 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| – |
analog
cellular phones are completely insecure
|
|
|
n |
anyone
with all-band radio receiver can tune in and listen, just ask the
|
|
|
British
Royal Family
|
|
|
n |
also,
combining all-band receiver with a computer, one can monitor the
|
|
|
|
control
channels and record all 32-bit serial numbers and 34-bit MINs
|
|
|
(kind
of like monitoring Ethernet for password in clear text, except that
|
|
|
intrusion
here is even easier)
|
|
|
n |
once
SN and MIN are known, use them to reprogram cheap phones and
|
|
|
|
viola:
all your calls will be charged to unsuspecting victim, who will only
|
|
notice
weeks later, when phone bill arrives (big scam in New York).
|
|
|
n |
provisions
to authenticate a device (shared secret, burned into hardware),
|
|
|
but
older phones do not support this and therefore device authentication
|
|
|
|
not
used
|
|
|
n |
even
with device authentication, communication over airlink not
|
|
|
encrypted
and therefore still unsafe
|
|
| – |
also
an issue of vandalism and damage to antennas and base stations
|
|
|
(similar
to damaged public phone booths)
|
|
