Presentation is loading. Please wait.

Presentation is loading. Please wait.

ITU Workshop on “SS7 Security” Geneva, Switzerland 29 June 2016

Published byAldous Reed Modified over 6 years ago

Similar presentations

Presentation on theme: "ITU Workshop on “SS7 Security” Geneva, Switzerland 29 June 2016"— Presentation transcript:

1 ITU Workshop on “SS7 Security” Geneva, Switzerland 29 June 2016
Security in SS7 networks Gerhard Ott Test expert, Deutsche Telekom AG, Gerhard Ott

2 Security in SS7 networks
The SS7 stack Application TCAP ISUP SCCP Level 3 Level 2 Physical

3 Security in SS7 networks
Security in SS7 networks - what are the risks security reasons, fraud spoof intercept DOS

4 Security in SS7 networks
Target affected Provider Network User

5 Security in SS7 networks
Examble of a SS7 relationship Network foreign B Network (own) Network foreign A

6 Security in SS7 networks
Target affected Provider Network Attack on level 3 functionalities Link management Trunk group management Denial of Service attack

7 Security in SS7 networks
Examble for a redirection Network foreign B Network (own) Network foreign A

8 Security in SS7 networks
Target affected User The user will recall misled (there is a number is in the caller list pointing to a service with special prices) User see a faked calling number (e.g. emergency number 110)

9 Security in SS7 networks
Target affected User The user is intercepted SMS spam SMS read along Track the location(s) of a mobile user Change the data base of a mobile user

10 Security in SS7 networks
Security in SS7 networks – what to do about the risks level 3 issues OPC/DPC depended routing (level 3 firewall) Separation in two networks (use of network indicator) It is assumed that these proposals already applied

11 Security in SS7 networks
Security in SS7 networks – what to do about the risks User issues Anomaly Detection on Incoming MAP messages (Monitoring system) Filtering of MAP application context (at application level) Configuration Software upgrade (Vendor action, change request)

12 Security in SS7 networks Thank you for your attention
Questions? Comments?

Download ppt "ITU Workshop on “SS7 Security” Geneva, Switzerland 29 June 2016"

Similar presentations

Denial of Service Attack History What is a Denial of Service Attack? Modes of Attack Performing a Denial of Service Attack Distributed Denial of Service.

Denial of Service Attack History What is a Denial of Service Attack? Modes of Attack Performing a Denial of Service Attack Distributed Denial of Service.
Hacking Communication System

Hacking Communication System
Firewalls By Tahaei Fall 2012. What is a firewall? a choke point of control and monitoring interconnects networks with differing trust imposes restrictions.

Firewalls By Tahaei Fall What is a firewall? a choke point of control and monitoring interconnects networks with differing trust imposes restrictions.
Fraud in Short Messaging in Mobile Networks

Fraud in Short Messaging in Mobile Networks
Geneva, Switzerland, 2 June 2014 Caller ID Spoofing, Egypt experience Dr. Hosam Abd Elmaoula NTRA EGYPT ITU Workshop on “Caller ID Spoofing” (Geneva, Switzerland,

Geneva, Switzerland, 2 June 2014 Caller ID Spoofing, Egypt experience Dr. Hosam Abd Elmaoula NTRA EGYPT ITU Workshop on “Caller ID Spoofing” (Geneva, Switzerland,
Use Cases for I2RS I2RS Interim Meeting Nicolai Leymann, Deutsche Telekom AG 19.04.2013.

Use Cases for I2RS I2RS Interim Meeting Nicolai Leymann, Deutsche Telekom AG
Hacker’s tricks for online users to reveal their sensitive information such as credit card, bank account, and social security. Phishing emails are designed.

Hacker’s tricks for online users to reveal their sensitive information such as credit card, bank account, and social security. Phishing s are designed.
Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.

Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.
Information Security 1 Information Security: Demo of Some Security Tools Jeffy Mwakalinga.

Information Security 1 Information Security: Demo of Some Security Tools Jeffy Mwakalinga.
Information System Security Engineering and Management Risk Analysis and System Security Engineering Homework (#2, #3) Dr. William Hery

Information System Security Engineering and Management Risk Analysis and System Security Engineering Homework (#2, #3) Dr. William Hery
Security Awareness: Applying Practical Security in Your World, Second Edition Chapter 5 Network Security.

Security Awareness: Applying Practical Security in Your World, Second Edition Chapter 5 Network Security.
Security Awareness: Applying Practical Security in Your World

Security Awareness: Applying Practical Security in Your World
Signalling Systems System which allows various network components to exchange information –In particular, it supports call / connection control network.

Signalling Systems System which allows various network components to exchange information –In particular, it supports call / connection control network.
1 VOIP Network Threats Let the subscribers beware Gerard Wilkes October 24, 2006.

1 VOIP Network Threats Let the subscribers beware Gerard Wilkes October 24, 2006.
Network security Process in which digital information are protected.

Network security Process in which digital information are protected.
Geneva, Switzerland, 2 June 2014 Study on Spoofed Call Detection and Prevention in 3GPP China Mobile ITU Workshop on “Caller ID Spoofing” (Geneva, Switzerland,

Geneva, Switzerland, 2 June 2014 Study on Spoofed Call Detection and Prevention in 3GPP China Mobile ITU Workshop on “Caller ID Spoofing” (Geneva, Switzerland,
Geneva, Switzerland, 2 June 2014 Analysis of Caller ID delivery in China Hexian Huang CATR, China ITU Workshop on “Caller ID Spoofing”

Geneva, Switzerland, 2 June 2014 Analysis of Caller ID delivery in China Hexian Huang CATR, China ITU Workshop on “Caller ID Spoofing”
Network Infrastructure Security. LAN Security Local area networks facilitate the storage and retrieval of programs and data used by a group of people.

Network Infrastructure Security. LAN Security Local area networks facilitate the storage and retrieval of programs and data used by a group of people.
Penetration Testing University of Sunderland CSEM02 Harry R Erwin, PhD.

Penetration Testing University of Sunderland CSEM02 Harry R Erwin, PhD.
ECRIT interim meeting - May 2005 1 Security Threats and Requirements for Emergency Calling draft-tschofenig-ecrit-security-threats Hannes Tschofenig Henning.

ECRIT interim meeting - May Security Threats and Requirements for Emergency Calling draft-tschofenig-ecrit-security-threats Hannes Tschofenig Henning.

Similar presentations

Ads by Google