| 基于破解IMSI的拒绝服务攻击研究 |
| Denial of service attack based on cracking IMSITAN |
| |
| DOI: |
| 中文关键词: LTE安全;寻呼;DoS;防御 |
| 英文关键词:LTE security; paging; denial of service (DoS); defense |
| 基金项目:教育部中国移动科研基金(MCM2018052)资助项目 |
| 作者 | 单位 | | 谭钦红 | 重庆邮电大学 通信与信息工程学院,重庆400065 | | 吴晓龙 | 重庆邮电大学 通信与信息工程学院,重庆400065 | | 赵昊明 | 重庆邮电大学 通信与信息工程学院,重庆400065 | | 李阳阳 | 重庆邮电大学 通信与信息工程学院,重庆400065 |
|
| 摘要点击次数: 898 |
| 全文下载次数: 71 |
| 中文摘要: |
| 随着LTE高度普及,通信网络漏洞导致的影响更加广泛,使得对通信网络安全的研究具有现实意义。文中设计了一种结合破解国际移动用户标识(IMSI)与拒绝服务攻击的新型隐蔽拒绝服务(DoS)攻击方法,利用空口中传播的系统消息和寻呼消息等明文信息,破解目标终端的IMSI,通过寻呼漏洞发起DoS攻击,使目标终端本地脱离网络。该攻击主要采用被动监听寻呼消息以及伪造寻呼消息,并不会被用户和运营商所感知。最后讨论分析了一种防御方法和一种针对性缓解方法,并给出了破解难度。 |
| 英文摘要: |
| With the popularity of LTE, the impact of communication network vulnerabilities is more extensive, the research of the communication network security would be relevant. A new type of covert denial of service (DoS) attack method is proposed combined the attack of international mobile user identity (IMSI) with DoS. By using the system message and paging message, and other plaintext information spread in the air port, we can crack the IMSI of the target terminal and launch DoS attack by using paging vulnerability, and then make the target terminal separate from the network locally. The attack mainly uses passive monitoring of paging messages and forgery of paging messages, which will not be perceived by users and operators. Finally, a defense method and a targeted mitigation method are analyzed, and gives the difficulty of cracking. |
| 查看全文 查看/发表评论 下载PDF阅读器 |