This method is
used by hackers to obtain sensitive information such as routing and private user identities.
The information is then used to create new messages that will pass authentication
unless there are other forms of authentication and security (as we will continue
to discuss).
The eavesdropping is prevented through encryption, both within the secure home
domain as well as across transited networks. Encryption is the best means to prevent
eavesdropping from occurring and is one of the reasons that IPv6 with IPsec has been
defined for use within the IMS.
The wireless network also uses encryption to prevent eavesdropping at the air interface.
This was a problem in earlier wireless networks and the driver to implementing
encryption across the air interface in GSM and CDMA.
It is just as applicable in wireline networks, where hackers can compromise ports on
communications servers to enable copying of messages and rerouting of SIP messages
to their own servers. Encryption then becomes useful for preventing this in the wireline
networks as well.
Registration Hijacking
Registration hijacking occurs when a REGISTER message is sent by a hacker with
a subscriber??™s stolen identity. The identities are learned through eavesdropping and
serve to move a current registration to another location or establish an entirely new
registration if the legitimate subscriber is not connected and registered.
Pages:
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290