Rohde & Schwarz Cybersecurity tests IoT & mobile IP security

March 01, 2017 // By Graham Prophet
Rohde & Schwarz has added a security-oriented feature to its radio communications tester, drawing on its expertise from its own specialist division that focuses on cybersecurity. The test facility can analyze security mechanisms for IP data communications during the early development phases of mobile devices and IoT modules. Potential security gaps can be identified and closed.

Adding the R&S CMW-KM052 analysis option makes the CMW500 wideband radio communication tester into a tool for improving the security of IP-based data communications, providing a detailed overview of security-related parameters in a controlled wireless environment.

 

The high demand for mobility, large ranges and reliability is, R&S observes, best met with cellular technologies, especially LTE and LTE-Advanced as well as 5G in the future. However the components, particularly for IoT, are often not fully mature or have undergone only the most basic testing and are therefore poorly protected against attacks and provide potential portals for hacker attacks.

 

With this approach, it is not necessary to install additional software on the DUT for the analysis. The DUT also doesn't require a debug interface. In the Rohde & Schwarz solution, the R&S CMW500 sets up the wireless connection and functions as a wireless network during IP data communications with the World Wide Web. Developers can flexibly configure the cells to simulate real-world applications in the end customer's target network. They only need a single test instrument for RF analysis in cellular and non-cellular networks, protocol tests and IP application tests as well as for analysis of security-relevant parameters for IP data communications. This is not, R&S asserts, available anywhere else.

 

The new reporting module, R&S CMW-KM052 IP connection security analysis, is used in conjunction with the Rohde & Schwarz cybersecurity software R&S PACE2 to analyze IP traffic in realtime within a controlled test environment. The software generates statistics for the IP connections in realtime and outputs a clear overview of the results. The software module allows the user to define sensitive and device-specific information. Statistics show whether this information appears in unencrypted connections. The module also analyzes parameters for SSL/TLS handshake sequences as well as certificates, the country name and the domain name of the endpoint server. Another important function is the active scanning of the IP ports on