WiFi-based IMSI Catcher
Offered By: Security BSides London via YouTube
Course Description
Overview
Explore a groundbreaking WiFi-based IMSI catcher in this Security BSides London conference talk. Delve into the exploitation of authentication protocol flaws in smartphones worldwide, potentially easier to implement than traditional 2-4G IMSI catchers. Learn about silent tracking methods for iOS, Android, and other mobile OS devices, and examine a proof-of-concept system demonstrating passive and active techniques. Gain insights into IMSI concepts, mobile network architecture, WiFi network attachment, and automatic WiFi authentication. Discover mitigation strategies for vendors, cellular network operators, and users to address privacy concerns. Conclude with a look at future developments and participate in a Q&A session to deepen your understanding of this critical security topic.
Syllabus
Intro
What is an IMSI?
Protection against IMSI Catchers
WiFi-Based IMSI Catcher
Mobile network Architecture
WiFi Network attachment
Automatic configuration
Manual Configuration
Automatic WiFi Authentication
WiFi-Calling Connection
IPsec brief overview
Operator/Vendor Mitigations
Mobile OS Mitigations
User Mitigation
Summary
Conclusions & Future Work
Questions...
Taught by
Security BSides London
Related Courses
Mobile Self Defencenullcon via YouTube IMSI Catchers - Maria Pikusova
White Hat Cal Poly via YouTube 5G IMSI Catchers Mirage
Black Hat via YouTube Demystifying IMSI Catchers
0xdade via YouTube Pre-Authentication Messages as a Common Root Cause of Cell Network Attacks - Yomna Nasser - USENIX Enigma - 2020
USENIX Enigma Conference via YouTube