Oracle Corporation
METHODS, SYSTEMS, AND COMPUTER READABLE MEDIA FOR MITIGATING SPOOFING ATTACKS ON SECURITY EDGE PROTECTION PROXY (SEPP) INTER-PUBLIC LAND MOBILE NETWORK (INTER-PLMN) FORWARDING INTERFACE

Abstract:

A method for mitigating spoofing attacks on an SEPP inter-PLMN forwarding interface includes obtaining, by a responding SEPP, a first SEPP identifier and/or a first PLMN identifier from at least one message received over an inter-PLMN control interface. The method further includes storing the first SEPP identifier and/or the first PLMN identifier in an identity cross-validation database. The method further includes obtaining, from at least one message received over an inter-PLMN forwarding interface a second SEPP identifier and/or a second PLMN identifier and performing a lookup in the identity cross-validation database using a lookup key comprising at least one of the second SEPP identifier and the second PLMN identifier, determining that a record corresponding to the lookup key is not present in the identity cross-validation database, and, in response, preventing the at least one message received over the inter-PLMN forwarding interface from entering a PLMN protected by the responding SEPP.