Monday, April 4, 2011

GAME

The most basic method to provide anonymity is to have a temporary identity (TID) instead of the real id of the user.

Entities evolved in UMTS network access security (figure 1) are the Mobile Station
(MS), the Radio Network Controller (RNC), the Visited Location Register in the Serving
Network (VLR/SN) and the user’s Home Environment (HE). Information is transferred
between these entities in order to allow security procedures to take place.


3.3 Types Of Attacks

Due to the massive architecture of a cellular network, there are a variety of attacks that the infrastructure is open to.

1.Denial Of Service (DOS): This is probably the most potent attack that can bring down the entire network infrastructure. This is caused by sending excessive data to the network, more than the network can handle, resulting in users being unable to access network resources.
2.Distributed Denial Of Service (DDOS): It might be difficult to launch a large scale DOS attack from a single host. A number of hosts can be used to launch an attack.
3.Channel Jamming: Channel jamming is a technique used by attackers to jam the wireless channel and therefore deny access to any legitimate users in the network.
4.Unauthorized Access: If a proper method of authentication is not deployed then an attacker can gain free access to a network and then can use it for services that he might not be authorized for.
5.Eavesdropping: If the traffic on the wireless link is not encrypted then an attacker can eavesdrop and intercept sensitive communication such as confidential calls, sensitive documents etc.
6.Message Forgery: If the communication channel is not secure, then an attacker can intercept messages in both directions and change the content without the users ever knowing.
7.Message Replay: Even if communication channel is secure, an attacker can intercept an encrypted message and then replay it back at a later time and the user might not know that the packet received is not the right one.
8.Man In The Middle Attack: An attacker can sit in between a cell phone and an access station and intercept messages in between them and change them.
9.Session Hijacking: A malicious user can highjack an already established session, and can act as a legitimate base station.

No comments: