Collaborative Research: SaTC: CORE: Medium: An Anti-tracking and Robocall-free Architecture for Next-G Mobile Networks

协作研究：SaTC：CORE：Medium：下一代移动网络的防跟踪和无 Robocall 架构

• 批准号: 2247562
• 负责人: Angelos Keromytis
• 金额: $ 29.97万
• 依托单位: Georgia Tech Research Corporation
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2023
• 资助国家: 美国
• 起止时间: 2023-05-01 至 2027-04-30
• 项目状态: 未结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=2247562&HistoricalAwards=false
• 关键词: Collaborative; Research; SaTC; CORE; Medium

Mobile networks have become integral to modern life, providing their users ubiquitous access to voice, text, and data services. However, this reliance on mobile phones has raised serious privacy concerns, as mobile network operators (MNOs) have the ability to track and profile users. While the 5G system offers some privacy protection through the use of concealed and temporary subscriber identifiers, those with access to MNO databases can still track and profile users. This project addresses this problem by developing a fully functional anonymous mobile access architecture that allows legitimate mobile subscribers to access the network without revealing their real identity. The architecture is designed to disable mobile tracking and profiling using anonymous identifiers ensuring that connections made by the same user at different times cannot be linked. The design also supports critical incumbent mobile network functions, including the identification of a user equipment (UE) and recovery of its mobility history under legal intervention, while giving users control over the level of privacy they risk under their own mobile phone use contexts.The research team aims to achieve the above goal by integrating decentralized identifiers (DID) and anonymous verifiable credential (VC) schemes into the 5G authentication and key agreement (5G-AKA) protocol. Key research tasks to realize this anonymous mobile access architecture include developing a novel secure callee discovery mechanism leveraging DID to handle the voice call function, supporting user accountability and ensuring compatibility with existing lawful interception requirements, enabling flexible billing and rate control by service network, disabling robocall scams, quantifying privacy risks and developing identifier refreshing strategies, and conducting experiments and validation. Successful results for this research will enable anti-tracking capabilities while using mobile networks and offer a new way of thinking about privacy enhancement technologies in the digital world. The outcomes of this research will be made publicly available online, including tutorials, talks, publications, and open-source software. The research team is committed to actively expanding the involvement of underrepresented groups.This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.

移动网络已经成为现代生活不可或缺的一部分，为用户提供无处不在的语音、文本和数据服务。然而，这种对移动电话的依赖引起了严重的隐私问题，因为移动网络运营商（mno）有能力跟踪和配置用户。虽然5G系统通过使用隐藏的和临时的用户标识符提供了一些隐私保护，但那些可以访问移动运营商数据库的人仍然可以跟踪和配置用户。该项目通过开发一个功能齐全的匿名移动访问架构来解决这个问题，该架构允许合法的移动用户在不暴露其真实身份的情况下访问网络。该架构旨在禁用使用匿名标识符的移动跟踪和分析，以确保同一用户在不同时间建立的连接不能被链接。该设计还支持关键的现有移动网络功能，包括在法律干预下识别用户设备（UE）和恢复其移动历史，同时让用户控制他们在自己的移动电话使用环境下所面临的隐私水平。该研究团队旨在通过将分散标识符（DID）和匿名可验证凭证（VC）方案集成到5G身份验证和密钥协议（5G- aka）协议中来实现上述目标。实现这种匿名移动接入架构的关键研究任务包括：开发一种利用DID处理语音呼叫功能的新型安全被叫发现机制，支持用户问责并确保与现有合法拦截要求的兼容性，实现灵活的计费和费率控制服务网络，禁用自动呼叫诈骗，量化隐私风险并开发标识符更新策略，以及进行实验和验证。这项研究的成功结果将在使用移动网络时实现反跟踪功能，并为数字世界中的隐私增强技术提供一种新的思考方式。这项研究的成果将在网上公开，包括教程、演讲、出版物和开源软件。研究小组致力于积极扩大代表性不足群体的参与。该奖项反映了美国国家科学基金会的法定使命，并通过使用基金会的知识价值和更广泛的影响审查标准进行评估，被认为值得支持。