LTE standard is subject to numerous vulnerabilities (2 photos)

LTE (Long-Term Evolution) protocol is quitePopular with mobile operators around the world, so the reliability and security of this standard of wireless high-speed data transmission is a concern of both consumers and service providers.

South Korean security expertsKAIST Scientific and Technical Institute revealed 36 new vulnerabilities when testing LTE using fuzzing (based on delivery method when entering the system of deliberately incorrect or random data). The identified deficiencies can lead to problems with network operability, including allowing attackers to block signals, isolate users from communication, send fake SMS messages and redirect mobile traffic.

Testing methodology revealed in generaldifficulties of 51 problems, of which 36 vulnerabilities were found for the first time. The specialists created the LTEFuzz application, which generates malicious connections to the mobile network and allows the expert group to monitor the response of the network and the LTE protocol.

KAIST research team has published a listVulnerabilities and notifications of LTE standard developers: 3GPP consortium, GSMA, as well as all manufacturers of LTE-specific equipment about gaps in this communication standard.

Source: KAIST