day1_Hacking-telco-equipment-The-HLR-HSS-Laurent-Ghigonis-p1sec

More documents

Recommendations

Info

Recommendations • Secure SDLC (Secure Software Development Life Cycle) – Design – Implementation – Testing • Especially for vendors custom stacks/services TCAP/MAP parsing bugs leading to overflows, … • Vendors security audits (<strong>HLR</strong> isolated) – System audit – Network audit • Testbed audits (<strong>HLR</strong> in environment) – System audit – Network audit – Before deploying to production 2014, Hackito Ergo Sum - Security Conference
Recommendations: securing the OS • Use Solaris Zones to split services: P1VID#764 • Use Solaris Audit mechanism: P1VID#765 • Authenticate the hardware – To prevent emulation • Use the latest OS protections against exploitation – Solaris 11 has ASLR – Use custom Linux kernel • Use a firewall by default on the machine itself • … 2014, Hackito Ergo Sum - Security Conference
Page 1 and 2: Hacking Telco equipment The HLR/HSS
Page 3 and 4: Mobile Operators • Conveys the ma
Page 5 and 6: Mobile Operators and governance •
Page 7 and 8: HLR/HSS in Mobile Core Network 2014
Page 9 and 10: HLR/HSS in Mobile Core Network 2014
Page 11 and 12: HLR/HSS in Mobile Core Network HLR/
Page 13 and 14: 2014, Hackito Ergo Sum - Security C
Page 15 and 16: HLR/HSS Virtualization No, it’s n
Page 17 and 18: An HLR/HSS is an ecosystem • HLR
Page 19 and 20: Where to start • Most exposed fro
Page 21 and 22: Virtualization of HLR/HSS Frontend
Page 23 and 24: Qemu/KVM • Faster than VirtualBox
Page 25 and 26: Qemu/KVM • Solaris 10 - Qemu/KVM
Page 27 and 28: System Analysis 2014, Hackito Ergo
Page 29 and 30: The filesystem • ZFS offers good
Page 31 and 32: Some packages installed application
Page 33 and 34: Local roots • Of course, we often
Page 35 and 36: Example of Telco network stack: NSN
Page 37 and 38: Fuzzing SS7: M3UA • Example: Floo
Page 39 and 40: Fuzzing SS7: SCCP 2014, Hackito Erg
Page 41 and 42: Fuzzing Diameter • Process Crash
Page 43 and 44: Binaries reverse 2014, Hackito Ergo
Page 45 and 46: Signalware Kernel modules • Examp
Page 47 and 48: Signalware userland binaries • Pa
Page 49 and 50: • Misconceptions! So verdict ? -
Page 51: Consequences • Mobile Network cra
Page 55 and 56: To be continued • Telecom Network
Page 57 and 58: References Governance literature on

day1_Hacking-telco-equipment-The-HLR-HSS-Laurent-Ghigonis-p1sec

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?