PRACTICAL SECURITY TESTING FOR LTE NETWORKS presented at Blackhat Abu Dhabi 2012

by Martyn Ruks, Nils ,

Tags: Introductory LTE GSM

Summary : New high speed mobile data services are being rolled out every month with a large proportion of these being based on the 3GPP Long Term Evolution (LTE) standards.
One of the fundamental changes between LTE networks and those used previously is the use of IP for all communications between back-end components. This is primarily to improve scalability and increase the flexibility available to network operators, but does that have a security related cost?
Over the past 12 months MWR have worked with a number of major vendors and operators to identify how we can ensure that these environments are implemented securely. This has been based on extensive testing of a number of LTE implementations, each using different vendor equipment and set-up in slightly different ways. This experience has enabled us to develop practical and tested advice on how to implement and more importantly how to test the implementation of a LTE environment.
This talk will provide an overview of an LTE network and more importantly how it can be tested to ensure it is secure. From this talk the audience will take away a better understanding of LTE deployments, how they could be attacked and how we can gain assurances about their security using some of the latest thinking in this space.