Presentation is loading. Please wait.

Presentation is loading. Please wait.

Revealing the Nuts and Bolts of the Security of Mobile Devices Internet society to a mobile society. many articles about smartphone security were published.

Published byJulia Thompson Modified over 9 years ago

Similar presentations

Presentation on theme: "Revealing the Nuts and Bolts of the Security of Mobile Devices Internet society to a mobile society. many articles about smartphone security were published."— Presentation transcript:

1 Revealing the Nuts and Bolts of the Security of Mobile Devices Internet society to a mobile society. many articles about smartphone security were published Many researchers and practitioners are expecting a major security incident with mobile phones In March 2010, Iozzo and Weinmann demonstrated a drive of I iPhone 3GS Internet society to a mobile society. many articles about smartphone security were published Many researchers and practitioners are expecting a major security incident with mobile phones In March 2010, Iozzo and Weinmann demonstrated a drive of I iPhone 3GS

2 As a first approach, the investigation subject of this paper Any mobile device that is controlled by MNO Any kind of phones that can only be used for phone functionality USB sticks that enable laptops to use the mobile network are also not covered. Any mobile device that is controlled by MNO Any kind of phones that can only be used for phone functionality USB sticks that enable laptops to use the mobile network are also not covered.

3

4 Specifics of Mobile Devices Creation of costs: Billed events,payment systems Network environment:strong connection,Firmware Update Process Limited Device Resources:Resource Limitations,battery Double Expensive Wireless Link:Expensive Computation Costs, High Monetary Communication Costs Reputation Creation of costs: Billed events,payment systems Network environment:strong connection,Firmware Update Process Limited Device Resources:Resource Limitations,battery Double Expensive Wireless Link:Expensive Computation Costs, High Monetary Communication Costs Reputation

5 ATTACK VECTOR CLASSES AND ATTACK MODELS Hardware-centric attacks belong to mobile device security only from a broader point of view. In the context of this paper, the most important class of technical vulnerabilities for mobile devices are software-centric attacks. User layer attacks contain every exploit that is not of technical nature. Eavesdropping:A passive attacker tries to intercept the conversation between mobile phone and base station Availability Attacks: One possible example is an active attacker blocking the signal of the mobile phone or base station Privacy Attacks: A passive attacker might use the smartphone’s ID to locate its owner. Impersonation Attacks: In a nutshell, one mobile phone impersonates as another in such an attack. For example, a mobile phone uses the service of a base station without billing facility for the base station, i.e., the service is used in a fraudulent way. Hardware-centric attacks belong to mobile device security only from a broader point of view. In the context of this paper, the most important class of technical vulnerabilities for mobile devices are software-centric attacks. User layer attacks contain every exploit that is not of technical nature. Eavesdropping:A passive attacker tries to intercept the conversation between mobile phone and base station Availability Attacks: One possible example is an active attacker blocking the signal of the mobile phone or base station Privacy Attacks: A passive attacker might use the smartphone’s ID to locate its owner. Impersonation Attacks: In a nutshell, one mobile phone impersonates as another in such an attack. For example, a mobile phone uses the service of a base station without billing facility for the base station, i.e., the service is used in a fraudulent way.

6 HARDWARE-CENTRIC SECURITY ASPECTS A.Intercepting MNO Smartcard Communication B.Attacking the Device:JTAG Attacks, Forensic Analysis A.Intercepting MNO Smartcard Communication B.Attacking the Device:JTAG Attacks, Forensic Analysis

7 DEVICE-INDEPENDENT SECURITY ASPECTS A.GSM: Cryptography for Protecting the Air Link B.Initial Connection and Encryption A.GSM: Cryptography for Protecting the Air Link B.Initial Connection and Encryption

Download ppt "Revealing the Nuts and Bolts of the Security of Mobile Devices Internet society to a mobile society. many articles about smartphone security were published."

Similar presentations

Mobile GIS.

Mobile GIS.
Securing Emerging Mobile Technology JOHN G. LEVINE PH.D. D/CHIEF ARCHITECTURE GROUP 13 SEP 2012 1.

Securing Emerging Mobile Technology JOHN G. LEVINE PH.D. D/CHIEF ARCHITECTURE GROUP 13 SEP
© 2006 Consumer Jungle Wi-Fi Computing. © 2006 Consumer Jungle What is Wi-Fi? Term is short for Wireless Fidelity –Technical standard for short-range.

© 2006 Consumer Jungle Wi-Fi Computing. © 2006 Consumer Jungle What is Wi-Fi? Term is short for Wireless Fidelity –Technical standard for short-range.
1 Electronic Information Security – What Researchers Need to Know University of California Office of the President Office of Research May 2005.

1 Electronic Information Security – What Researchers Need to Know University of California Office of the President Office of Research May 2005.
Security and Privacy Issues in Wireless Communication By: Michael Glus, MSEE EEL 6788 11.

Security and Privacy Issues in Wireless Communication By: Michael Glus, MSEE EEL
Secure Communications in Civil Aviation Paul Wells A presentation to ATN 2002 25 September 2002.

Secure Communications in Civil Aviation Paul Wells A presentation to ATN September 2002.
Introduction Cloud characteristics Security and Privacy aspects Principal parties in the cloud Trust in the cloud 1. Trust-based privacy protection 2.Subjective.

Introduction Cloud characteristics Security and Privacy aspects Principal parties in the cloud Trust in the cloud 1. Trust-based privacy protection 2.Subjective.
DHS SECURITY INCIDENT REPORTING AND RESPONSE SECURITY INCIDENT REPORTING AND RESPONSE DHS managers, employees, and other authorized information users.

DHS SECURITY INCIDENT REPORTING AND RESPONSE SECURITY INCIDENT REPORTING AND RESPONSE DHS managers, employees, and other authorized information users.
January 23-26, 2007 Ft. Lauderdale, Florida IP Communications, Secure – By Design Roger W. Farnsworth.

January 23-26, 2007 Ft. Lauderdale, Florida IP Communications, Secure – By Design Roger W. Farnsworth.
Bluetooth Technology. What is Bluetooth? Bluetooth is a short- range communications technology that allows devices to communicate with each other without.

Bluetooth Technology. What is Bluetooth? Bluetooth is a short- range communications technology that allows devices to communicate with each other without.
CS 239: Advanced Security Spring 04 Security in Pervasive and Ubiquitous Environments Sam Irvine

CS 239: Advanced Security Spring 04 Security in Pervasive and Ubiquitous Environments Sam Irvine
Business Data Communications, Fourth Edition Chapter 10: Network Security.

Business Data Communications, Fourth Edition Chapter 10: Network Security.
Free Wi-Fi Zone. Detail Process of Free Wi-Fi Access Switch on Wi-Fi setup on your Wi-Fi enabled Device like Cell Phone, Tablet PC, Laptop & search for.

Free Wi-Fi Zone. Detail Process of Free Wi-Fi Access Switch on Wi-Fi setup on your Wi-Fi enabled Device like Cell Phone, Tablet PC, Laptop & search for.
Lecture 1 Overview: roadmap 1.1 What is computer network? the Internet? 1.2 Network edge  end systems, access networks, links 1.3 Network core  network.

Lecture 1 Overview: roadmap 1.1 What is computer network? the Internet? 1.2 Network edge  end systems, access networks, links 1.3 Network core  network.
Computer Networks IGCSE ICT Section 4.

Computer Networks IGCSE ICT Section 4.
Data Integrity and Security. Data integrity  data that has a complete or whole structure  a condition in which data has not been altered or destroyed.

Data Integrity and Security. Data integrity  data that has a complete or whole structure  a condition in which data has not been altered or destroyed.
By: Matthew Follett. Introduction  A Wireless local area network (WLAN) links two or more devices using some wireless distribution method and usually.

By: Matthew Follett. Introduction  A Wireless local area network (WLAN) links two or more devices using some wireless distribution method and usually.
The equipment needed for a home network A computer network is a network that lets more than one computer to exchange data.. A computer network is similar.

The equipment needed for a home network A computer network is a network that lets more than one computer to exchange data.. A computer network is similar.
INTRODUCTION Wireless communication technology Provide high speed internet to large geographical areas Part of 4 th generation(4G) Alternative to cable.

INTRODUCTION Wireless communication technology Provide high speed internet to large geographical areas Part of 4 th generation(4G) Alternative to cable.
WIRELESS NETWORKING. What are the advantages to wireless networking? How has society changed?

WIRELESS NETWORKING. What are the advantages to wireless networking? How has society changed?

Similar presentations

Ads by Google