Presentation is loading. Please wait.

Presentation is loading. Please wait.

LM 7. Cellular Network Security

Published byFarida Darmadi Modified over 5 years ago

Similar presentations

Presentation on theme: "LM 7. Cellular Network Security"— Presentation transcript:

1 LM 7. Cellular Network Security
Dr. Lei Li Wireless Security

2 Road Map Introduction WLAN Security Mobile Security
Security Auditing & Risk Analysis Evolution of Wireless Network WLAN Overview Mobile Network Overview Infor. Security Essentials WLAN Threats & Vulnerabilities Cellular Network Security WLAN Security Mobile Security Threats WLAN Security Tools Mobile Devices Security

3 Learning Outcomes After this module, a student will be able to:
Describe the security vulnerabilities present in 1G TWN Describe the security architecture of GSM Describe the existing issues in GSM security Discuss the security improvement of 3G and 4G LTE network comparing to GSM Describe the security features of UMTS (3G) and LTE (4G) Briefly describe Network Access Security and Network Domain Security. Discuss the l attacks on 3G and 4G network

4 1G Cellular Network No Security Electronic Serial Number (ESN) cloning

5 2G Cellular Network (GSM)

6 GSM Security Functions
Authentication of the registered subscribers only Secure data transfer through the use of encryption Mobile phones are inoperable without a SIM Duplicate SIMs are not allowed on the network Securely stored KI

7 GSM - Authentication

8 GSM- Anonymity International Mobile Subscriber Identity (IMSI)
Temporary Mobile Subscriber Identity (TMSI) IMSI is rarely transmitted after authentication unless it’s absolutely necessary

9 GSM – Encryption & Decryption
Authentication Algorithm A3 Ciphering Algorithm A5 Ciphering Key Generating Algorithm A8

10 GSM Security Challenges
Unilateral authentication and vulnerability to the man-in-the-middle attack Flaws in implementation of A3/A8 algorithms SIM card cloning Over-the-air cracking Flaws in cryptographic algorithms Etc.

11 3G (UTMS) Security Improvement
The extension of encryption and integrity protection Protection of the signaling infrastructure in the core network The cryptographic keys derived on the User Services Identity Module (USIM) are longer in UMTS (128-bits) than in GSM (64-bits). Standard encryption algorithms used by 3G were openly published. The definition of standard UMTS authentication algorithms

12 4G LTE Security Improvement
An extended key hierarchy Use even longer cryptographic keys (256-bits) and the inclusion of better cryptographic ciphers. Separation of control plane and user plane Integrated inter-working security for legacy and non- 3GPP networks. Greater protection for back-haul link since the physical security of an eNB cannot be trusted. Mutual authentication between a relay node and the network.  Requiring the use of the USIM and excluding the GSM SIM.

13 3G/LTE Security Architecture
Image source:

14 3G & 4G Security Features Network access security (NAS)
Network domain security (NDS) User domain security (UDS) Application domain security (ADS) Visibility and configurability of security

15 Network Access Security
User identity confidentiality Entity authentication and key agreement Data confidentiality and integrity

16 Network Domain Security
Security of the communication between network nodes, located either in the same or in different networks  Protect the core network signaling protocols  confidentiality, integrity, authentication and anti-replay protection Standard procedures based on cryptographic techniques

17 Cyber Attacks to 3G & LTE Crypto-attack Denial of Service attack
 Side-channel attack

18 Reference (

Download ppt "LM 7. Cellular Network Security"

Similar presentations

U M T S F o r u m © UMTS 2002 UMTS Security aspects UMTS Forum ICTG Chair Bosco Fernandes Siemens AG

U M T S F o r u m © UMTS 2002 UMTS Security aspects UMTS Forum ICTG Chair Bosco Fernandes Siemens AG
Security Issues in Mobile Communication Systems

Security Issues in Mobile Communication Systems
Unlicensed Mobile Access (UMA) Dasun Weerasinghe School of Engineering and Mathematical Sciences City University London.

Unlicensed Mobile Access (UMA) Dasun Weerasinghe School of Engineering and Mathematical Sciences City University London.
Siyang Tian. TOPIC 1.SIM CARD card embedded with subscriber identity module 2. 3G network 3rd generation mobile telecommunications.

Siyang Tian. TOPIC 1.SIM CARD card embedded with subscriber identity module 2. 3G network 3rd generation mobile telecommunications.
EAP AKA Jari Arkko, Ericsson Henry Haverinen, Nokia.

EAP AKA Jari Arkko, Ericsson Henry Haverinen, Nokia.
An Improvement on Privacy and Authentication in GSM Young Jae Choi, Soon Ja Kim Computer Networks Lab. School of Electrical Engineering and Computer Science,

An Improvement on Privacy and Authentication in GSM Young Jae Choi, Soon Ja Kim Computer Networks Lab. School of Electrical Engineering and Computer Science,
Secure Systems Research Group - FAU Process Standards (and Process Improvement)

Secure Systems Research Group - FAU Process Standards (and Process Improvement)
GSM Security and Encryption

GSM Security and Encryption
BY, ARITRA GAUTAM (05-275) & G.PAVANI (05-272).. OVERVIEW OF GSM GSM (group special mobile or general system for mobile communications) is the Pan-European.

BY, ARITRA GAUTAM (05-275) & G.PAVANI (05-272).. OVERVIEW OF GSM GSM (group special mobile or general system for mobile communications) is the Pan-European.
LTE Security. Agenda Intro … Intro … The LTE System Radio Side (LTE – Long Term Evolution/Evolved UTRAN - EUTRAN) – Improvements in spectral efficiency,

LTE Security. Agenda Intro … Intro … The LTE System Radio Side (LTE – Long Term Evolution/Evolved UTRAN - EUTRAN) – Improvements in spectral efficiency,
Security of Mobile Banking

Security of Mobile Banking
Long Term Evolution and its security infrastructure

Long Term Evolution and its security infrastructure
Myagmar, Gupta UIUC 2001 1 3G Security Principles Build on GSM security Correct problems with GSM security Add new security features Source: 3GPP.

Myagmar, Gupta UIUC G Security Principles Build on GSM security Correct problems with GSM security Add new security features Source: 3GPP.
Federated Authentication mechanism for mobile services Dasun Weerasinghe, Saritha Arunkumar, M Rajarajan, Veselin Rakocevic Mobile Networks Research Group.

Federated Authentication mechanism for mobile services Dasun Weerasinghe, Saritha Arunkumar, M Rajarajan, Veselin Rakocevic Mobile Networks Research Group.
Doc.: IEEE 802.11-04/0408r0 Submission March 2004 Colin Blanchard, BTSlide 1 3GPP WLAN Interworking Security Colin Blanchard British Telecommunications.

Doc.: IEEE /0408r0 Submission March 2004 Colin Blanchard, BTSlide 1 3GPP WLAN Interworking Security Colin Blanchard British Telecommunications.
SMUCSE 5349/7349 GSM Security. SMUCSE 5349/7349 GSM Security Provisions Anonymity Authentication Signaling protection User data protection.

SMUCSE 5349/7349 GSM Security. SMUCSE 5349/7349 GSM Security Provisions Anonymity Authentication Signaling protection User data protection.
G53SEC 1 Mobile Security GSM, UTMS, Wi-Fi and some Bluetooth.

G53SEC 1 Mobile Security GSM, UTMS, Wi-Fi and some Bluetooth.
Information Security of Embedded Systems 20.1.2010: Communication, wireless remote access Prof. Dr. Holger Schlingloff Institut für Informatik und Fraunhofer.

Information Security of Embedded Systems : Communication, wireless remote access Prof. Dr. Holger Schlingloff Institut für Informatik und Fraunhofer.
NCHU AI LAB Implications of Unlicensed Mobile Access for GSM security From : Proceeding of the First International Conference on Security and Privacy for.

NCHU AI LAB Implications of Unlicensed Mobile Access for GSM security From : Proceeding of the First International Conference on Security and Privacy for.
LEVERAGING UICC WITH OPEN MOBILE API FOR SECURE APPLICATIONS AND SERVICES Ran Zhou 1 9/3/2015.

LEVERAGING UICC WITH OPEN MOBILE API FOR SECURE APPLICATIONS AND SERVICES Ran Zhou 1 9/3/2015.

Similar presentations

Ads by Google