Issue No. 03 - May-June (2014 vol. 11)
Alessio Merlo , University of Genova, Italy, and the E-Campus University, Italy
Mauro Migliardi , Department of Information Engineering at the University of Padua, Italy
Nicola Gobbo , Department of Information Engineering at the University of Padua, Italy
Francesco Palmieri , Department of Industrial and Information Engineering, Second University of Naples, Italy
Aniello Castiglione , Department of Computer Science, University of Salerno, Italy
One of the fundamental security elements in cellular networks is the authentication procedure performed by means of the Subscriber Identity Module that is required to grant access to network services and hence protect the network from unauthorized usage. Nonetheless, in this work we present a new kind of denial of service attack based on properly crafted SIM-less devices that, without any kind of authentication and by exploiting some specific features and performance bottlenecks of the UMTS network attachment process, are potentially capable of introducing significant service degradation up to disrupting large sections of the cellular network coverage. The knowledge of this attack can be exploited by several applications both in security and in network equipment manufacturing sectors.
Mobile computing, 3G mobile communication, Computer crime, Protocols, Authentication
A. Merlo, M. Migliardi, N. Gobbo, F. Palmieri and A. Castiglione, "A Denial of Service Attack to UMTS Networks Using SIM-Less Devices," in IEEE Transactions on Dependable and Secure Computing, vol. 11, no. 3, pp. 280-291, 2014.