LTE and IMSI Catchers - Then and Now

Explore the evolution and impact of LTE and IMSI catchers in this comprehensive conference talk from nullcon Goa 2019. Delve into mobile network architecture and telco attacks, focusing on privacy and availability vulnerabilities. Examine implementation flaws leading to IMEI and GUTI leaks, location tracking methods, and service denial techniques. Analyze the success and current status of IMSI catchers, discuss potential protective measures, and preview upcoming 5G security concerns. Gain insights into the setup and execution of these attacks, and understand their implications for cellular network security. This presentation by Altaf Shaik, a principal security researcher and Ph.D. candidate, offers expert analysis of cellular network technologies from radio to networking protocol layers.

Intro
Overview
Mobile Network Architecture
Recap - Telco Attacks
1. Privacy
IMEI leak: implementation vulnerability
GUTI leak (TMSI)
Location leak-cell/tower
Location leak - GPS co-ordinates Measurement and RUF report
2. Availability
Service denial
BTS Poisoning
Success of IMSI catchers
Status and Impact
Looking for protection
What's more in 5G
Takeaways
Setup and attacks