Cited By
View all- Yakar EKilinc H(2024)Exploring the Impact of Big Data Analytics on Emergency Calls within Telecommunication SystemsProcedia Computer Science10.1016/j.procs.2024.06.021238(240-247)Online publication date: 2024
Unveiling the Insecurity of Operational Cellular Emergency Services (911): Vulnerabilities, Attacks, and Countermeasures
Authors: 
Yiwen Hu, Min-Yue Chen, Guan-Hua Tu, Chi-Yu Li, Sihan Wang, Jingwen Shi, Tian Xie, Li Xiao, Chunyi Peng, Zhaowei Tan, Songwu LuAuthors Info & Claims
Yiwen Hu, Min-Yue Chen, Guan-Hua Tu, Chi-Yu Li, Sihan Wang, Jingwen Shi, Tian Xie, Li Xiao, Chunyi Peng, Zhaowei Tan, Songwu LuAuthors Info & ClaimsPages 39 - 43
Abstract
The cellular network offers a ubiquitous emergency call service with its pervasive coverage. In the United States, it can be consumed by dialing 911 for cellular users, and the emergency call is forwarded to the public safety answer point (PSAP), which handles emergency service requests. According to regulatory authority requirements [1,2,3] for cellular emergency services, anonymous user equipment (UE) is allowed to access them without a SIM (Subscriber Identity Module) card, a valid mobile subscription, or a roaming agreement with the visited cellular network. Such support of the cellular emergency services requires different operations from conventional cellular services, thereby increasing the attack surface of the cellular infrastructure.
References
[1]
GSMA. Official Document NG.119 -Emergency Communication (Version 1.0), July 2021. https://www.gsma.com/newsroom/wp-content/ uploads//NG.119-v1.0--3.pdf.
[2]
3GPP. TS 23.167: IP Multimedia Subsystem (IMS) emergency sessions (Release 17), Sept. 2021. https://portal.3gpp.org/desktopmodules/ Specifications/SpecificationDetails.aspx? specificationId=799
[3]
Federal Communications Commission. FCC 911 Regulations: 47 CFR Part 9: 911 Requirements, 2021. https://www.ecfr.gov/current/title-47/ chapter-I/subchapter-A/part-9.
[4]
Nils Aschenbruck, Matthias Frank, and Peter Martini. Present and future challenges concerning DoS-attacks against PSAPs in VoIP networks. 2006. Fourth IEEE International Workshop on Information Assurance (IWIA'06).
[5]
Yisroel Mirsky, and Mordechai Guri. DDoS Attacks on 9--1--1 Emergency Services. 2020. IEEE Transactions on Dependable and Secure Computing 18, No. 6, 2767--2786.
[6]
Ziziz Tsiatsikas, Georgios Kambourakis, and Dimitrios Geneiatakis. 2021. At your service 24/7 or not? Denial of service on ESInet systems. International Conference on Trust and Privacy in Digital Business, Springer, Cham, 35--49.
[7]
Kaiyu Hou, You Li, Yinbo Yu, Yan Chen, and Hai Zhou. Discovering emergency call pitfalls for cellular networks with formal methods. 2021. Proceedings of the 19th Annual International Conference on Mobile Systems, Applications, and Services, 296--309.
[8]
Syed Hussain, Omar Chowdhury, Shagufta Mehnaz, and Elisa Bertino. 2018. LTE Inspector: A systematic approach for adversarial testing of 4G LTE. Network and Distributed Systems Security (NDSS) Symposium 2018.
[9]
Gyuhong Lee, Jihoon Lee, Jinsung Lee, Youngbin Im, Max Hollingsworth, Eric Wustrow, Dirk Grunwald, and Sangtae Ha. 2019. This is your president speaking: Spoofing alerts in 4G LTE networks. Proceedings of the 17th Annual International Conference on Mobile Systems, Applications, and Services, 404--416.
[10]
Yiwen Hu, Min-Yue Chen, Guan-Hua Tu, Chi-Yu Li, Sihan Wang, Jingwen Shi, Tian Xie et al. Uncovering insecure designs of cellular emergency services (911). 2022. Proceedings of the 28th Annual International Conference on Mobile Computing and Networking, 703--715.
[11]
3GPP. TS 24.301: Non-Access-Stratum (NAS) protocol for Evolved Packet System (EPS), Dec. 2021. https://portal.3gpp.org/desktopmodules/ Specifications/ SpecificationDetails.aspx? specificationId=1072.
[12]
3GPP. TS 23.501: System architecture for the 5G System (5GS) (Release 17), Dec. 2021. https:// portal.3gpp.org/desktopmodules/Specifications/ SpecificationDetails.aspx'specificationId=3144.
Recommendations
Uncovering insecure designs of cellular emergency services (911)
MobiCom '22: Proceedings of the 28th Annual International Conference on Mobile Computing And NetworkingCellular networks that offer ubiquitous connectivity have been the major medium for delivering emergency services. In the U.S., mobile users can dial an emergency call with 911 for emergency uses in cellular networks, and the call can be forwarded to ...
Insecurity of operational cellular IoT service: new vulnerabilities, attacks, and countermeasures
MobiCom '21: Proceedings of the 27th Annual International Conference on Mobile Computing and NetworkingMore than 150 cellular networks worldwide have rolled out massive IoT services such as smart metering and environmental monitoring. Such cellular IoT services share the existing cellular network architecture with non-IoT (e.g., smartphone) ones. When ...
Insecurity of Operational IMS Call Systems: Vulnerabilities, Attacks, and Countermeasures
IMS (IP Multimedia Subsystem) is an essential 4G/5G component to offer multimedia services. It is used worldwide to support two call services: VoLTE (Voice over LTE) and VoWiFi (Voice over WiFi). In this study, it is shown that the signaling and voice ...
Comments
Information & Contributors
Information
Published In
March 2023
39 pages
Copyright © 2023 Copyright is held by the owner/author(s).
Permission to make digital or hard copies of part or all of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for third-party components of this work must be honored. For all other uses, contact the Owner/Author.
Publisher
Association for Computing Machinery
New York, NY, United States
Publication History
Published: 22 May 2023
Published in SIGMOBILE-GETMOBILE Volume 27, Issue 1
Check for updates
Qualifiers
- Article
Contributors
Other Metrics
Bibliometrics & Citations
Bibliometrics
Article Metrics
- View Citations1Total Citations
- 108Total Downloads
- Downloads (Last 12 months)51
- Downloads (Last 6 weeks)6
Reflects downloads up to 19 Oct 2024
Other Metrics
Citations
Cited By
View all- Yakar EKilinc H(2024)Exploring the Impact of Big Data Analytics on Emergency Calls within Telecommunication SystemsProcedia Computer Science10.1016/j.procs.2024.06.021238(240-247)Online publication date: 2024
View Options
Get Access
Login options
Check if you have access through your login credentials or your institution to get full access on this article.
Sign in