[REVS] Attacks and Counter Measures in 2.5G and 3G Cellular IP Networks
From: SecuriTeam (support_at_securiteam.com)
Date: 03/25/04
- Previous message: SecuriTeam: "[NT] DameWare Passes Weak File Encryption Key in the Clear"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: list@securiteam.com Date: 25 Mar 2004 16:46:50 +0200
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion
The SecuriTeam alerts list - Free, Accurate, Independent.
Get your security news from a reliable source.
http://www.securiteam.com/mailinglist.html
- - - - - - - - -
Attacks and Counter Measures in 2.5G and 3G Cellular IP Networks
------------------------------------------------------------------------
SUMMARY
Linked below is a white paper discussing security risks to the 2.5G and
3.0G cellular networks. The paper focus is weaknesses in GTP (GPRS
Tunneling Protocol), and an assessment of the solution provided by Check
Point FireWall-1 GX.
DETAILS
Abstract:
2.5G and 3.0G cellular technologies are here to stay. This white paper
assesses the issues still facing the industry since the "
<http://www.atstake.com/research/reports/acrobat/atstake_gprs_security.pdf> GPRS Wireless Security: Not Ready for Primetime" paper was published in June 2002. GTP (GPRS Tunneling Protocol) is now widely deployed in a majority of 2.5G and 3.0G cellular networks, and this paper reviews some of the potential attacks against the GTP protocol and the possible effects this will have on cellular providers. It also reviews some of the architectural alternatives that providers can consider. This paper also presents the results of the @stake assessment of the Check Point FireWall-1 GX solution.
ADDITIONAL INFORMATION
The paper can be found at:
<http://www.atstake.com/research/reports/acrobat/atstake_cellular_networks.pdf> http://www.atstake.com/research/reports/acrobat/atstake_cellular_networks.pdf.
The information has been provided by <mailto:ollie@atstake.com> Ollie
Whitehouse.
========================================
This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com
====================
====================
DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.
- Previous message: SecuriTeam: "[NT] DameWare Passes Weak File Encryption Key in the Clear"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
