Feeds

Ancient vulnerability sparks world-wide hypegasm

Radio signal jamming + hint of terror threat = lots of column inches

The Power of One eBook: Top reasons to choose HP BladeSystem

A class of attack against radio networks documented as far back as the year 2000 has pulled worldwide headlines by being highlighted in a submission to the US government.

The submission, here, has gained notoriety all over the world, starting with Technology Review which headlined it “One simple trick could disable a city’s 4G phone network”.

The paper, to an inquiry into the use of LTE in public safety networks, outlines denial-of-service attacks. These include a technique that sends fake synchronisation signals to handsets within range (thereby stopping them from logging into the base station), or generating signals to the base station that make it assign resources to the jammer rather than “real” users.

The paper describes the Virginia Tech work, headed by Dr Jeffrey Reed, as a “work in progress”, but the idea that an entire city’s network could be disabled by a suitcase-sized jammer is, in these paranoid days, too good to resist.

Since it didn’t seem feasible that the submission existed without reference to previous research, The Register decided to seek out the background.

One thing becomes clear, very rapidly: if carriers, vendors and standards-setters are not aware of the feasibility of synchronisation attacks, they’ve been asleep at the wheel since at least the year 2000, when this paper was published. Authored by Mika Ståhlberg of Helsinki University of Technology, it focuses on the radio standards of the day, such as GSM, noting: “Jamming can be concentrated on the synchronization signal, cutting effectively the entire transmission.”

Virginia Tech’s prior publications – which probably form the basis of the submission, at least in part – include “Physical Layer Security Challenges of DSA-Enabled TD-LTE” here, and from earlier this year, “Efficient Jamming Attacks on MIMO Channels”, here and “Performance of Pilot Jamming on MIMO Channels with Imperfect Synchronization”, here.

The last two were presentations at the IEEE’s ICC 2012 conference, but seem to have escaped everybody's notice at the time. ®

The Power of One eBook: Top reasons to choose HP BladeSystem

More from The Register

next story
HIDDEN packet sniffer spy tech in MILLIONS of iPhones, iPads – expert
Don't panic though – Apple's backdoor is not wide open to all, guru tells us
Mozilla fixes CRITICAL security holes in Firefox, urges v31 upgrade
Misc memory hazards 'could be exploited' - and guess what, one's a Javascript vuln
BMW's ConnectedDrive falls over, bosses blame upgrade snafu
Traffic flows up 20% as motorway middle lanes miraculously unclog
LibreSSL RNG bug fix: What's all the forking fuss about, ask devs
Blow to bit-spitter 'tis but a flesh wound, claim team
Manic malware Mayhem spreads through Linux, FreeBSD web servers
And how Google could cripple infection rate in a second
Yorkshire cops fail to grasp principle behind BT Fon Wi-Fi network
'Prevent people that are passing by to hook up to your network', pleads plod
Don't look, Snowden: Security biz chases Tails with zero-day flaws alert
Exodus vows not to sell secrets of whistleblower's favorite OS
Researcher sat on critical IE bugs for THREE YEARS
VUPEN waited for Pwn2Own cash while IE's sandbox leaked
prev story

Whitepapers

Top three mobile application threats
Prevent sensitive data leakage over insecure channels or stolen mobile devices.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Top 8 considerations to enable and simplify mobility
In this whitepaper learn how to successfully add mobile capabilities simply and cost effectively.
Application security programs and practises
Follow a few strategies and your organization can gain the full benefits of open source and the cloud without compromising the security of your applications.
The Essential Guide to IT Transformation
ServiceNow discusses three IT transformations that can help CIO's automate IT services to transform IT and the enterprise.