Hackers of India

Femtocell: Femtostep to the Holy Grail

By  Ravishankar Borgaonkar  , Kevin Redon  on 30 Mar 2011 @ Troopers

Abstract

Femtocells are now being rolled out across the world to enhance third generation (3G) coverage and to provide assurance of always best connectivity in the 3G telecommunication networks. It acts as an access point that securely connect standard mobile handset to the mobile network operator’s core network using an existing wired broadband connection. In this talk, we will evaluate security mechanisms used in femtocells and discuss practical & potential misuse scenarios of the same. In particular, our talk will cover:

Femtocell and Telecom business model
Security architecture of the femtocell
Location verification techniques and how to beat them for free roaming calls
Hacking of the device
r00ting
accessing confidential information stored on the device
installing malicious application into the device
accessing mobile network operator’s infrastructural element
Possible countermeasures
Demo