DocumentCode :
3705263
Title :
How voice call technology poses security threats in 4G LTE networks
Author :
Guan-Hua Tu;Chi-Yu Li;Chunyi Peng;Songwu Lu
Author_Institution :
Department of Computer Science, University of California, Los Angeles, 90095, USA
fYear :
2015
Firstpage :
442
Lastpage :
450
Abstract :
To support voice calls vital to mobile users and carriers, 4G LTE cellular networks adopt two solutions: VoLTE (Voice Over LTE) and CSFB (Circuit-Switched FallBack). In this paper, we disclose that both schemes are harmful to mobile users from a security perspective. The adoption of the latest VoLTE allows an attacker to manipulate the radio resource states of the victim´s device in a silent call attack, thereby draining the victim´s battery 5-8 times faster. CSFB exhibits two vulnerabilities of exposing 4G↔3G network switch to adversaries. This can be further exploited to launch ping-pong attacks where mobile users may suffer from up to 91.5% performance downgrade, or 4G denial-of-service (DoS) attacks where mobile users are deprived of 4G LTE connectivity without their consent. We devise two proof-of-concept attacks as showcases, and demonstrate their viability over operational LTE networks. We analyze their root causes and uncover that the problems lie in seemingly sound design decisions for functional correctness but such choices bear unexpected and intriguing implications for security design. We finally propose remedies to mitigate the attack damage.
Keywords :
"Mobile communication","Logic gates","Long Term Evolution","Security","Switches","Internet","Quality of service"
Publisher :
ieee
Conference_Titel :
Communications and Network Security (CNS), 2015 IEEE Conference on
Type :
conf
DOI :
10.1109/CNS.2015.7346856
Filename :
7346856
Link To Document :
بازگشت