Crashing A Nokia Phone Via SMS

Atryn writes "An article at the Register reports that a recent Black Hat conference presenter demonstrated how to crash Nokia cell phones using malformed headers in SMS messaging protocols. Though the SIM card can be recovered by moving to a new phone, this is perhaps an interesting preview of security issues as data goes wireless." Of course, when you live in the US, where your wireless services are about eight years behind the curve, this is less of an issue. *grin*

Only eight years?

[slykens]

I just got back from India and Europe and am thoroughly embarrassed by our government's and wireless carriers' inability to play ball with the rest of the world. At least AT&T finally got the clue, I hope.

This talks about crashing a phone via SMS, but what about devices on CDPD or GPRS like those road signs or weather telemetry, or even electric meters in some locales. That's not only on the wireless network but on the IP network. Has anyone tried to muck with those devices yet? On most CDPD and GPRS plans the customer pays for each byte transmitted, what if someone just streams data towards a customer to run up their bill?

Infractsurcture

[ArchieBunker]

In small heavily populated areas like europe its easy to change out a dozen towers that blanket the whole country. Compare that to the US where everything is sprawled out.

Re:Behind WHICH curve?

[dave_c]

but in real life most of the US has just as good of coverage as Europe.

You obviously haven't tried using the same phone in both the U.S. and Europe. Get a tri-band GSM phone, take it to any large city in Europe, and you'll see you get much better coverage than in NYC/someother U.S. city.

Re:SMS proxy?

[Darren.Moffat]

Even in the US most of the telco's I've seen now have a webpage where you can send SMS messages to any phone on their network for free and without limit.

All it needs is a program that does contious HTTP POSTS to that form and you have a DoS to one or more phones.

If you are on a phone contract where you pay for incomming SMS this could really hurt financially. As an ex-pat Brit I still find it hard to come to terms with paying for incoming calls to a mobile phone in the US.

Re:Behind WHICH curve?

[WolfWithoutAClause]

It's probably not true that Europe is ahead because they have a standard system; as far as I can tell, they are ahead because it became fashionable in the boom of the late 80's in London particularly to have a cell phone; partly because it was a way of doing more business for the brokers- it quickly became a status symbol. A fairly affordable it became too as it grew rapidly among the city and top businessmen and filtered its way down to basically everyone.

The fashion made the economics look better, and that in turn drove more manufacturers to enter the market and compete, driving the price down further.

The other feature that killed off the other mostly non-digital systems was security. After the 'squidgy' tape loads of people would only get digital, particularly Prince Charles- and the GSM phones were a convenient digital standard to go for at that time.

Britain is an ideal place for cell phones- the population density is pretty high, so less cells are required; most people I know have a cell phone in britain. Many of them don't have a fixed line at all anymore.

Incidentally, there IS a satellite phone system- Iridium, last time I checked it was very expensive, didn't work indoors or in cities, had low quality; and the handsets are really heavy.

The military loves them.

Re:Black hats

[Trekologer]

• Is it at all possible to have any sort of technology without assholes coming along and ruining it for everyone

Who's the bigger asshole? The one who exploits flaws in products or the one that releases products without checking for flaws that could be exploited?

One could say that the "black hats" are really "white hats" in demonstrating flaws so that they do get fixed (in reality there are shades of gray in between, depending on what the discoverer does with that information).

Of course, if Microsoft had their way, we wouldn't even know about flaws such as this and have to put our faith in the vendors fixing these "secret" flaws (read: Ralph Nadar's Unsafe at any Speed). Of course, where's the motivation to fix flaws that the public doesn't know about?

Re:Behind WHICH curve?

[bluGill]

I live in Minnesota, about 3.5 million people, and about twice as much land as Norway. And MN is fairly heavily populated compared to many nearby states. (which also happen to be larger) covering a valley isn't that difficult from an engeering standpoint, just put a tower there. Covering a flat field of 100 miles profitably is extreamly diffiult if the entire population of the field is less then 75. I happen to know someone who lives in that exact situation.

CDPD

[Fencepost]

Don't expect CDPD to last all that much longer - at the very least its lifespan will end when analog cellular service (AMPS) does. It's also relatively expensive and slow (max 19.2Kbps) compared to what's going to be coming down the pike.

It is fairly widely available in urban areas.

Interface-wise most CDPD adapters seem to act as network cards; IBM at least also made a CDPD modem that actually had a modem interface, but it was fairly large.

Re:Who cares?

[macpeep]

It's interesting that the people who have phones with text messaging find it extremely useful where as those who don't have it shrug it off with "I don't need no stinkin' text-messaging WAP shit", not even seeming to know what they are talking about, since WAP has absolutely nothing to do with text messaging and SMS messages.

Personally, I find SMS messages extremely convenient in very much the same way as email is convenient. It's a lot less intrusive than a phone call since it doesn't demand the receivers attention RIGHT NOW. It's quiet and more private, you can write and read SMS's anywhere without disturbing other people or other people disturbing you. You can use it for services. Send "FIND Joe Sixpack" to number 400 and you get the address and phone number of Joe Sixpack in return. Send "WEATHER Helsinki" and you get the latest weather forecast for the Helsinki area.

I worked in Singapore for six weeks last summer and it was extremely convenient to just bring my normal cell phone with me from Finland and everything working without any reconfiguration. Phone book entries, caller id, text messages, data. I used the phone to check my email with my Palm Pilot, Finnish news, Forumla 1 results riding home from work in a cab in the night etc.

I'm not saying that everything should be crammed into a cellular phone. Some things work better in a laptop or a PDA if you want it mobile. The point is that things like SMS and WAP, which are totally basic features of GSM phones, are quite useful and have their own place. Instead of silly "I don't need no stinkin' text messaging WAP shit on my phone" outbursts, you might want to try it out. You just might discover how nice it is and how well it works!

A far more important catalyst

[seizer]

London status symbols undoubtably contributed to the popularity of mobile phones (that's what we call 'em ;-) but far more important is the pricing model used in the UK (and throughout most of Europe, I imagine).

We use "callING party pays", and the US uses "callED party pays".

So we don't ever pay for incoming calls (unless we go to another country) because the person calling you takes the cost hit (we have different number ranges to distinguish landlines from mobiles from porn from freephone, etc).

This encourages uptake because for the user, the initial cost to run is very little - that's the incentive to buy.

Once you have the phone, mind you, they run rings around you with all sorts of odd pricing - I, for example, can call the USA and Australia for the same price as a UK landline. In the evening, this costs me 3 cents, in the daytime, 50. Madness :-)