Project

General

Profile

TasksTasksNATBSCAuthentication » History » Version 2

zecke2, 02/19/2016 10:48 PM

1 1 zecke2
2 1 zecke2
3 2 zecke2
h2. Make authentication of the BSC (more) secure
4 2 zecke2
5 2 zecke2
6 1 zecke2
||Mentor ||Holger Freyther||
7 1 zecke2
||Skills ||C  ||
8 1 zecke2
||Length ||5 days  ||
9 1 zecke2
10 1 zecke2
11 2 zecke2
h3. Goal
12 2 zecke2
13 2 zecke2
14 1 zecke2
The nat authenticates a BSC by sending a token in clear text. A challenge and response mechanism should be used instead, e.g. the MILENAGE implementation of libosmocom could be used to implement challenge and response. The code can be found inside the BSC and NAT implementation.
15 1 zecke2
16 2 zecke2
17 2 zecke2
h3. Thoughts
18 2 zecke2
19 1 zecke2
This does not protect against someone hijacking the TCP connection after the initial connection setup.
Add picture from clipboard (Maximum size: 48.8 MB)