1 / 10

Comprehensive Analysis of GSM Security Provisions and Attacks

Explore the intricate details of GSM security provisions including Anonymity, Authentication, Signaling Protection, and User Data Protection. Learn about the use of temporary IDs, authentication mechanisms, encryption techniques, and defense strategies against various attacks.

louiel
Download Presentation

Comprehensive Analysis of GSM Security Provisions and Attacks

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. GSM Security CSE 5349/7349

  2. GSM Security Provisions • Anonymity • Authentication • Signaling protection • User data protection CSE 5349/7349

  3. Anonymity • Use of temporary Ids • Use IMSI for initial authentication • VLR generates a TMSI for the user • Use the Kc to encrypt TMSI CSE 5349/7349

  4. Authentication CSE 5349/7349

  5. GSM Triplets • Authentication while roaming • Without passing the Ki • AuC generates (Rand, XRES, Kc) triplets • Passes to VLR CSE 5349/7349

  6. Triplets (cont’d) CSE 5349/7349

  7. Attacks on GSM Security • Microwave links • SIM/ME interface • Attacks on A3/8, A5/1 • Through air interface • With possession of ME • Attacks on SIM card • Optical fault induction • Partitioning attacks (IBM) • Ki can be extracted with <1000 tries CSE 5349/7349

  8. Attacks (cont’d) • False base station • GSM does unilateral authentication • DoS • Jamming the signal • Preventing the MS from communicating CSE 5349/7349

  9. 3GPP • Built on GSM • Two way authentication • Better algorithms • KASUMI • Protection of network signaling CSE 5349/7349

  10. GRPS Security CSE 5349/7349

More Related