Collaborative Research: SaTC: CORE: Medium: An Anti-tracking and Robocall-free Architecture for Next-G Mobile Networks

协作研究：SaTC：CORE：Medium：下一代移动网络的防跟踪和无 Robocall 架构

• 批准号: 2247562
• 负责人: Angelos Keromytis
• 金额: $ 29.97万
• 依托单位: Georgia Tech Research Corporation
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2023
• 资助国家: 美国
• 起止时间: 2023-05-01 至 2027-04-30
• 项目状态: 未结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=2247562&HistoricalAwards=false
• 关键词: Collaborative; Research; SaTC; CORE; Medium

Mobile networks have become integral to modern life, providing their users ubiquitous access to voice, text, and data services. However, this reliance on mobile phones has raised serious privacy concerns, as mobile network operators (MNOs) have the ability to track and profile users. While the 5G system offers some privacy protection through the use of concealed and temporary subscriber identifiers, those with access to MNO databases can still track and profile users. This project addresses this problem by developing a fully functional anonymous mobile access architecture that allows legitimate mobile subscribers to access the network without revealing their real identity. The architecture is designed to disable mobile tracking and profiling using anonymous identifiers ensuring that connections made by the same user at different times cannot be linked. The design also supports critical incumbent mobile network functions, including the identification of a user equipment (UE) and recovery of its mobility history under legal intervention, while giving users control over the level of privacy they risk under their own mobile phone use contexts.The research team aims to achieve the above goal by integrating decentralized identifiers (DID) and anonymous verifiable credential (VC) schemes into the 5G authentication and key agreement (5G-AKA) protocol. Key research tasks to realize this anonymous mobile access architecture include developing a novel secure callee discovery mechanism leveraging DID to handle the voice call function, supporting user accountability and ensuring compatibility with existing lawful interception requirements, enabling flexible billing and rate control by service network, disabling robocall scams, quantifying privacy risks and developing identifier refreshing strategies, and conducting experiments and validation. Successful results for this research will enable anti-tracking capabilities while using mobile networks and offer a new way of thinking about privacy enhancement technologies in the digital world. The outcomes of this research will be made publicly available online, including tutorials, talks, publications, and open-source software. The research team is committed to actively expanding the involvement of underrepresented groups.This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.

移动网络已成为现代生活不可或缺的一部分，为用户提供无处不在的语音、文本和数据服务。然而，这种对手机的依赖引发了严重的隐私问题，因为移动网络运营商 (MNO) 有能力跟踪和分析用户。虽然 5G 系统通过使用隐藏的临时用户标识符提供了一些隐私保护，但那些有权访问 MNO 数据库的人仍然可以跟踪和分析用户。该项目通过开发功能齐全的匿名移动访问架构来解决这个问题，该架构允许合法的移动用户在不泄露其真实身份的情况下访问网络。该架构旨在使用匿名标识符禁用移动跟踪和分析，确保同一用户在不同时间建立的连接无法链接。该设计还支持关键的现有移动网络功能，包括用户设备 (UE) 的识别以及在法律干预下恢复其移动历史记录，同时让用户能够控制在自己的移动电话使用环境下面临的隐私风险级别。研究团队旨在通过将去中心化标识符（DID）和匿名可验证凭证（VC）方案集成到5G认证和密钥协商（5G-AKA）协议中来实现上述目标。实现这种匿名移动接入架构的关键研究任务包括开发一种新颖的安全被叫方发现机制，利用 DID 处理语音呼叫功能、支持用户责任并确保与现有合法拦截要求的兼容性、通过服务网络实现灵活的计费和速率控制、禁用机器人电话诈骗，量化隐私风险并制定标识符刷新策略，并进行实验和验证。这项研究的成功结果将在使用移动网络时实现反跟踪功能，并为数字世界中的隐私增强技术提供一种新的思考方式。这项研究的成果将在网上公开发布，包括教程、讲座、出版物和开源软件。研究团队致力于积极扩大代表性不足群体的参与。该奖项反映了 NSF 的法定使命，并通过使用基金会的智力价值和更广泛的影响审查标准进行评估，被认为值得支持。