Attack Detection in SS7

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

Today, more and more interactions rely on smart phones. Their security becomes a real concern to guarantee the protection of identity, life and property. Cybersecurity initiatives regularly emphasize the importance of good practices for passwords, updating patches, encryption or other appropriate defenses. They also announce vulnerabilities discovered in applications. But they rarely warn of the danger of SS7 (Signaling System No. 7), the stack of protocols used between 2G and 3G telecommunications network equipment, including cellular phones. This paper presents on-going research on the detection of SS7 attacks which target the SS7 Mobile Application Protocol (MAP). More specifically, we plan to detect attacks based on so-called Category 3 MAP messages which are difficult to manage with SS7 firewalls. The method verifies the consistency of the position/speed revealed by the telecommunications equipment involved in SS7 signaling when a subscriber is in outbound roaming situation. In particular, we plan to detect attacks spoofing a SS7 equipment (from anywhere in the world) and injecting Category 3 MAP messages in order to take control of voice or SMS delivery equipment, which would allow the attacker to intercept calls or SMSs or even to prevent communications.

Original languageEnglish
Title of host publicationMultimedia Communications, Services and Security - 11th International Conference, MCSS 2022, Proceedings
EditorsAndrzej Dziech, Marcin Niemiec, Wim Mees
PublisherSpringer Science and Business Media Deutschland GmbH
Pages11-20
Number of pages10
ISBN (Print)9783031202148
DOIs
Publication statusPublished - 2022
Event11th International Conference on Multimedia Communications, Services and Security, MCSS 2022 - Kraków, Poland
Duration: 3 Nov 20224 Nov 2022

Publication series

NameCommunications in Computer and Information Science
Volume1689 CCIS
ISSN (Print)1865-0929
ISSN (Electronic)1865-0937

Conference

Conference11th International Conference on Multimedia Communications, Services and Security, MCSS 2022
Country/TerritoryPoland
CityKraków
Period3/11/224/11/22

Keywords

  • 3G
  • Attack detection
  • GSM
  • SS7
  • Vulnerabilities

Fingerprint

Dive into the research topics of 'Attack Detection in SS7'. Together they form a unique fingerprint.

Cite this