Um Security Features
GSM 02.09 defines the following security features on Um:
- authentication of subscribers by the network,
- encryption on the channel,
- anonymization of transactions (at least partially)
Um also supports frequency hopping (GSM 05.01 Section 6), which is not specifically intended as a security feature but has the practical effect of adding significant complexity to passive interception of the Um link.
Authentication and encryption both rely on a secret key, Ki, that is unique to the subscriber. Copies of Ki are held in the SIM and in the Authentication Center (AuC), a component of the HLR. Ki is never transmitted across Um. An important and well-known shortcoming of GSM security is that it does not provide a means for subscribers to authenticate the network. This oversight allows for false basestation attacks, such as those implemented in an IMSI catcher.
Read more about this topic: Um Interface
Famous quotes containing the words security and/or features:
“Thanks to recent trends in the theory of knowledge, history is now better aware of its own worth and unassailability than it formerly was. It is precisely in its inexact character, in the fact that it can never be normative and does not have to be, that its security lies.”
—Johan Huizinga (1872–1945)
“Art is the child of Nature; yes,
Her darling child, in whom we trace
The features of the mother’s face,
Her aspect and her attitude.”
—Henry Wadsworth Longfellow (1807–1882)