Overview
Explore a groundbreaking WiFi-based IMSI catcher in this Security BSides London conference talk. Delve into the exploitation of authentication protocol flaws in smartphones worldwide, potentially easier to implement than traditional 2-4G IMSI catchers. Learn about silent tracking methods for iOS, Android, and other mobile OS devices, and examine a proof-of-concept system demonstrating passive and active techniques. Gain insights into IMSI concepts, mobile network architecture, WiFi network attachment, and automatic WiFi authentication. Discover mitigation strategies for vendors, cellular network operators, and users to address privacy concerns. Conclude with a look at future developments and participate in a Q&A session to deepen your understanding of this critical security topic.
Syllabus
Intro
What is an IMSI?
Protection against IMSI Catchers
WiFi-Based IMSI Catcher
Mobile network Architecture
WiFi Network attachment
Automatic configuration
Manual Configuration
Automatic WiFi Authentication
WiFi-Calling Connection
IPsec brief overview
Operator/Vendor Mitigations
Mobile OS Mitigations
User Mitigation
Summary
Conclusions & Future Work
Questions...
Taught by
Security BSides London