{"id":"https://openalex.org/W4416549337","doi":"https://doi.org/10.1145/3719027.3765230","title":"CITesting: Systematic Testing of Context Integrity Violations in LTE Core Networks","display_name":"CITesting: Systematic Testing of Context Integrity Violations in LTE Core Networks","publication_year":2025,"publication_date":"2025-11-19","ids":{"openalex":"https://openalex.org/W4416549337","doi":"https://doi.org/10.1145/3719027.3765230"},"language":null,"primary_location":{"id":"doi:10.1145/3719027.3765230","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3719027.3765230","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2025 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://doi.org/10.1145/3719027.3765230","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5077177304","display_name":"Mincheol Son","orcid":"https://orcid.org/0009-0000-8655-8387"},"institutions":[{"id":"https://openalex.org/I157485424","display_name":"Korea Advanced Institute of Science and Technology","ror":"https://ror.org/05apxxy63","country_code":"KR","type":"education","lineage":["https://openalex.org/I157485424"]}],"countries":["KR"],"is_corresponding":true,"raw_author_name":"Mincheol Son","raw_affiliation_strings":["KAIST, Daejeon, Republic of Korea"],"raw_orcid":"https://orcid.org/0009-0000-8655-8387","affiliations":[{"raw_affiliation_string":"KAIST, Daejeon, Republic of Korea","institution_ids":["https://openalex.org/I157485424"]}]},{"author_position":"middle","author":{"id":null,"display_name":"Kwangmin Kim","orcid":"https://orcid.org/0009-0009-1121-733X"},"institutions":[{"id":"https://openalex.org/I157485424","display_name":"Korea Advanced Institute of Science and Technology","ror":"https://ror.org/05apxxy63","country_code":"KR","type":"education","lineage":["https://openalex.org/I157485424"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"Kwangmin Kim","raw_affiliation_strings":["KAIST, Daejeon, Republic of Korea"],"raw_orcid":"https://orcid.org/0009-0009-1121-733X","affiliations":[{"raw_affiliation_string":"KAIST, Daejeon, Republic of Korea","institution_ids":["https://openalex.org/I157485424"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5102872491","display_name":"Beomseok Oh","orcid":"https://orcid.org/0009-0009-0692-0899"},"institutions":[{"id":"https://openalex.org/I157485424","display_name":"Korea Advanced Institute of Science and Technology","ror":"https://ror.org/05apxxy63","country_code":"KR","type":"education","lineage":["https://openalex.org/I157485424"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"Beomseok Oh","raw_affiliation_strings":["KAIST, Daejeon, Republic of Korea"],"raw_orcid":"https://orcid.org/0009-0009-0692-0899","affiliations":[{"raw_affiliation_string":"KAIST, Daejeon, Republic of Korea","institution_ids":["https://openalex.org/I157485424"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5026034763","display_name":"CheolJun Park","orcid":"https://orcid.org/0009-0009-5102-2190"},"institutions":[{"id":"https://openalex.org/I35928602","display_name":"Kyung Hee University","ror":"https://ror.org/01zqcg218","country_code":"KR","type":"education","lineage":["https://openalex.org/I35928602"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"CheolJun Park","raw_affiliation_strings":["Kyung Hee University, Yongin, Republic of Korea"],"raw_orcid":"https://orcid.org/0009-0009-5102-2190","affiliations":[{"raw_affiliation_string":"Kyung Hee University, Yongin, Republic of Korea","institution_ids":["https://openalex.org/I35928602"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5073822030","display_name":"Yongdae Kim","orcid":"https://orcid.org/0000-0003-4879-1262"},"institutions":[{"id":"https://openalex.org/I157485424","display_name":"Korea Advanced Institute of Science and Technology","ror":"https://ror.org/05apxxy63","country_code":"KR","type":"education","lineage":["https://openalex.org/I157485424"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"Yongdae Kim","raw_affiliation_strings":["KAIST, Daejeon, Republic of Korea"],"raw_orcid":"https://orcid.org/0000-0003-4879-1262","affiliations":[{"raw_affiliation_string":"KAIST, Daejeon, Republic of Korea","institution_ids":["https://openalex.org/I157485424"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5077177304"],"corresponding_institution_ids":["https://openalex.org/I157485424"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.39525291,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"276","last_page":"290"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11504","display_name":"Advanced Authentication Protocols Security","score":0.219200000166893,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11504","display_name":"Advanced Authentication Protocols Security","score":0.219200000166893,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.18520000576972961,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.11599999666213989,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/stateful-firewall","display_name":"Stateful firewall","score":0.6970000267028809},{"id":"https://openalex.org/keywords/context","display_name":"Context (archaeology)","score":0.6955000162124634},{"id":"https://openalex.org/keywords/user-equipment","display_name":"User equipment","score":0.661899983882904},{"id":"https://openalex.org/keywords/handover","display_name":"Handover","score":0.5375000238418579},{"id":"https://openalex.org/keywords/core-network","display_name":"Core network","score":0.5260999798774719},{"id":"https://openalex.org/keywords/core","display_name":"Core (optical fiber)","score":0.5234000086784363},{"id":"https://openalex.org/keywords/telecommunications-link","display_name":"Telecommunications link","score":0.5059999823570251},{"id":"https://openalex.org/keywords/oracle","display_name":"Oracle","score":0.3930000066757202}],"concepts":[{"id":"https://openalex.org/C22927095","wikidata":"https://www.wikidata.org/wiki/Q1784206","display_name":"Stateful firewall","level":3,"score":0.6970000267028809},{"id":"https://openalex.org/C2779343474","wikidata":"https://www.wikidata.org/wiki/Q3109175","display_name":"Context (archaeology)","level":2,"score":0.6955000162124634},{"id":"https://openalex.org/C2781327853","wikidata":"https://www.wikidata.org/wiki/Q3552547","display_name":"User equipment","level":3,"score":0.661899983882904},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6258999705314636},{"id":"https://openalex.org/C111852164","wikidata":"https://www.wikidata.org/wiki/Q1414679","display_name":"Handover","level":2,"score":0.5375000238418579},{"id":"https://openalex.org/C5038329","wikidata":"https://www.wikidata.org/wiki/Q1142907","display_name":"Core network","level":2,"score":0.5260999798774719},{"id":"https://openalex.org/C2164484","wikidata":"https://www.wikidata.org/wiki/Q5170150","display_name":"Core (optical fiber)","level":2,"score":0.5234000086784363},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.517300009727478},{"id":"https://openalex.org/C138660444","wikidata":"https://www.wikidata.org/wiki/Q5607897","display_name":"Telecommunications link","level":2,"score":0.5059999823570251},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.4715999960899353},{"id":"https://openalex.org/C55166926","wikidata":"https://www.wikidata.org/wiki/Q2892946","display_name":"Oracle","level":2,"score":0.3930000066757202},{"id":"https://openalex.org/C48103436","wikidata":"https://www.wikidata.org/wiki/Q599031","display_name":"State (computer science)","level":2,"score":0.384799987077713},{"id":"https://openalex.org/C68649174","wikidata":"https://www.wikidata.org/wiki/Q1379116","display_name":"Base station","level":2,"score":0.35179999470710754},{"id":"https://openalex.org/C2776576444","wikidata":"https://www.wikidata.org/wiki/Q303569","display_name":"Attack surface","level":2,"score":0.3476000130176544},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.3158999979496002},{"id":"https://openalex.org/C182590292","wikidata":"https://www.wikidata.org/wiki/Q989632","display_name":"Network security","level":2,"score":0.31279999017715454},{"id":"https://openalex.org/C153646914","wikidata":"https://www.wikidata.org/wiki/Q535695","display_name":"Cellular network","level":2,"score":0.31040000915527344},{"id":"https://openalex.org/C2775924081","wikidata":"https://www.wikidata.org/wiki/Q55608371","display_name":"Control (management)","level":2,"score":0.30970001220703125},{"id":"https://openalex.org/C2777407602","wikidata":"https://www.wikidata.org/wiki/Q1888932","display_name":"Mandatory access control","level":4,"score":0.3066999912261963},{"id":"https://openalex.org/C2985963534","wikidata":"https://www.wikidata.org/wiki/Q7603704","display_name":"State information","level":3,"score":0.2906999886035919},{"id":"https://openalex.org/C2777212361","wikidata":"https://www.wikidata.org/wiki/Q5127848","display_name":"Class (philosophy)","level":2,"score":0.28610000014305115},{"id":"https://openalex.org/C527821871","wikidata":"https://www.wikidata.org/wiki/Q228502","display_name":"Access control","level":2,"score":0.28139999508857727},{"id":"https://openalex.org/C144745244","wikidata":"https://www.wikidata.org/wiki/Q4927286","display_name":"Blocking (statistics)","level":2,"score":0.2709999978542328},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.25040000677108765}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3719027.3765230","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3719027.3765230","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2025 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"}],"best_oa_location":{"id":"doi:10.1145/3719027.3765230","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3719027.3765230","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2025 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G911960449","display_name":null,"funder_award_id":"RS-2024-00397469","funder_id":"https://openalex.org/F4320328359","funder_display_name":"Ministry of Science and ICT, South Korea"}],"funders":[{"id":"https://openalex.org/F4320328359","display_name":"Ministry of Science and ICT, South Korea","ror":"https://ror.org/01wpjm123"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":20,"referenced_works":["https://openalex.org/W2093972407","https://openalex.org/W2612869182","https://openalex.org/W2792636363","https://openalex.org/W2805101420","https://openalex.org/W2809727329","https://openalex.org/W2945154566","https://openalex.org/W2946045894","https://openalex.org/W2963061006","https://openalex.org/W2987215725","https://openalex.org/W3008993478","https://openalex.org/W3024280588","https://openalex.org/W3136586396","https://openalex.org/W3175832761","https://openalex.org/W3213858345","https://openalex.org/W3216250204","https://openalex.org/W4287122280","https://openalex.org/W4315629744","https://openalex.org/W4382396221","https://openalex.org/W4398131568","https://openalex.org/W4405181358"],"related_works":[],"abstract_inverted_index":{"Cellular":[0],"networks":[1],"increasingly":[2],"support":[3],"critical":[4],"infrastructure,":[5],"yet":[6],"their":[7],"security":[8],"remains":[9,76],"an":[10,50],"ongoing":[11],"concern.":[12],"While":[13],"prior":[14],"research":[15],"has":[16],"focused":[17],"mainly":[18],"on":[19,138],"downlink":[20],"vulnerabilities,":[21,40],"uplink":[22,39],"security\u2014how":[23],"user":[24],"equipment":[25],"(UE)":[26],"affects":[27],"the":[28,57,72,81,190,197,205,211,221],"core":[29,90,149],"network\u2014has":[30],"received":[31],"limited":[32],"attention.":[33],"We":[34,78,135],"study":[35],"a":[36,66,98,125,218],"class":[37],"of":[38,60,69,101],"which":[41],"we":[42],"define":[43],"as":[44,182,220],"context":[45,130],"integrity":[46],"violations":[47],"(CIVs),":[48],"where":[49],"unauthenticated":[51],"or":[52],"improperly":[53],"authenticated":[54],"UE":[55,109,121,168],"modifies":[56],"internal":[58],"state":[59,122],"other":[61],"subscribers.":[62],"Prior":[63],"work":[64],"identified":[65],"few":[67],"instances":[68],"CIVs,":[70],"but":[71],"broader":[73,216],"attack":[74,179],"surface":[75],"unexplored.":[77],"present":[79],"CITesting,":[80],"first":[82],"framework":[83],"for":[84],"systematically":[85],"detecting":[86],"CIVs":[87,159],"in":[88,132,196,210],"LTE":[89,148],"networks.":[91,134],"CITesting":[92,137],"explores":[93],"diverse":[94],"procedure":[95],"chains,":[96],"tests":[97],"broad":[99],"range":[100],"Information":[102],"Elements":[103],"(IEs),":[104],"and":[105,123,143,156,172,186,229,235],"validates":[106],"behavior":[107],"across":[108],"connection":[110],"states.":[111],"It":[112],"introduces":[113],"stateful":[114],"dual-UE":[115],"control":[116],"testing":[117],"to":[118,128,193,208,233],"manage":[119],"victim":[120,222],"employs":[124],"behavioral":[126],"oracle":[127],"detect":[129],"modifications":[131],"black-box":[133],"evaluated":[136],"two":[139,144],"open-source":[140],"(Open5GS,":[141],"srsRAN)":[142],"commercial":[145],"(Amarisoft,":[146],"Nokia)":[147],"network":[150],"implementations,":[151],"identifying":[152],"29,":[153],"22,":[154],"16,":[155],"59":[157],"distinct":[158],"after":[160],"post-analysis.":[161],"These":[162],"findings":[163,225],"enable":[164],"remote":[165],"attacks":[166,203],"including":[167],"detachment,":[169],"IMSI":[170],"exposure,":[171],"presence":[173],"detection":[174],"attacks.":[175],"Note":[176],"that":[177],"traditional":[178],"models":[180],"such":[181],"fake":[183],"base":[184],"station":[185],"active":[187,191,206],"SigOver":[188],"require":[189,204],"attacker":[192,207],"be":[194,209],"co-located":[195],"same":[198,212],"cell.":[199],"In":[200],"contrast,":[201],"our":[202],"MME":[213],"region":[214],"(significantly":[215],"than":[217],"cell)":[219],"UE.":[223],"All":[224],"were":[226,231],"responsibly":[227],"disclosed,":[228],"patches":[230],"contributed":[232],"Amarisoft":[234],"Open5GS.":[236]},"counts_by_year":[],"updated_date":"2026-03-27T05:58:40.876381","created_date":"2025-11-23T00:00:00"}