Skip to main content
SpringerLink
Log in
Book cover

International Conference on Trust and Privacy in Digital Business

TrustBus 2015: Trust, Privacy and Security in Digital Business pp 73–86Cite as

Attacking GSM Networks as a Script Kiddie Using Commodity Hardware and Software

  • Conference paper
  • First Online:

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 9264))

Abstract

With the emergence of widely available hardware and software tools for GSM hacking, the security of cellular networks is threatened even by script kiddies. In this paper we present four different attacks in GSM networks, using commodity hardware as well as open source and freely available software tools. All attacks are performed using a common DVB-T TV tuner, which is used as a sniffer for the GSM radio interface, as well as an Arduino combined with a GSM shield that is used as a software programmable mobile phone. The attacks target both mobile users and the network, ranging from sniffing the signaling traffic to tracking and performing denial of service to the subscribers. Despite the script kiddie style of the attacks, their consequences are critical and threaten the normal operation of the cellular networks.

This is a preview of subscription content, log in via an institution.

Chapter
USD   29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD   39.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD   54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

References

  1. Ericsson mobility report, June 2014. http://www.ericsson.com/res/docs/2014/ericsson-mobility-report-june-2014.pdf

  2. Xenakis, C.: Malicious actions against the GPRS technology. Comput. Virol. 2(2), 121–133 (2006)

    Article  Google Scholar 

  3. 3GPP TS 03.6 (V7.9.0), GPRS Service Description, Stage 2, September 2002

    Google Scholar 

  4. 3GPP TS 04.01 V8.0.0 – Mobile Station - Base Station System (MS - BSS) interface; General aspects and principles, March 2000. http://www.3gpp.org/ftp/Specs/html-info/37801.htm

  5. The mobile economy, GSMA (2014)

    Google Scholar 

  6. Arduino: The Open Source Electronics Platform. http://arduino.cc

  7. The osmocombb project – open source gsm baseband software implementation. http://bb.osmocom.org/

  8. Xenakis, C., Ntantogian, C.: An advanced persistent threat in 3G networks: attacking the home network from roaming networks. Comput. Secur. 40(1), 84–94 (2014)

    Article  Google Scholar 

  9. 3GPP TS 27.007 V11.5.0 (2012-12), 3rd Generation Partnership Project, Technical Specification Group Core Network and Terminals, AT command set for User Equipment (UE) (Release 11)

    Google Scholar 

  10. Simtrace. http://bb.osmocom.org/trac/wiki/SIMtrace

  11. Golde, N., Redon, K., Seifert, J.-P.: Let me answer that for you: exploiting broadcast information in cellular networks. In: 22nd USENIX Conference on Security, Washington DC, USA, August 2013

    Google Scholar 

  12. Kune, D.F., Koelndorfer, J., Hopper, N., Kim, Y.: Location leaks on the GSM air interface. In: Network and Distributed System Security Symposium (NDSS), San Diego, California, USA (2012)

    Google Scholar 

  13. Traynor, P., Lin, M., Ongtang, M., Rao, V., Jaeger, T., McDaniel, P.D., La Porta, T.F.: On cellular botnets: measuring the impact of malicious devices on a cellular network core. In: ACM Conference on Computer and Communications Security, pp. 223–234 (2009)

    Google Scholar 

  14. Arapinis, M., Mancini, L.I., Ritter, E., Ryan, M.: Privacy through pseudonymity in mobile telephony systems. In: 21st Network and Distributed System Security Symposium (NDSS), California, USA (2014)

    Google Scholar 

  15. http://www.rtl-sdr.com/

  16. Nohl, K.: Attacking Phone Privacy. BlackHat, USA, Las Vegas (2010)

    Google Scholar 

  17. http://www.pathintelligence.com

  18. http://www.smart-flows.com

  19. http://www.theregister.co.uk/2012/01/11/phone_tracking_expert/

  20. Lee, P.P.C., Bu, T., Woo, T.Y.C.: On the detection of signaling DoS attacks on 3G/WiMax wireless networks. Comput. Netw. 53(15), 2601–2616 (2009)

    Article  MATH  Google Scholar 

  21. Xenakis, C., Ntantogian, C.: Attacking the baseband modem of mobile phones to breach the users’ privacy and network security. In: 7th International Conference on Cyber Conflict (CyCon 2015), Tallinn, Estonia, May 2015

    Google Scholar 

Download references

Acknowledgements

This research has been funded by the European Commission as part of the SMART-NRG project (FP7-PEOPLE-2013-IAPP Grant number 612294).

Author information

Authors and Affiliations

  1. Department of Digital Systems, University of Piraeus, Piraeus, Greece

    Christoforos Ntantogian, Grigoris Valtas, Nikos Kapetanakis, Faidon Lalagiannis & Christos Xenakis

  2. Department of Informatics and Telecommunications, University of Athens, Athens, Greece

    Georgios Karopoulos

Authors
  1. Christoforos Ntantogian
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Grigoris Valtas
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Nikos Kapetanakis
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Faidon Lalagiannis
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Georgios Karopoulos
    View author publications

    You can also search for this author in PubMed Google Scholar

  6. Christos Xenakis
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Christoforos Ntantogian .

Editor information

Editors and Affiliations

  1. Karlstad University, Karlstad, Sweden

    Simone Fischer-Hübner

  2. University of Piraeus, Piraeus, Greece

    Costas Lambrinoudakis

  3. University of Malaga, Málaga, Spain

    Javier López

Rights and permissions

Reprints and permissions

Copyright information

© 2015 Springer International Publishing Switzerland

About this paper

Cite this paper

Ntantogian, C., Valtas, G., Kapetanakis, N., Lalagiannis, F., Karopoulos, G., Xenakis, C. (2015). Attacking GSM Networks as a Script Kiddie Using Commodity Hardware and Software. In: Fischer-Hübner, S., Lambrinoudakis, C., López, J. (eds) Trust, Privacy and Security in Digital Business. TrustBus 2015. Lecture Notes in Computer Science(), vol 9264. Springer, Cham. https://doi.org/10.1007/978-3-319-22906-5_6

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-22906-5_6

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-22905-8

  • Online ISBN: 978-3-319-22906-5

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation