News

As cellular data services and applications are being widely deployed, they become attractive targets for attackers, who could exploit unique vulnerabilities in cellular networks, mobile devices, and the interaction between cellular data networks and the Internet. Furthermore, as mobile phones become more powerful, endowed with higher bandwidth, mobile users will become the next target for attacks that are prevalent on the Internet.

The cellular security project attempts to alert reserach communities on the importance of securing one of the most widely depolyed networks, particularly the ability to utilize insecure protocols on the Internet to leverage into a secure network, such as the cellular network. We study both currently deployed protocols such as Multimedia Messaging Service (MMS), General Packet Data Service (GPRS), Short Messaging Service (SMS) as well as emerging services such as Evolution Data Optimazied (EV-DO) and High Speed Data Packet Access (HSDPA).

Cellular end-to-end security on end-hosts has been well studied in the past, concentrating on the integraity and confidentiality of mobile users. In contrast, our project focuses on analyzing cellular systems from the network viewpoint for availability issues, concentrating on threats created by intergrating the Internet and the cellular network. In particular, we are discovering unique vulernabilities on the cellular network that can compromise both the network and the end-hosts and developing defense mechanisms and policies to mitigate these threats.