Data e Ora: 
Thursday, May 18, 2006 - 16:30
Luogo: 
Aula Ke
Relatore: 
T. La Porta
Descrizione: 

Telecommunication networks are evolving from closed systems with limited, standardized services, to open systems which will allow great creativity in building and deploying new services.ᅠ These systems will heavily leverage Internet technology in an effort to create this open environment.ᅠ This evolution is being aggressively pursued by Wireless Service Providers (WSPs). Along with the benefits of these networks come increasingly high risks of a variety of attacks that may compromise security. Current, so called second generation (2G) wireless telecommunication networks are implemented using standardized control protocols for user and device authentication, mobility management, session control and services control. These networks are closed in the sense that control messages are exchanged on a private packet-switched network based on the Signaling System No. 7 standards.ᅠBecause of their closed nature, there are few successful attacks on these networks. The next, so called third generation (3G) wireless telecommunication networks are migrating towards IP technology, with the ultimate goal being an all-IP network.ᅠ Standards for these systems, called the IP Multimedia Subsystem (IMS) are being defined by the Third Generation Partnership Projects (3GPP and 3GPP2).ᅠ These networks will use IP for transport of information, and Internet protocols such as the Session Initiation Protocol (SIP) and Mobile IP, for session control and mobility management.ᅠ These networks open the possibility for IP-based services and must interwork with 2G networks. Because new services will be introduced in the IP-domain of these networks, new attacks on 3G networks are possible.ᅠ Because IP networks are more accessible than SS7 networks, the control portion of the 3G networks is now more vulnerable to attack.ᅠ These attacks may be remote denial of service attacks, or attacks that target the integrity of specific services.ᅠ The means of the attack may vary depending on the interworking model used and the service being offered.ᅠ In this talk we discuss the different security risks in IP-based 3G networks, different attack types, and the trade-offs of high performance, open network architectures versus secure network infrastructure

Affiliazione: 
The Pennsylvania State University, USA