Restricted - Confidential Information © GSM Association 2009 IMEI Security Paul Gosden Director of Devices & Smart Card Groups, GSM Association April 24,

Slides:



Advertisements
Similar presentations
Programme: 145 sessions & social events
Advertisements

February Sign Language Interpreting in legal settings A European overview European Forum of Sign Language Interpreters (efsli) Marinella.
Directorate for Food, Agriculture, and Fisheries 1 OECD SCHEME FOR THE CONTROL OF FOREST REPRODUCTIVE MATERIAL MOVING IN INTERNATIONAL TRADE FAO Committee.
Directorate General for Energy and Transport European Commission Directorate General for Energy and Transport Progress in the Electricity and Gas Single.
We’re here for you. “European Exchange of Best Practice in Arson Investigation and Prevention” European exchange of best practice in arson investigation.
Geneva, Switzerland, November 2014 IMEI Ecosystem & its Role in Combatting Use of Counterfeit Devices James Moran, Security Director, GSM Association.
2015 Pre-export to Zimbabwe procedures. What is the European Union? The EU is an unique economic and political union between 28 democratic European Countries.
Twenty Questions Subject: Flags of the world Twenty Questions
Delegations ICM Cluj-Napoca, 20th April The European Law Students’ Association Albania ˙ Austria ˙ Azerbaijan ˙ Belgium ˙ Bosnia and Herzegovina.
Delegations III KAM, Bratislava 4th to 8th September 2013.
THE EUROPEAN UNION Lesson 5
THE EUROPEAN UNION Lesson 5
OSH professionals in European countries: an overview Andrew Hale Chairman Certification Committee ENSHPO Emeritus professor TU Delft, Netherlands Chairman:
© Lloyd’s Regional Watch Content Guide CLICK ANY BOX AMERICAS IMEA EUROPE ASIA PACIFIC.
SERVICES TRADE RESTRICTIVENESS INDEX PROFESSIONAL SERVICES ARCHITECTURE Russell V. Keune Architect, USA.
Delegations IV KAM Prague 3rd to 7th September 2014.
WINDOWS AZURE Mark Brown Senior Product Marketing Manager – Community & Web Windows Azure
BDU conference - 28 September Sign language interpreting in legal settings: a European overview Marinella Salami, efsli president European.
SAP plenary meeting, 09/07/01, Brussels Satellite Activity Organisation Entity involved in satellite activity.
Introduction to Europe & European Law
Qualifications are better understood Using UK NARIC’s International Comparisons.
Windows Azure Global Footprint video Inside a Datacenter 
SIS- Schengen Information System The Office for personal data protection.
EUROPEAN UNION. WHAT Coalition of 30 countries united in ECONOMY World’s largest trading bloc. World’s largest exporter to the world 16 TRILLION *Biggest.
Windows Azure Inside a Datacenter  video 
Countries of Europe France Spain Italy Germany Which country is this?
European Business Register Congress of the Notaries of Europe, Brussels, 28 June 2011.
A An Eastern Partnership Conference An Eastern Partnership Conference 5-6 th December 2011, Kiev 5-6 th December 2011, Kiev.
EU Enlargement. The EU Quick History  1950s – The European coal community begins to unite European countries politically and economically, the founders.
THE EUROPEAN UNION. HISTORY 28 European states after the second world war in 1951 head office: Brussels 24 different languages Austria joined 1995.
Capitalist. Main Points In a capitalist or free-market country, people can own their own businesses and property. People can also buy services for private.
Table 14.1: Admission categories of U.S. permanent residents, 2013 The Economics of Immigration, by Bansak, Simpson & Zavodny ©2015 Class of admissionTotal%
Chapter 15 Development of the profession of O&M around the world.
International Crime Victim Survey International Crime Business Survey Anna Alvazzi del Frate UNODC/PARB/RAS.
MEID JEM February 11th-12th Seattle Operator Use of GSM IMEI Stephen Packer - Vodafone Ltd.
Limiting the Effects of Natural Disasters. Mudslides and Flooding Venezuela's worst natural disaster in a century killed over 20,000 people, December.
Restricted - Confidential Information © GSMA 2008 All GSMA meetings are conducted in full compliance with the GSMA’s anti-trust compliance policy What.
© Enterprise Europe Network South West 2009 The Eurostars Programme Kenny Legg R&D Funding for the Environmental Sector – 29 June 2010 European Commission.
Which role is yours? ADV and Promotion of ELSA projects/events LXIV International Council Meeting Opatija, Croatia October 28 th - November 3 rd 2013.
Framework for combating Importation, Supply and Use of Counterfeit/substandard terminals in EACO member states Presenter Mwende Njiraini Communications.
EUROCONTROL.
Bureau for International Research and Technology Cooperation Herlitschka 1 Warsaw FP6 Launch Conference - 26 Nov Small and Medium Enterprises -
HEPTech Reaching Out Ian
Delegations LXV International Council Meeting Qawra, Malta 16 th - 23 rd of March 2014.
Youth in Action Youth in Action supports providing competencies for young people contributes to the Lisbon strategy builds on the previous.
The European Union. Important Events in EU History May 9, 1950 – French Leader Robert Schuman proposes the idea of working together in coal and steel.
Your first EURES job Making it easier to move and work to recruit young people in Europe.
Global Powered Lawn Mower Market to Market Size, Growth, and Forecasts in Nearly 70 Countries “This comprehensive publication enables readers the.
Global Printing Ink Market to Market Size, Growth, and Forecasts in Over 70 Countries “This comprehensive publication enables readers the critical.
Copyright © 2007 Rockwell Automation, Inc. All rights reserved. Insert Photo Here RSLogix 5000 with FactoryTalk Activation Grace Period.
IEC System of Conformity Assessment Schemes for Electrotechnical Equipment and Components.
The European Union Objectives Identify countries within the EU Explain the political and economic structure of the EU What is the importance of.
IEC System of Conformity Assessment Schemes for Electrotechnical Equipment and Components.
Introduction DSV is a global supplier of transport and logistics services. DSV has offices in more than 70 countries all over the world and an international.
CONFIDENTIAL 1 EPC, European Union and unitary patent/UPC EPC: yes EEA: no EU: no (*) (*) Also means no unitary patent Albania, Macedonia, Monaco, San.
Best Sustainable Development Practices for Food Security UV-B radiation: A Specific Regulator of Plant Growth and Food Quality in a Changing Climate The.
GREAT CANADIAN FLAG DEBATE. STEP 1: MATCH THE FLAG TO THE COUNTRY Australia, Belgium, Brazil, Britain, China, Denmark, Egypt, Finland, Germany, Iceland,
How RDA is growing? Total RDA Community Members: 2668.
The IECEE Global Motor Energy Efficiency Programme
European Union Duy Trinh.
Electrification Products
HCM Pivot Grids and Analytics Garland Gaskins, Interpublic Group
Citi Virtual Card Accounts – Continued Global Expansion
Support to National Helpdesks
The European Parliament – voice of the people
The European Parliament – voice of the people
Support to National Helpdesks
Ayana Bryan Marketing Director, GSMA North America
Prodcom Statistics in Focus
Electrification business
Presentation transcript:

Restricted - Confidential Information © GSM Association 2009 IMEI Security Paul Gosden Director of Devices & Smart Card Groups, GSM Association April 24, 2009

© GSM Association 2009 International Mobile Equipment Identity (IMEI) IMEI - a 15-digit decimal number used to identify equipment when it is used on a GSM/3G mobile phone network. IMEI must be unique Manufacturers must ensure no duplication of IMEI. The GSM Association (GSMA) is responsible for allocating IMEIs, and records all of the IMEIs that it has allocated in its IMEI database. The IMEI database stores basic information associated with the IMEI: – manufacturer name – model identifier – some technical capabilities (e.g. frequency bands, power class)

© GSM Association 2009 IMEI Database Access to GSMA members (GSM/3G network operators across the world and to qualified industry parties), regulators and police Network operators use the data to determine types of devices being used by their customers, and what features they support, so that they can offer and support the latest services to these customers. Also supports a "black list“: – IMEIs associated with GSM/3G equipment to be denied service because lost, stolen, faulty or otherwise unsuitable for use. – a central system for network operators to share their individual black lists so that devices denied service (blacklisted) by one network will not work on other networks.

© GSM Association 2009 IMEI Format RRXXXXXXYYYYYYA – Type Allocation Code (TAC) = RRXXXXXX (allocated by body appointed by GSMA) – RR identifies the allocating body – Serial Number = YYYYYY (allocated by manufacturer) – Check digit = A (calculated by manufacturer) Allocating bodies – RR = 01 = PTCRB / CTIA – RR = 35 = BABT – RR = 86 = TAF (China) – RR = 91 = MSAI (India) – RR = 98 = BABT for multi mode 3GPP/3GPP2 equipment – RR = 99 = TIA for multi mode 3GPP/3GPP2 equipment

© GSM Association 2009 Mobile Phone Crime GSM and 3G devices are subject to theft Mobile phones are used in criminal activities GSMA IMEI database is used as a tool to combat crime by identifying individual phone types and “black listing”. The GSMA co-operates with police forces around the world. Many mobile network operators deploy Equipment Identity Registers and “black lists” in their networks and connect them to the IMEI DB as a means of reducing phone crime. There are over 40 operators connected to the IMEI database from: – Belgium, Germany, Norway, Chile, Greece, Portugal, Cyprus, Hungary, South Africa, Czech Republic, Ireland, Spain, Denmark, Italy, Sweden, Finland, Kenya, United Kingdom, France, Malta Some countries have made changing IMEI without manufacturer’s authority a criminal offence, eg UK

© GSM Association 2009 Current Problems GSM/3G equipment with no IMEI – Manufactured with an all-zero IMEI GSM/3G equipment with the same IMEI Allocation of IMEI by unauthorised organisations – by manufacturers who do not apply to GSM Association or organisations acting on their behalf – by unauthorised organisations claiming to represent the GSM industry The above makes it difficult to “black list” individual mobile phones to help prevent mobile phone crime

© GSM Association 2009 Terminals with no IMEI IMEI applications have been received from established GSM manufacturers, applying for IMEI for the first time, having manufactured GSM phones for several years – Reasons given included “the market did not require IMEIs before” Current problem markets: – India Estimates of 25,000,000 GSM handsets with no IMEI have been reported – Middle East – Africa

© GSM Association 2009 Terminals with the same IMEI TAC has not been allocated by the GSMA IMEI has appeared on several UK crime reports – Black listed several times by UK networks only to be unblocked by another network sometime later A service provider has collected figures about subscribers handsets with this TAC (over 1,300,000 handsets with TAC ), eg – Afghanistan: 75687, Bangladesh: , Algeria: 11171, Dominican Republic: 1687, Kenya: 24378, Jordan: 23360, Pakistan: , Egypt: , Niger: 14598, Tunis: 31524, Uganda: 3021 In Australia, 6,500 handsets with IMEI The network operator has been instructed to block this IMEI and is trying to find the legal requirement that handsets must have a unique IMEI as justification for blocking these handsets from the network.

© GSM Association 2009 Terminals with unregistered IMEI In Uganda, a network operator has reported that the number of TACs on its network that are not in the GSMA IMEI database is greater than the number of TACs registered in the GSMA IMEI database

© GSM Association 2009 Regulating IMEI A single, unique IMEI allocated by the GSM Association, or by an organisation acting on its behalf, and recorded in the IMEI database, aids law enforcement agencies If the requirement for a unique IMEI allocated by the GSM Association, or by an organisation acting on its behalf, were a regulatory requirement, then network operators can justifiably refuse to connect equipment for which the IMEI is not registered in the GSMA’s IMEI database and would encourage the use of properly allocated IMEIs

© GSM Association 2009 Proposal Formally recognise within a European Commission Decision the organisation responsible for IMEI allocation: – the GSM Association and organisations appointed by the GSM Association to act on its behalf Make the requirement for a unique IMEI an R&TTE Directive Article 3.3 (d) requirement Create an R&TTE Directive Article 3.3 (d) Harmonised Standard Define the IMEI requirements in the Harmonised Standard

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.