@inproceedings{60e21df0513c41b38ffd4c241eeef6de,
title = "Attack Detection in SS7",
abstract = "Today, more and more interactions rely on smart phones. Their security becomes a real concern to guarantee the protection of identity, life and property. Cybersecurity initiatives regularly emphasize the importance of good practices for passwords, updating patches, encryption or other appropriate defenses. They also announce vulnerabilities discovered in applications. But they rarely warn of the danger of SS7 (Signaling System No. 7), the stack of protocols used between 2G and 3G telecommunications network equipment, including cellular phones. This paper presents on-going research on the detection of SS7 attacks which target the SS7 Mobile Application Protocol (MAP). More specifically, we plan to detect attacks based on so-called Category 3 MAP messages which are difficult to manage with SS7 firewalls. The method verifies the consistency of the position/speed revealed by the telecommunications equipment involved in SS7 signaling when a subscriber is in outbound roaming situation. In particular, we plan to detect attacks spoofing a SS7 equipment (from anywhere in the world) and injecting Category 3 MAP messages in order to take control of voice or SMS delivery equipment, which would allow the attacker to intercept calls or SMSs or even to prevent communications.",
keywords = "3G, Attack detection, GSM, SS7, Vulnerabilities",
author = "Charles Beumier and Thibault Debatty",
note = "Publisher Copyright: {\textcopyright} 2022, The Author(s), under exclusive license to Springer Nature Switzerland AG.; 11th International Conference on Multimedia Communications, Services and Security, MCSS 2022 ; Conference date: 03-11-2022 Through 04-11-2022",
year = "2022",
doi = "10.1007/978-3-031-20215-5_2",
language = "English",
isbn = "9783031202148",
series = "Communications in Computer and Information Science",
publisher = "Springer Science and Business Media Deutschland GmbH",
pages = "11--20",
editor = "Andrzej Dziech and Marcin Niemiec and Wim Mees",
booktitle = "Multimedia Communications, Services and Security - 11th International Conference, MCSS 2022, Proceedings",
}