MoDaCo is undergoing planned maintenance. Site functionality may be reduced - follow @modaco or @paulobrien on Twitter for updates.

  • Announcements

    • Reminder - MoDaCo position on illegal content

      ILLEGAL CONTENT I'd like to just reaffirm MoDaCo's position regarding piracy and illegal content in the light of some recent questions / postings. Posts will be censored by myself or my moderation team if the contain or link to: Illegal / pirated / cracked software or sites that host such software
      Nintendo emulators / ROMs or sites hosting them (in light of Nintendo's legal stance)


      CUSTOM ROMS

      You may discuss and post links to custom device ROMs on MoDaCo, provided the following rules are adhered to: ROMs must not be hosted directly in topic via the MoDaCo attachment system
      ROMs must not contain any illegal 3rd party software (this includes trial versions included without permission)
      ROMs must give full credit to the original author
      This decision has been taken in light of the huge amount of interest in this area of device customisation within the community, and member feedback! Please note that custom ROM discussion should be kept in specific device sub-areas, (e.g. Kaiser.MoDaCo.com for Kaiser based devices). ISSUES If you have any issues with this policy, please contact me directly via PM. P
    • Support MoDaCo by signing up to a MoDaCo Silver or Gold membership

      To sign up to an annual MoDaCo Silver subscription which will eliminate all ads from the site (as well as giving you access to the MoDaCo Online Kitchens for Android) for only £9.99 using PayPal, Credit or Debit Card, ensure you are logged in to the site, and then click the link below, which will take you directly to the subscription store! You can also sign up to an annual MoDaCo Gold subscription for £29.99, which adds the benefits listed below! PURCHASE A MODACO SUBSCRIPTION - FREE Titanium Backup Mobile for Android worth $5.99! - FREE 1 year PrivateInternetAccess.com worth $39.95! - FREE 1 year LastPass Premium worth $12! - FREE CalcConvert for Pocket PC from Binaryfish worth $17.95! - FREE Calendar Bar for Pocket PC from OmegaOne worth $9.99! - FREE CamerAware for Pocket PC and Smartphone from MoDaCo worth £19.99 / $30! - FREE Chronos for Pocket PC from ActiveKitten worth $14.95! - FREE CodeWallet Pro for Smartphone and Pocket PC from DeveloperOne worth up to $24.95! - FREE Concentrix for Pocket PC from eSoft Interactive worth $9.95! - FREE FlexMail for Pocket PC and Smartphone from WebIS worth up to $59.90! - FREE FTouchSL for Pocket PC from Vekoff s.r.o. worth 10 euro / $12.50! - FREE Jewel Challenge for Pocket PC from eSoft Interactive worth $9.95! - FREE John Cody's Alerts Pro for Smartphone from Omnisoft worth $14.95! - FREE LingvoSoft Talking Dictionary 2008 English <-> Dutch for Pocket PC from Lingvosoft worth $49.95! - FREE LingvoSoft Talking Dictionary 2008 English <-> French for Pocket PC from Lingvosoft worth $49.95! - FREE LingvoSoft Talking Dictionary 2008 English <-> German for Pocket PC from Lingvosoft worth $49.95! - FREE LingvoSoft Talking Dictionary 2008 English <-> Italian for Pocket PC from Lingvosoft worth $49.95! - FREE LingvoSoft Talking Dictionary 2008 English <-> Spanish for Pocket PC from Lingvosoft worth $49.95! - FREE LingvoSoft Dictionary English <-> Dutch for Smartphone from Lingvosoft worth $49.95! - FREE LingvoSoft Dictionary English <-> French for Smartphone from Lingvosoft worth $49.95! - FREE LingvoSoft Dictionary English <-> German for Smartphone from Lingvosoft worth $49.95! - FREE LingvoSoft Dictionary English <-> Russian for Smartphone from Lingvosoft worth $49.95! - FREE LingvoSoft Dictionary English <-> Turkish for Smartphone from Lingvosoft worth $49.95! - FREE Note2Self for Pocket PC and Smartphone from WebIS worth up to $19.90! - FREE Opera 8.60 for Pocket PC and Smartphone from Opera Software worth up to $48! - FREE Pocket Informant for Pocket PC and Smartphone from WebIS worth up to $59.90! - FREE Pocket Launcher for Pocket PC and Smartphone from Conduits worth $9.95! - FREE PTab for Pocket PC and Smartphone from z4soft worth up to $60! - FREE Resco Explorer for Pocket PC and Smartphone from Resco worth up to $49.90! - FREE Safemode for Pocket PC from monocube worth $12.95 - FREE SplashPhoto for Pocket PC and Smartphone from SplashData worth up to $59.90! - FREE Sprite Backup for Pocket PC and Smartphone from Sprite Software worth $29.95! - FREE Teksoft Glyphs UI for Pocket PC and Smartphone from Teksoft €9.95! - FREE Teksoft HeadsetRemote for Pocket PC and Smartphone from Teksoft €4.95! - FREE Traffic Jam for Pocket PC from eSoft Interactive worth $9.95! - FREE unlock (1 per year) from imei-check.co.uk - DISCOUNT of 10% at MoDaCo FairDeal - DISCOUNT of 10% at Semsons.com - FORUM - AD FREE SITE - FORUM - custom rank / title - FORUM - double competition entries - FORUM - double post attachment space - FORUM - no search flood control - FORUM - priority event registration - FORUM - triple PM space
    • Reminder: Selling items on the forum directly is not allowed

      Please note that selling items on the forum directly is not allowed by the forum rules. There is a forum for eBay auctions whereby you can list the items on eBay and link to them there. This is the ONLY forum for this type of activity. You may also advertise links to the eBay forum in your signature. Please note that selling directly in contravention of these rules will result in a warning / suspensions / ban.
Sign in to follow this  
Followers 0

GSM security problem

8 posts in this topic

Posted · Report post

A special device called an International Mobile Equipment Identification (IMSI) catcher pretends to the mobile phones in its vicinity to be a legitimate base station of the mobile phone network.

This is possible because while the mobile phone has to authenticate itself to the mobile telephone network, the network does not authenticate itself to the mobile phone.

This blatant flaw in GSM security was intentionally introduced to facilitate eavesdropping without the knowledge or cooperation of the mobile phone network.

Once the mobile phone has accepted the IMSI catcher as its base station, the IMSI catcher can deactivate GSM encryption using a special flag.

Do you know any smartphone that can detect this special flag?

0

Share this post


Link to post
Share on other sites

Posted · Report post

What exactly do you mean by the 'flag' ?

The C500 has a registry entry for 'LastUserIMSI'

0

Share this post


Link to post
Share on other sites

Posted · Report post

GSM Encryption? Since when? GSM security is provided via timeslots which makes it extremely difficult to listen into without a psuedo-base station (as above). GSM has no encryption built in.......

0

Share this post


Link to post
Share on other sites

Posted · Report post

remember "bourne supremacy"? he made a copy of the sim and therefor able to listen to thier conversations. i think that's for real.

0

Share this post


Link to post
Share on other sites

Posted · Report post

remember "bourne supremacy"? he made a copy of the sim and therefor able to listen to thier conversations. i think that's for real.

I don't think so. That would mean two devices on the network at the same time with the same sim id and same IMEI (GSM uses IMEI as part of its security/authentication) methods. I wish people would at least come up with some opinion which is based in fact rather than complete guesswork being passed off as fact.......................

0

Share this post


Link to post
Share on other sites

Posted · Report post

I don't think so. That would mean two devices on the network at the same time with the same sim id and same IMEI (GSM uses IMEI as part of its security/authentication) methods.  I wish people would at least come up with some opinion which is based in fact rather than complete guesswork being passed off as fact.......................

<{POST_SNAPBACK}>

That's absolutely true! Even if you can Mimic the function of the BTS/Cellsite... its useless because the ciphering key is stored on the SIM (chip-embeded)and to the network database. If you are to ask the mobile to authenticate thru the dummy BTS, it would only respond if you have the authentic data from the Network wich the phone provided on its First Time Location Update. This SIM data are hard-coded first hand before the SIM even made to the market. These same keys are used for authentication and encryption of voice plus the timeslot issues & hoping you have to resolve . Its a one-way encryption so... good luck! :)

At least you guys have an idea about the issues of "Garci". Its either the unit it self is hardware-tweaked or the other line is in a fixed network.. thru air-tapped... nah! close to IMPOSSIBLE. :D

0

Share this post


Link to post
Share on other sites

Posted (edited) · Report post

please see http://news.bbc.co.uk/1/hi/technology/4738219.stm

for anyone who is potentially a target of phone attack, may i suggest cryptophone. it is what we use, has no backdoors, open code to verify encryption, and is the only safe phone system i know off.

plus, if you dont want to spend

Edited by 4andy
0

Share this post


Link to post
Share on other sites

Posted · Report post

Using encryption on a phone will automatically get certain agencies interested in your phone calls :D

If you have this on a phone and take it across a border you are, technically, undertaking an illegal act unless you supply the relevent keys to the appropriate authorities. Beware!!!

0

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now
Sign in to follow this  
Followers 0

MoDaCo is part of the MoDaCo.network, © Paul O'Brien 2002-2015. MoDaCo uses IntelliTxt technology.