Fiche Stage CRD/Laboratoire/URD MAPS/STT/NDS Intitulé du Stage Mobile phone and GSM network vulnerability research (baseband fuzzing) Mission:

Fiche Stage CRD/Laboratoire/URD

MAPS/STT/NDS Intitulé du Stage

Mobile phone and GSM network vulnerability research (baseband fuzzing) Mission:

GSM is a wide used technology whose security is today seriously questioned. With the emergence of open-source tools and low cost hardware pieces, it becomes possible to attack GSM networks.

Furthermore, by usurpating the identity of a legitimate BTS, it is possible to fuzz attached mobile phones. Work has already been done to prototype a fake GSM base station. The goal is now to test the vulnerability of the baseband and to fuzz the GSM network from malicious mobile phones.

Main stages of the mission would be the following:

- State of the art of baseband vulnerabilities

- Prototyping and realizing a baseband fuzzer using open-source tools like OsmocomBB, Gnuradio and OpenBTS

- Prototyping and realizing a GSM-network fuzzer - Writing documentation related to the prototypes

-

Profil:

Master / Engineer student

Specialization in electronics and computer science Compétences

Required knowledge: Linux, C/C++ and Python, signal processing and radio transmission methods.

Additional knowledge in GSM / UMTS protocols would be appreciated, as well as a first experience with the software GNURadio.

Modalités 5-6 months

France Télécom R&D

38-40 Rue du Général Leclerc 92794 Issy-les-Moulineaux France Le plus de l'offre

You will work in one of the “Middleware and advanced platforms” teams, a France Telecom entity at the forefront of innovation in network and device security. The team is in particular involved in domains like IP and mobile networks security, and OS security.

Contacts

Loïc Habermacher Ingénieur R&D 01 45 29 48 39

[email protected]