Presentation is loading. Please wait.

Presentation is loading. Please wait.

Fall 2008CS 334: Computer Security1 Network Security War Stories Fall 2008.

Published byBranden Snow Modified over 8 years ago

Similar presentations

Presentation on theme: "Fall 2008CS 334: Computer Security1 Network Security War Stories Fall 2008."— Presentation transcript:

1 Fall 2008CS 334: Computer Security1 Network Security War Stories Fall 2008

2 Our Path War stories from the Telecom industry War stories from the Internet: Worms and Viruses Crackers: from prestige to profit Lessons to be learned Fall 2008CS 334: Computer Security2

3 Phone System Hackers: Phreaks 1870s: first switch (before that, leased lines) 1920s: first automated switchboards Mid-1950s: deployment of automated direct-dial long distance switches Fall 2008CS 334: Computer Security3

4 US Telephone System (mid 1950s) A dials B’s number Exchange collects digits, assigns inter-office trunk, and transfers digits using Single or Multi Frequency signaling Inter-office switch routes call to local exchange Local exchange rings B’s phone Fall 2008CS 334: Computer Security4

5 Early 1970s Phreaks In 1957, Joe Engressia (Joybubbles), blind 7 year old with perfect pitch, discovers that tone E above middle C (2600Hz) would stop dialed phone recording John Draper (Cap’n Crunch) –Makes free long-distance calls by blowing 2600Hz tone into a telephone using a whistle from a cereal box… –Tone indicates caller has hung up  stops billing! –Then, whistle digits one-by-one Fall 2008CS 334: Computer Security5

6 Early 1970s Phreaks “2600” magazine helps phreaks make free long-distance calls But, not all systems use SF for dialing… No Problem: Specifics of MF system published (by Bell Tel) in Bell Systems Technical Journal –For engineers, but finds way to campuses Fall 2008CS 334: Computer Security6

7 Blue Boxes: Free Long Distance Calls Once trunk thinks call is over, use a “blue box” to dial desired number –Emits MF signaling tones Builders included members of California’s Homebrew Computer Club: –Steve Jobs (AKA Berkeley Blue) –Steve Wozniak (AKA Oak Toebark) Red boxes, white boxes, pink boxes, … –Variants for pay phones, incoming calls, … Fall 2008CS 334: Computer Security7

8 The Game is On Cat and mouse game between telcos and phreaks –Telcos can’t add filters to every phone switch –Telcos monitor maintenance logs for “idle” trunks –Phreaks switch to emulating coin drop in pay phones –Telcos add auto-mute function –Phreaks place operator assisted calls (disables mute) –Telcos add tone filters to handset mics –… The Phone System’s Fatal Flaw? –In-band signaling! –Information channel used for both voice and signaling –Knowing “secret” protocol = you control the system Fall 2008CS 334: Computer Security8

9 Signaling System #7 “Ma Bell” deployed Signaling System #6 in late 1970’s and SS#7 in 1980’s –Uses Common Channel Signaling (CCS) to transmit out-of-band signaling information –Completely separate packet data network used to setup, route, and supervise calls –Not completely deployed until 1990’s for some rural areas False sense of security… –Single company that owned entire network –SS7 has no internal authentication or security Fall 2008CS 334: Computer Security9

10 US Telephone System (1978-) A dials B’s number Exchange collects digits and uses SS7 to query B’s exchange and assign all inter-office trunks Local exchange rings B’s phone SS7 monitors call and tears down trunks when either end hangs up Fall 2008CS 334: Computer Security10

11 Cellular Telephony Phreaks Analog cellular systems deployed in the 1970’s used in-band signaling Suffered same fraud problems as with fixed phones –Very easy over-the-air collection of “secret”identifiers –“Cloned” phones could make unlimited calls Not (mostly) solved until the deployment of digital 2nd generation systems in the 1990’s Enck, Traynor, et. al: “Exploiting Open Functionality in SMS-Capable Cellular Networks” Fall 2008CS 334: Computer Security11

12 Today’s Phone System Threats Deregulation in 1980s –Anyone can become a Competitive Local ExChange (CLEC) provider and get SS7 access –No authentication  can spoof any message (think CallerID)... PC modem redirections (1999-) –Surf “free” gaming/porn site and download “playing/viewing” sw –Software mutes speaker, hangs up modem, dials Albania –Charged $7/min until you turn off PC (repeats when turned on) –Telcos “forced” to charge you because of international tariffs  Fall 2008CS 334: Computer Security12

13 Today’s Phone System Threats PBX (private branch exchange) hacking for free long-distance –Default voicemail configurations often allow outbound dialing for convenience –1-800-social engineering (“Please connect me to x9011…”) Fall 2008CS 334: Computer Security13

14 Phreaking Summary In-band signaling enabled phreaks to compromise telephone system integrity Moving signaling out-of-band provides added security New economic models mean new threats –Not one big happy family, but bitter rivals End nodes are vulnerable –Beware of default configurations! Social engineering of network/end nodes Fall 2CS 334: Computer Security14

Download ppt "Fall 2008CS 334: Computer Security1 Network Security War Stories Fall 2008."

Similar presentations

Aspire Vertical Markets Executive Suite Solution.

Aspire Vertical Markets Executive Suite Solution.
OUT-OF-BAND SIGNALING

OUT-OF-BAND SIGNALING
Telephone Network Security and the Capn Crunch whistle in the 1960s and early 1970s.

Telephone Network Security and the Capn Crunch whistle in the 1960s and early 1970s.
© Jörg Liebeherr, 1998-2003 CS757 Three Network Technologies Telephone Network –The largest worldwide computer network, specialized for voice –Switching.

© Jörg Liebeherr, CS757 Three Network Technologies Telephone Network –The largest worldwide computer network, specialized for voice –Switching.
There are many types of WAN technologies that can be used to solve the problems of users who need network access from remote locations. We will go through.

There are many types of WAN technologies that can be used to solve the problems of users who need network access from remote locations. We will go through.
Telecommunications & Networking

Telecommunications & Networking
Introducing The IP550 IP Telephone. Things you should know about an IP Telephone system The IPitomy system has many of the same features of traditional.

Introducing The IP550 IP Telephone. Things you should know about an IP Telephone system The IPitomy system has many of the same features of traditional.
Copyright © Open Text Corporation. All rights reserved. Slide 1 Automatic Routing With Captaris FaxPress and FaxPress Premier Darin McGinnes Sales Engineer.

Copyright © Open Text Corporation. All rights reserved. Slide 1 Automatic Routing With Captaris FaxPress and FaxPress Premier Darin McGinnes Sales Engineer.
Cisco Voice-over IP Telephony 4/27/2015 Model 7911 Model 7941 Model 7961.

Cisco Voice-over IP Telephony 4/27/2015 Model 7911 Model 7941 Model 7961.
Customer Premise Equipment and Application Chapter 5.

Customer Premise Equipment and Application Chapter 5.
ESI Phone System Training Adcom/Valentine Systems

ESI Phone System Training Adcom/Valentine Systems
© 2009 Pearson Education, Inc. Publishing as Prentice Hall 6-1 Raymond Panko’s Business Data Networks and Telecommunications, 7th edition May only be used.

© 2009 Pearson Education, Inc. Publishing as Prentice Hall 6-1 Raymond Panko’s Business Data Networks and Telecommunications, 7th edition May only be used.
PHREAKING. Content Phreaking history Bluetooth vulnerabilities Smart phone vulnerabilities Scandal in Greece US State investigation and Report about Chinese.

PHREAKING. Content Phreaking history Bluetooth vulnerabilities Smart phone vulnerabilities Scandal in Greece US State investigation and Report about Chinese.
ENGR 475 – Telecommunications

ENGR 475 – Telecommunications
Fall 2008CS 334: Computer Security1 Network Security War Stories Fall 2008.

Fall 2008CS 334: Computer Security1 Network Security War Stories Fall 2008.
Data Communications Circuit Switching. Switching Networks Long distance transmission is typically done over a network of switched nodes Nodes not concerned.

Data Communications Circuit Switching. Switching Networks Long distance transmission is typically done over a network of switched nodes Nodes not concerned.
Network Infrastructure Security. LAN Security Local area networks facilitate the storage and retrieval of programs and data used by a group of people.

Network Infrastructure Security. LAN Security Local area networks facilitate the storage and retrieval of programs and data used by a group of people.
Voice over internet protocol (VOIP) November, 2007 SIM Mobile Services Ltd Phone +37052150832, Mobile +37068019194, www.simmobile.eu.

Voice over internet protocol (VOIP) November, 2007 SIM Mobile Services Ltd Phone , Mobile ,
BASIC TELECOMMUNICATIONS

BASIC TELECOMMUNICATIONS
Customer Premise Equipment and Application Chapter 5.

Customer Premise Equipment and Application Chapter 5.

Similar presentations

Ads by Google