Scribd
Upload
126 views5 pages

SS7 Vulnerabilties - and - Categories

Uploaded by

Shine On
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
126 views5 pages

SS7 Vulnerabilties - and - Categories

Uploaded by

Shine On
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 5

Vulnerabilities, Potential Risks and Recommendations

Vulnerablities and Risks

• Your customers’ locations can be accurately pin-pointed


• Personal phone calls and messages can be monitored
• Network & subscriber data can be modified
• User privacy and revenues from key services are under threat
• Data billing avoidance by subscriber impersonation
• Unauthorized access to APN and credentials abuse (e.g. corporate VPN)

Recommendations

• Firewall SMS: Home Routing, Greyroute, A2P control, Simbox mitigation


• Firewall SS7 interconnect: Categories 1/2/3 (GSMA FS.11)
• Firewall Diameter interconnect: Categories 1/2/3/LowLayer (GSMA FS.19)
• Firewall GTP-C interconnect : Categories 1/2/3/LowLayer (GSMA FS.20)
• Protocol Correlation (GSMA FS.21)
• 5G Roaming

© Copyright 2018. All rights Reserved. 1


SS7 Threat Categories– Allowed/Disallowed Packets
Category 1
Packet from Network A
Prohibited Interconnect Network A Network B
Packets
Querying Network A
Subscriber whilst at home
Messages that should only
normally be received from within Packet from other Network
the same network or networks B Querying Network A
with bilateral agreements Subscriber whilst at home
or roaming

SS7 Protection with out-of-box policies


Category 2 Network A Packet from Network A Network B
Unauthorised Packets Querying Roaming
Subscriber from Network A
Messages that should only
be sent about a visiting
subscriber from that
Attack packet from Network B
subscriber’s home network
Querying Home Subscriber
on Network A

SS7 Protection with Category 3 options


Category 3
Network A Network B is a plausible location Network B
Suspicious Location Packets
or behaviour for roaming
subscriber from Network A
Messages that should only
be sent about a visiting
subscriber from that Network B is a not a plausible
subscriber’s current visited
location or behaviour for roaming
network
subscriber from Network A
© Copyright 2018. All rights Reserved. 2
Backup reference

© Copyright 2018. All rights Reserved. 3


Securing the Network

Baseline Adapt Collaborate


Out-of-the-box Address unique threats Global Intelligence (ML/AI)
GSMA rules

Insight
Observe and Learn

© Copyright 2018. All rights Reserved. 4


Classic Category 3.2: Trajectory plausibility

Time:0 Time:+1 hour Time:0 Time:+1 minute

Foreign Foreign Foreign Foreign


Network 1 Network 2 Network 1 Network 2

Update Location Update Location Update Location Update Location


from Foreign from Foreign from Foreign Home from Foreign
Network 1 for Home Network 2 for Network 1 for Network Network 2 for
Outbound roamer Network Outbound roamer Outbound roamer Outbound roamer

© Copyright 2018. All rights Reserved. 5

You might also like