The Community for Technology Leaders
IEEE/IFIP International Conference on Dependable Systems and Networks (DSN 2012) (2012)
Boston, MA, USA USA
June 25, 2012 to June 28, 2012
ISSN: 1530-0889
ISBN: 978-1-4673-1624-8
pp: 1-12
Collin Mulliner , Technische Universität Berlin and Deutsche Telekom Laboratories, D-10587, Germany
Steffen Liebergeld , Technische Universität Berlin and Deutsche Telekom Laboratories, D-10587, Germany
Matthias Lange , Technische Universität Berlin and Deutsche Telekom Laboratories, D-10587, Germany
Jean-Pierre Seifert , Technische Universität Berlin and Deutsche Telekom Laboratories, D-10587, Germany
ABSTRACT
Malicious injection of cellular signaling traffic from mobile phones is an emerging security issue. The respective attacks can be performed by hijacked smartphones and by malware resident on mobile phones. Until today there are no protection mechanisms in place to prevent signaling based attacks other than implementing expensive additions to the cellular core network. In this work we present a protection system that resides on the mobile phone. Our solution works by partitioning the phone software stack into the application operating system and the communication partition. The application system is a standard fully featured Android system. On the other side, communication to the cellular network is mediated by a flexible monitoring and enforcement system running on the communication partition. We implemented and evaluated our protection system on a real smartphone. Our evaluation shows that it can mitigate all currently known signaling based attacks and in addition can protect users from cellular Trojans.
INDEX TERMS
System Virtualization, Smartphones, Cellular Signaling, Attack Mitigation, Operating Systems
CITATION

C. Mulliner, S. Liebergeld, M. Lange and J. Seifert, "Taming Mr Hayes: Mitigating signaling based attacks on smartphones," IEEE/IFIP International Conference on Dependable Systems and Networks (DSN 2012)(DSN), Boston, MA, USA USA, 2012, pp. 1-12.
doi:10.1109/DSN.2012.6263943
206 ms
(Ver 3.3 (11022016))