Threat modeling framework for mobile communication systems
Siddharth Prakash Rao, Silke Holtmanns, Tuomas Aura
TL;DR
This paper introduces a comprehensive threat modeling framework for mobile communication systems, aiming to unify and organize security threats across diverse technologies to improve understanding and defense strategies.
Contribution
It proposes a domain-specific threat modeling framework that categorizes attacks by tactics and techniques, providing a systematic taxonomy for mobile communication security.
Findings
Framework effectively models adversarial attack phases
Enables comparison of different attack strategies
Improves clarity in mobile security threat analysis
Abstract
Due to the complex nature of mobile communication systems, most of the security efforts in its domain are isolated and scattered across underlying technologies. This has resulted in an obscure view of the overall security. In this work, we attempt to fix this problem by proposing a domain-specific threat modeling framework. By gleaning from a diverse and large body of security literature, we systematically organize the attacks on mobile communications into various tactics and techniques. Our framework is designed to model adversarial behavior in terms of its attack phases and to be used as a common taxonomy matrix. We also provide concrete examples of using the framework for modeling the attacks individually and comparing them with similar ones.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Code & Models
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsInformation and Cyber Security · Network Security and Intrusion Detection · Advanced Malware Detection Techniques