Explore the world of IMSI catchers and their detection in this conference talk from Nullcon Goa 2018. Dive into the evaluation of popular Android apps designed to detect fake base stations using the custom-built White-Stingray tool. Learn about various 2G and 3G attacking techniques and discover how attackers can bypass detection methods employed by these apps. Gain insights into the basic operation of IMSI catcher detectors, unexplored parameters, and the features of the White-Stingray tool. Examine the strengths and weaknesses of current detection methods, including commercial IMSI catcher detectors. Conclude with best practices for implementing reliable IMSI catcher detection on mobile phones, addressing this persistent security concern in 4G LTE networks.
Overview
Syllabus
Intro
What's the talk about
What to expect
Stingray Spotted
Need protection. But How? Any tools?
Basic operation of ICD
How did we study ICD apps
Layer 1 Information - Rx Power
Broadcast Signaling
Unexplored parameters
Apps and parameters
The White Stingray
White-Stingray features
White-stingray vs ICD apps
New bypassing techniques
Detection map
Strengths
Weaknesses
Commercial ICD
The End
Taught by
nullcon
