Security Testing 4G - LTE Networks

Explore the security landscape of 4G (LTE) networks in this 52-minute conference talk from the 44CON Information Security Conference. Gain insights into the challenges and risks associated with LTE implementations, focusing on the use of IP for all communications between components. Learn about security testing methodologies for 4G networks, including an overview of LTE deployments, potential attack vectors, and assurance techniques. Delve into technical details such as LTE interfaces, authentication processes, and GTP tunnels. Discover the challenges in testing, including issues with no authentication and privileged access. Examine the implementation of testing environments, gateways, communications control, and architecture. Conclude with an understanding of protective controls, the move to 12T, IPSec, and essential testing procedures to ensure the security of 4G networks.

Introduction
Agenda
Background
Technical Details
Environment Overview
LTE Interfaces
Legitimate UE
Privileged Access
Challenges with Testing
No Authentication
Authentication Process
GTP
Tunnel IDs
Test Methods
The Bad Picture
Implementing the Environment
Gateways
Communications
Control
Architecture
Conclusions
Three Protective Controls
Moving to 12T
IPSec
Testing
Summary