Attack Detection in SS7

Onderzoeksoutput: Hoofdstuk in Boek/Rapport/CongresprocedureConferentiebijdragepeer review

Samenvatting

Today, more and more interactions rely on smart phones. Their security becomes a real concern to guarantee the protection of identity, life and property. Cybersecurity initiatives regularly emphasize the importance of good practices for passwords, updating patches, encryption or other appropriate defenses. They also announce vulnerabilities discovered in applications. But they rarely warn of the danger of SS7 (Signaling System No. 7), the stack of protocols used between 2G and 3G telecommunications network equipment, including cellular phones. This paper presents on-going research on the detection of SS7 attacks which target the SS7 Mobile Application Protocol (MAP). More specifically, we plan to detect attacks based on so-called Category 3 MAP messages which are difficult to manage with SS7 firewalls. The method verifies the consistency of the position/speed revealed by the telecommunications equipment involved in SS7 signaling when a subscriber is in outbound roaming situation. In particular, we plan to detect attacks spoofing a SS7 equipment (from anywhere in the world) and injecting Category 3 MAP messages in order to take control of voice or SMS delivery equipment, which would allow the attacker to intercept calls or SMSs or even to prevent communications.

Originele taal-2Engels
TitelMultimedia Communications, Services and Security - 11th International Conference, MCSS 2022, Proceedings
RedacteurenAndrzej Dziech, Marcin Niemiec, Wim Mees
UitgeverijSpringer Science and Business Media Deutschland GmbH
Pagina's11-20
Aantal pagina's10
ISBN van geprinte versie9783031202148
DOI's
StatusGepubliceerd - 2022
Evenement11th International Conference on Multimedia Communications, Services and Security, MCSS 2022 - Kraków, Polen
Duur: 3 nov. 20224 nov. 2022

Publicatie series

NaamCommunications in Computer and Information Science
Volume1689 CCIS
ISSN van geprinte versie1865-0929
ISSN van elektronische versie1865-0937

Congres

Congres11th International Conference on Multimedia Communications, Services and Security, MCSS 2022
Land/RegioPolen
StadKraków
Periode3/11/224/11/22

Vingerafdruk

Duik in de onderzoeksthema's van 'Attack Detection in SS7'. Samen vormen ze een unieke vingerafdruk.

Citeer dit