate":[109],"new":[111],"type":[112],"fake":[114],"station":[116,143],"which":[119],"procedures,":[122],"encrypted":[126],"power":[131],"thresholds,":[132],"vulnerable.":[134],"An":[135],"attacker":[136,195],"who":[137],"sets":[138],"up":[139],"false":[141],"mimicking":[144],"legitimate":[146],"one":[147],"can":[148,230],"utilize":[149],"vulnerabilities":[151,210],"procedure":[155],"cause":[157],"Denial-Of-Service":[158],"attacks,":[159,161,223],"information":[163],"disclosure":[164],"affecting":[165],"as":[168,170],"well":[169],"operator.":[172],"Therefore,":[173],"users\u2019":[174],"privacy":[175],"service":[177],"availability":[178],"jeopardized.":[180],"Through":[181],"rigorous":[182],"experimentation,":[183],"uncover":[185],"vulnerable":[187],"parts":[188],"procedure,":[192],"comprehensive":[194],"methodology,":[196],"attack":[198],"requirements.":[199],"We":[200],"largely":[201],"focus":[202],"5G":[205],"showing":[207],"remain":[211],"unmitigated":[212],"date.":[214],"Finally,":[215],"assess":[217],"impact":[219],"carefully":[225],"present":[226],"potential":[227],"countermeasures":[228],"be":[231],"used":[232],"against":[233],"them.":[234]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":13},{"year":2024,"cited_by_count":13},{"year":2023,"cited_by_count":9},{"year":2022,"cited_by_count":4}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}