Abstract
Ever since the public revelation of global surveillance and the exploits targeting the mobile communication backend, the general awareness of user privacy in telecommunication industry has increased. Misusing the technical features of mobile core network technology - specifically the Signalling System 7 (SS7) has disclosed numerous ways to locate the mobile users and intercept the voice calls or text messages. These events had led the mobile network operator to focus more on protecting the privacy of user meta-data and signaling communication.
With relatively more security and privacy features, Diameter protocol - the successor of SS7 in Long Term Evolution (LTE) networks are believed to guarantee more protection to end-users. In this paper, we argue that the default considerations of Diameter are not sufficient enough to offer privacy to the mobile user, particularly when it comes to location tracking. We will discuss the possibilities of the persistence of location tracking attacks from SS7 to Diameter. We also recommend the mobile network operators to review their security mechanisms based on the countermeasures that we present. In short, this paper provides a comprehensive overview of Diameter protocol to claim – Without the appropriate measures, the Diameter-based LTE networks are as vulnerable as SS7-based GSM networks at least in terms of location tracking.
With relatively more security and privacy features, Diameter protocol - the successor of SS7 in Long Term Evolution (LTE) networks are believed to guarantee more protection to end-users. In this paper, we argue that the default considerations of Diameter are not sufficient enough to offer privacy to the mobile user, particularly when it comes to location tracking. We will discuss the possibilities of the persistence of location tracking attacks from SS7 to Diameter. We also recommend the mobile network operators to review their security mechanisms based on the countermeasures that we present. In short, this paper provides a comprehensive overview of Diameter protocol to claim – Without the appropriate measures, the Diameter-based LTE networks are as vulnerable as SS7-based GSM networks at least in terms of location tracking.
| Original language | English |
|---|---|
| Title of host publication | MobiMedia '16 Proceedings of the 9th EAI International Conference on Mobile Multimedia Communications |
| Place of Publication | Xi'an, China |
| Publisher | Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering (ICST) |
| Pages | 176-183 |
| Number of pages | 8 |
| ISBN (Print) | 978-1-63190-104-1 |
| Publication status | Published - 18 Jun 2016 |
| MoE publication type | A4 Article in a conference publication |
| Event | EAI International Conference on Mobile Multimedia Communications - TangCheng Hotel , Xi'an, China Duration: 18 Jun 2016 → 19 Jun 2016 Conference number: 9 |
Conference
| Conference | EAI International Conference on Mobile Multimedia Communications |
|---|---|
| Abbreviated title | MobiMedia |
| Country/Territory | China |
| City | Xi'an |
| Period | 18/06/2016 → 19/06/2016 |