Shinjo Park scite author profile

Hirschi

et al. 2019

Mobile communications are used by more than two-thirds of the world population who expect security and privacy guarantees. The 3rd Generation Partnership Project (3GPP) responsible for the worldwide standardization of mobile communication has designed and mandated the use of the AKA protocol to protect the subscribers’ mobile services. Even though privacy was a requirement, numerous subscriber location attacks have been demonstrated against AKA, some of which have been fixed or mitigated in the enhanced AKA protocol designed for 5G. In this paper, we reveal a new privacy attack against all variants of the AKA protocol, including 5G AKA, that breaches subscriber privacy more severely than known location privacy attacks do. Our attack exploits a new logical vulnerability we uncovered that would require dedicated fixes. We demonstrate the practical feasibility of our attack using low cost and widely available setups. Finally we conduct a security analysis of the vulnerability and discuss countermeasures to remedy our attack.

show abstract

New vulnerabilities in 4G and 5G cellular access network protocols

Shaik

et al. 2019

Peeking Over the Cellular Walled Gardens - A Method for Closed Network Diagnosis -

Hong

IEEE Trans. on Mobile Comput.

Kim

et al. 2018

On the Impact of Rogue Base Stations in 4G/LTE Self Organizing Networks

Shaik

et al. 2018

White Rabbit in Mobile

Shaik

et al. 2016