Home Business IT Security Trivially simple denial of service attack for LTE

Get all your tech news delivered to your mail box five days a week
iTWire UPDATE - it's FREE!


For much less than $1000, you can totally disrupt LTE communications in your neighbourhood.

Let me start by saying that iTWire in no way condones any behaviour based on the research being reported - it is illegal under all manner of legislation. However, being illegal hasn't stopped the bad guys in the past (nor will it in the future), and being aware of possible illegal behaviour better arms the "good guys."

Recent research has starkly shown that as wireless telephony complexity (and speed) increases, the opportunity for disruption also increases. Almost always, disruption is focussed on signal jamming, and this approach is no exception.

As the research by Dr Jeffrey Reed and his Virginia Tech team shows, LTE is reliant upon a continuous stream of control instructions that make up a tiny part (less than 1%) of the overall communications signal, but without which, the remaining 99% cannot be used.

"Your phone is constantly syncing with the base station" to manage the flow of information, whether it be a telephone call or a web page, said Marc Lichtman, co-author the study. "If you can disrupt that synchronization, you[r device] will not be able to send or receive data."

In the submission to the National Telecommunications and Information Administration, which is considering the use of LTE-based equipment for first'responders (police, fire, ambulance etc), the team concluded, "These comments describe extremely effective attacks can be realized, using fairly low complexity. It would be in the interest of public safety to take measures to reduce the vulnerability of Public Safety LTE, and lower the likelihood of an effective jamming attack."

The team has identified eight significant weaknesses in the LTE configuration, any one of which could bring all communications to and from a targeted base station to a complete halt.

For those interested, a simple device retailing for as little as $US650 could enable the attack with ease when used in conjunction with any laptop computer.

One hopes that those who continue to advocate a wireless-based alternative to Australia's NBN are paying close attention to research such as this.  Things can only get worse.

ITWIRE SERIES - REVENUE-CRITICAL APPS UNDERPERFORMING?

Avoid War Room Scenarios and improve handling of critical application problems:

• Track all transactions, end-to-end, all the time and know what your users experience 24/7

• View code level details with context and repair problems quickly

• Fix problems in minutes before they wreak havoc

• Optimize your most important applications, Java, .NET, PHP, C/C++ and many more

Start your free trial today!

CLICK FOR FREE TRIAL!

ITWIRE SERIES - IS YOUR BACKUP STRATEGY COSTING YOU CLIENTS?

Where are your clients backing up to right now?

Is your DR strategy as advanced as the rest of your service portfolio?

What areas of your business could be improved if you outsourced your backups to a trusted source?

Read the industry whitepaper and discover where to turn to for managed backup

FIND OUT MORE!

David Heath

joomla statistics

David Heath has over 25 years experience in the IT industry, specializing particularly in customer support, security and computer networking. Heath has worked previously as head of IT for The Television Shopping Network, as the network and desktop manager for Armstrong Jones (a major funds management organization) and has consulted into various Australian federal government agencies (including the Department of Immigration and the Australian Bureau of Criminal Intelligence). He has also served on various state, national and international committees for Novell Users International; he was also the organising chairman for the 1994 Novell Users' Conference in Brisbane. Heath is currently employed as an Instructional Designer, building technical training courses for industrial process control systems.

Connect