Project

General

Profile

WikiStart » History » Version 12

admin, 02/19/2016 10:52 PM

1 12 admin
{{>toc}}
2 1
3 12 admin
h1. security.osmocom.org - Mobile (in)security
4 12 admin
5 12 admin
6 1
This website is intended to collect information about publicly-known security issues and other bugs of mobile communications systems, with a particular focus on the 3GPP-specified protocol layers of GSM, GPRS, EDGE and WCDMA(UMTS). We collect informationon issues at any protocol layer and at any of the interfaces, i.e. the Um air interface just as well as A-bis, A, IuB, C or any of the SS7/MAP/TCAP based core network interfaces.
7 2 admin
8 1
The issues can roughly be divided in
9 12 admin
* *Specification Issues*, which are problems resulting from how the specification is written.
10 1
   Thus, all implementations will exhibit the same problem, as long as they are compliant with the
11 1
   specification
12 12 admin
* *Implementation Issues*, which are problems resulting from how a given standard/protocol is
13 1
   implemented by a given vendor/manufacturer.
14 1
15 12 admin
Many of those issues have been discovered by the Osmcocom developer team while working on software that is part of the Osmocom project, like "OpenBSC":http://openbsc.osmocom.org, "OsmocomBB":http://bb.osmocom.org/, "OsmoSGSN":http://openbsc.osmocom.org/trac/wiki/OsmoSGSN
16 1
17 1
18 12 admin
h2. Intentions
19 1
20 1
21 12 admin
The intention of this project is to bring more public awareness to the security issues of mobile communications.  Compared with the IT security community of the Internet, the mobile world has a lack of security culture, and particularly a lack of public disclosure processes.   Also, we see many self-proclaimed _mobile security experts_ abusing their power from knowing about issues that have never been properly publicly disclosed.  We want to bring more transparency into this field.
22 12 admin
23 12 admin
24 12 admin
h2. Directory
25 12 admin
26 12 admin
* [report:1 List of currently-known issues]
27 12 admin
* [[WillMyPhoneShowAnUnencryptetConnection|Will my phone show an unencrypted connection by displaying a ciphering indicatior]]
28 12 admin
* [[A52_Withdrawal]] -- a brief history on how A5/2 was withdrawn and how long it took.
29 12 admin
* [[GSMA_Security_Group]] -- some of the little public information that we found about the GSMA Security Group
30 12 admin
* [[Ericsson_Minilink]] -- some information we gathered about a popular microwave backhaul system
31 12 admin
32 12 admin
33 12 admin
h2. Miscellaneous
34 12 admin
35 12 admin
For a complete list of local wiki pages, see [[TitleIndex]].
Add picture from clipboard (Maximum size: 48.8 MB)