Project Description

NETWORK SIGNALLING SECURITY

INTERMEDIATE LEVEL – 2.3. Interconnect Programme

Online

On-demand on our Virtual Campus & Online seminars

On Campus

On Campus events will be held on our campus in the South of Spain.

Off Campus

Train your team at a location of your choice.

Certified

The course includes a final exam that entitles to a certificate.

What will you learn?

This course begins with an overview of the different mobile generations and the primary network signalling protocols that are used.  We then examine the overall security challenges that arise when mobile networks interconnect.  Since each signalling protocol presents its own unique threat, the course modules will identify them (Sigtran, SS7, Diameter & SIP) and define what is necessary to protect them.

We have all heard of terms 2G GSM, 3G UMTS or 4G LTE.  This module will look at the various mobile generations and, along with them, the different ways they communicate through signalling protocols.  In addition, we will examine the architectures and the standards of these systems.

Select only this module

Today when arriving in another country merely taking your mobile phone off of “airplane mode” gets you access to the services you enjoy at home.  But in order for this to work, a great deal of signalling messages needs to be exchanged between the home network and the visited network.  There are some inherent threats that make this messaging insecure.  In this module, we will look at some of those threats.

Select only this module

In this module, we will start by giving a brief overview of the various SS7 layers and their security issues.  Though potential harm exists in each layer, it is the SCCP layer that contains some of the more “useful” information about origination and destination addressing. Signalling Transport (Sigtran) greatly increased the capacity of the traditional low-speed links.  Being “IP-based”, it has introduced some unique signalling security challenges.  This module will also explore some of those challenges.

Select only this module

Certainly, the “crown jewel” of information exchanged between networks is the application layer known as GSM MAP.  Here the user’s authentication information, identity, location and profile data is routinely exchanged.  In this module, we will look at the various GSM MAP messages and their respective “categories”.

Select only this module

With billions of SMS text messages sent around the world each day, security, quite naturally, becomes a necessity.  It not only includes things like spam and fraud, but also things like A2P monetization which enhances revenue.  In this module, we will examine the various threats and the countermeasures.

Select only this module

Diameter is one of the primary signalling protocols in some 3G networks and all 4G networks.  As a signalling protocol, it is also not secure.  And, in many ways, it is less secure than SS7 primarily because of how it routes messages as compared with SS7.  After a brief look at where Diameter is used (in IMS, LTE, policy, charging) we will go into the security issues that it faces.

Select only this module

GTP signalling has been a part of mobile network signalling since the mid-1990s.   Since these messages travel on the GPRS Exchange (GRX) or IP Exchange (IPX) between networks, they can be exploited at the interfaces exposed to those networks.  And, just like SS7 and Diameter, GTP messages routinely carry a wealth of user data that can be exploited and manipulated.  This module will identify the risks and countermeasures.

Select only this module

SIP has recently found itself much more active in the mobile telecom industry with VoLTE.  The roots of SIP are in IP-based technologies so it has a much larger potential security threat.  Plus, SIP has many more optional fields and parameters along with varying implementations.  This module will briefly overview what SIP is along with how it is being deployed for VoLTE.  Lastly, we will identify the potential attacks and what steps are necessary to counter them.

Select only this module

Who is this course for?

  • Professionals working in a mobile telecom network control centre environment.
  • Those who are new to the telecom industry in general and need to understand signalling security.
  • Those interested in understanding the challenges of and the need for signalling security.

Why choose this course?

Out of band signalling has been a part of the mobile telecom industry for many years.  From a technical standpoint, it is the “lifeblood” of how roaming is accomplished.  However, it has some inherent security flaws that become more complex with different mobile generations, interconnection and signalling methods.  This course will clearly identify the different generations along with the differing countermeasures needed to protect the networks.

By the end of the course, the student will:

  • Understand the different mobile generations along with interconnection signalling.
  • Know the different attacks and risks that mobile telecom companies face today.
  • Be able to identify the different strategies and categories of security messages and countermeasures.
  • Describe the different firewall recommendations.
Jason Bryan
STEVE DEVRIES
LECTURER
Steve is currently Head of Training & Development at Cellusys.  He has over 40 years of experience in the telecom industry and has worked in technical support at Ameritech and as a Member of Technical Staff at Bell Communications Research (Bellcore) where he was first introduced to SS7.  Later, he worked as a Training Manager at Bellcore (later Telcordia Technologies) developing and teaching classes in SS7, Intelligent Networking and other network signalling protocols.

ONLINE ON-DEMAND

TAKE MODULES INDIVIDUALLY

Join ROCCO U today and start working on yourself