Processing

Please wait...

Settings

Settings

Goto Application

1. WO2020112292 - METHODS AND SYSTEMS FOR DETECTING AND RESPONDING TO PAGING CHANNEL ATTACKS

Publication Number WO/2020/112292
Publication Date 04.06.2020
International Application No. PCT/US2019/058727
International Filing Date 30.10.2019
IPC
H04W 12/12 2009.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
12Security arrangements, e.g. access security or fraud detection; Authentication, e.g. verifying user identity or authorisation; Protecting privacy or anonymity
12Fraud detection
H04L 29/06 2006.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
29Arrangements, apparatus, circuits or systems, not covered by a single one of groups H04L1/-H04L27/136
02Communication control; Communication processing
06characterised by a protocol
CPC
H04L 63/1425
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
14for detecting or protecting against malicious traffic
1408by monitoring network traffic
1425Traffic logging, e.g. anomaly detection
H04L 63/1466
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
14for detecting or protecting against malicious traffic
1441Countermeasures against malicious traffic
1466Active attacks involving interception, injection, modification, spoofing of data unit addresses, e.g. hijacking, packet injection or TCP sequence number attacks
H04W 12/1202
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
12Security arrangements, e.g. access security or fraud detection; Authentication, e.g. verifying user identity or authorisation; Protecting privacy or anonymity ; ; Protecting confidentiality; Key management; Integrity; Mobile application security; Using identity modules; Secure pairing of devices; Context aware security; Lawful interception
12Fraud detection ; or prevention
1201Wireless intrusion detection system [WIDS]; Wireless intrusion prevention system [WIPS]
1202Protecting against rogue devices
H04W 12/1204
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
12Security arrangements, e.g. access security or fraud detection; Authentication, e.g. verifying user identity or authorisation; Protecting privacy or anonymity ; ; Protecting confidentiality; Key management; Integrity; Mobile application security; Using identity modules; Secure pairing of devices; Context aware security; Lawful interception
12Fraud detection ; or prevention
1201Wireless intrusion detection system [WIDS]; Wireless intrusion prevention system [WIPS]
1204Countermeasures against attacks
H04W 24/08
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
24Supervisory, monitoring or testing arrangements
08Testing, ; supervising or monitoring; using real traffic
H04W 68/005
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
WWIRELESS COMMUNICATION NETWORKS
68User notification, e.g. alerting and paging, for incoming communication, change of service or the like
005Transmission of information for alerting of incoming communication
Applicants
  • QUALCOMM INCORPORATED [US]/[US]
Inventors
  • HUBER, Mattias Kaulard
  • DE, Subrato Kumar
  • BHATTACHARJEE, Ankur
Agents
  • HANSEN, ROBERT M.
  • HUANG, Stephen D.
Priority Data
16/546,58221.08.2019US
62/774,07230.11.2018US
Publication Language English (EN)
Filing Language English (EN)
Designated States
Title
(EN) METHODS AND SYSTEMS FOR DETECTING AND RESPONDING TO PAGING CHANNEL ATTACKS
(FR) PROCÉDÉS ET SYSTÈMES DE DÉTECTION ET DE RÉPONSE À DES ATTAQUES DE CANAL DE RADIOMESSAGERIE
Abstract
(EN)
Methods for countering a shared paging channel hijack attack. In an example embodiment, a wireless device may monitor the shared paging channel during a paging occasion in a DRX cycle to detect a first IMSI-based paging message in the paging occasion, and continue monitoring for IMSI-based paging in subsequent radio subframes in the paging frame and radio subframes in subsequent radio frames within the DRX cycle to determine whether there are indications of a paging channel hijack attack. In an example embodiment, this monitoring may be to determine whether one or more subframes that are not the paging occasion receive IMSI-based paging messages, in response to which a threat probability may be increased. The wireless device may perform an operation (e.g., an actuation operation such as disabling monitoring of, and preventing connection attempts to, the base station, etc.) to protect against a shared paging channel hijack attack.
(FR)
L'invention concerne des procédés permettant de contrer une attaque de détournement de canal de radiomessagerie partagé. Selon un mode de réalisation illustratif de l'invention, un dispositif sans fil peut surveiller le canal de radiomessagerie partagé pendant une occasion de radiomessagerie dans un cycle de DRX pour détecter un premier message de radiomessagerie à base d'IMSI dans l'occasion de radiomessagerie, et poursuivre la surveillance pour détecter une radiomessagerie à base d'IMSI dans des sous-trames radios suivantes dans la trame de radiomessagerie et des sous-trames radios dans des trames radios suivantes dans le cycle de DRX pour déterminer s'il y a des indices d'une attaque de détournement de canal de radiomessagerie. Dans un mode de réalisation illustratif, cette surveillance peut consister à déterminer si une ou plusieurs sous-trames qui ne sont pas l'occasion de radiomessagerie reçoivent des messages de radiomessagerie à base d'IMSI, en réponse à quoi une probabilité de menace peut être augmentée. Le dispositif sans fil peut effectuer une opération (par exemple, une opération d'actionnement telle que désactiver la surveillance de la station de base, et empêcher la connexion à celle-ci, etc.) pour se protéger contre une attaque de détournement de canal de radiomessagerie partagé.
Also published as
Latest bibliographic data on file with the International Bureau