Network Security & Hardware - eWeek


Battery 500 Project Charged Up over All-Electric Cars
Charting the Final Frontier--Google Maps for Indoors
Get Smarter Technology on Your Mobile!
  Network Security & Hardware


New Attack Intercepts Wireless Net Messages



 By: Carmen Nobel
2002-03-11
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Network Security & Hardware story.


Rate This Article:
Poor Best
A group of security researchers has discovered a simple attack that enables them to intercept Internet traffic moving over a wireless network using gear that can be picked up at any electronics store and an easily downloadable piece of freeware.

Its the stuff of Popular Science. A group of security researchers has discovered a simple attack that enables them to intercept Internet traffic moving over a wireless network using gear that can be picked up at any electronics store and an easily downloadable piece of freeware.

The attack, accomplished by @Stake Inc., a security consulting company in Cambridge, Mass., affects a popular consumer version of Research In Motion Ltd.s BlackBerry devices as well as a variety of handhelds that send unencrypted transmissions over networks such as Mobitex.

By design, the Mobitex specification, like other wireless standards such as Global System for Mobile Communications and General Packet Radio Service, sends packets in unencrypted form. The network, which handles data transmissions only, has been in operation since 1986 and has a large base of installed devices, with customers using it for everything from point-of-sale verification to e-mail.

"The attack is fairly simple," said Joe Grand, one of the researchers who perfected the technique. "The problem is, this isnt a bug. Its part of the spec that data is transmitted in the clear, just like its part of the spec that Internet data is transmitted in the clear. The risk depends on who is using the network and when and what data theyre sending."

Using a scanner with a digital output, an antenna and freely downloadable software, the researchers were able to intercept traffic destined for BlackBerry Internet Edition devices. And, because the packets arent encrypted, the attackers can read the messages they intercept without further work.

The Internet Edition handhelds are sold mainly through co-branding relationships with ISPs such as AOL Time Warner Inc.s America Online service, EarthLink Inc. and Yahoo Inc.

Executives at RIM said they dont see the attack as a problem because they have never touted the Internet Edition devices as being secure.

"Internet traffic isnt supposed to be secure," said Jim Balsillie, chairman and co-CEO of RIM. "Its kind of like a company making beer and cola and someone saying that theres alcohol in the companys drinks when the children are drinking cola."

However, the attack serves as a reminder to users that e-mail and other Internet traffic is open to snooping and is inherently insecure.

"I always figure that anything thats sent via e-mail can be read by at least hundreds of people which have either legitimate or compromised access to systems sitting between me and my recipient; this just adds another potential access point," said Christopher Bell, chief technology officer of People2People Group, a relationship services company in Boston, and a user of the BlackBerry Internet Edition. "I am disappointed that they didnt make at least a modest attempt to obscure the content."

Balsillie said the messages are only as secure as the networks of the ISPs that relay them, none of which provide encrypted e-mail.

Chris Darby, CEO of @Stake, said RIM has done a thorough job including security in its other devices, which use a server that sits behind corporate firewalls.

"RIM is incredibly progressive about the way theyre addressing security in their Enterprise Edition," Darby said.

The attack also applies to other devices on the Mobitex network, many of which are proprietary solutions developed for in-house corporate uses.

This attack does not work on the BlackBerry Enterprise Edition, which uses Triple Data Encryption Standard encryption in addition to other security features, @Stake officials said.

"Typically, Mobitex operators will advise customers that they should choose the security scheme that fits their particular needs," said Jack Barse, executive director of the Mobitex Operators Association, based in Bethesda, Md. "It was a conscious decision not to put network-level security in because customers have said that they dont want the overhead associated with security if theyre just doing things like instant messages. Customers can absolutely add on their own encryption to whatever application theyre using [the network] for. And we encourage that."

Related stories:

  • Living with Worms, Viruses and Daily Security
  • Programs Design Is No. 1 Cause for Flaws
  • RIM Gives BlackBerry a Voice



      Reader Comments: New Attack Intercepts Wireless Net Messages
    >>> Be the FIRST to comment on this article!
     

     
     
    >>> More Network Security & Hardware Articles          >>> More By Carmen Nobel
     


    • xr㶲(;; YڦxH)ْZcY^fI}U*$ER$'/:/qtMJe2k}3mFwh4#ooD.\ݴ1ܦd轿O$w}Lj9UQ#C3W)9bPg34mZΠN@\~}@^}fwD%x_'Щ=ѩ:€wɄZIPQۗ>}^~l .hrL⎲IlG5tuGѦ%yH#ERΎȏm@|׶cַ(>r@ߩVANé-}!*{>"E%k4ًʏшqGOП{/ !X]~ꄽ4-fGdh-vu=yͰ { /\1r.b,ѽ[@M*6 L=TVE;&3ýtf?Dk N\^ ZSˆ螥ɧ5f5I ` 1l{`2JHn6,!\ G-%0/<{mڻPʪ)aw>ʑC[wn5-%uPtڧ^O.Za\`'H H7&LT)Jj\(OLCajLq5 { P\㍒~7nJxXX+(.c#-byOa`%pfQU:7gsKߺnZ:=?nΐ}1fP+M~(#3hؕgxg_:nΚ77fGκפ>m>s鐚&tXAZ|YkUV1?!&wA\OIN©,7MysA {[-t[[9K }!zc-? ,_ f kķLJo$SNE ;- uͪ5V(z[PĿ G/<@'L[w)p3Z&j9T23=jMH#k 3!RBʼۤ%/^(P%!P샖_.[ jF|*(If(;΀/3A.r)# 6=aL+^뻹(4l.k\'֛esJVt];7Eя0-*<ZV.~zLqJjpX.B2iKB0.pjۛZ|_)Ab/*r[h2ud8԰)56'4}t>჎$>hƋCr[nL,rӇu4@>+GݺzL߳=Wԇ5D57 l"&q}s)к`yna2C?FlEnP>X^0 jp3*~s=w= } wAk 6G~[>l0s0N\IQo M2(%E2G 4.gP)AH = \99y 0#!bTLZ'9Tv{B#Tz(΍gR1eb -d[b~Il eV&vϏaZLboD6], S mo3-mu{6 z`N&syj尤v Q#U^?uw2-vF΍`?Y^0.1 7R'~Xz /,ÂIc̦uS=L{"z [q37oj7ab< #>Xl~teٜi8SA0>A̞P,j\p>q|}>I8%/5+8dp7 P*ܼ? b>Ȝ 8C_gM Yh(d'pC!f4Sy%ew{Rrʳ"#@7X>ť`N)mtй+>q^v.iC@di[I%ͺ7RumIJҰ.Z*ei ma-׾k^ )-Q|u$"6XRvӱυò=cM2&Ÿä7 kSkdQ6qoaQ54 )Kۊ7q~4EkaZ,<>kp6X"@@7wM)mT.mT^͇gΧީ;i6E7{LM|pf:s?&نdpg׏Ф0V2PaIUU[13R%fx#e\46L XbOFg8]%8Y_,-*{g5eWlH Wk4&uE8` ;fkxF3FԑeSPݷuIAʫ%Uf!f6,ƴL~5<2eX]2XrGmٔAutn\?01CL-@:*YCç c"Dk_(+ `kAOYϩDkJc\Cњy]֩;lRzzwݱM% Wl RN0})Xk±&>,<<+ځi0A  ~HLbР B@U.(L19r2b*X[PTB$ᦼ6t߂ĒbtXQ =j={e|h322 yӅZ JLo39*ERgD+ϏxWG"MϨH_ଯ?p&o1ZpY9Jo/^Jdw%eXY81f-1_0kE /ÊTU5ݧ+i fB1&} leA{X~\U4Uud XZ 0(E{0 qDLҀJ 5^ƙl)=T*ݝ'(R~h;?mRYf0`%l* Ie(#N枏~+kF$X c4}5:*jAe߯yYXY :څHi3 9& ~gH5ysV9y]%fZ+a1,*=:]6AP,2gy3iqSnU ֕&eS<MxS ͳi54=_@HpfGi }䯦gQSM8^&&оȣ*騫VJe2&0ʃF5c; [LY6RL5sݿxWji==ݸ/">sԳйtNcl }~rnAf D|8 F:%`?<Y3GGu"M."́08h#2"G=!`n ~/I60&|N:@"c].2|Y{1N8*z)cʜEo(SYmq'&F.Ҁ^\f6}b;?/i)T",߸X,W̱^`3XZ>6lz |q6tGM4*H!I(uO( Eōj4 Jz7Ϣ C.͂[-2B0qR3ڛ5^@M|KZO 0u%hzGSYqza\/Cn/$h ^1Mu0@glJwѸ\C8fSqlYV&Up]t3Mb>ҁh 0>0Rlʪ+> 2*ijARϢs{@:Lpz]Qd:)nQ==յћY GL)߭~*9WIfT.jZb[)Uʹ>"4G\0R,W1<ʢ'r]N6._-Jvq *s>P9۷BlpH75SXp| ^?KXXD>DQkz\{e"nxB* WF Dccb^fsq`zUljP[/I6]K0:;_ ݘ`3ax -⤔Qԕº}wnϏHAcg˾t/> ~?<o&crj?GjiRYԾl~9"cﯻ/RxQ^ٷ9P K1rcF1>dd˙]=/bofta؆.Zg0F@qIDWN~#tۗKߧ݋5?wL.ڗ-)^{%y0WԸhm48Z&IyD cf42lzE5q^7[לY0z!B3ZMUc z E0ע8?V   k@JA=Voh{Wa{mE-bT1 _RJMQ=#ijf{L '(^(0[LӷoHW蘧YGD_q+5sz4~\1Z9nl"݋B2^'68/=h)ޏIB"a.A-H7ԺN9"4qJh"g:A;6?m[ħ{, /䎑=;SL%3U([4viQE-eє9rtJ1SBi\[פqj`~%X@RoBwGH|5zÿ§G r;kgOƭtGo;vkm,da3fo ׾v/ݻw~Zؖ[q*A-wC<L>?Fdc: M"I^U֭UdU)I=YE㣑)?8b[0d&zvA JGs`̞xqK7bRco}|}& ~ ]=PI=w)~=Ғ(r_ZDNq5Q {qI9.x}?,J`\Ty^v} l$>?GB"fFcME[ofO<|ngZy‡i襖<<79wBf#EVާA#ʪR-}>U?,bH!i@|iokdP#Rg@I}vZF7UWײWBx2j#rU2B׸B3)nh^[:ebl 1KGj fW_5-mkrM$ w2rq9 c%&|>Uj y~$YD Rc0q0PHbr=Gwh0KlO_ 5vX'&6cYߪڗ Zwt躰[1a!ݐN'`J ]rߊE3Ҵ|6Lzlï^Jif-e։5V$L/NaL4s+x(0_J7{/2rpD ,i'tMzIZsZ j=^_VS'[_URkbw2О$M#}-Gܒbd=-Tw߁^<@!mo@ aW:l׏{CԸl`tq"o(vzX67 ~VxrڂLv O?3{>#OCMw !n1J2` 2za3 ΰ.$o,S`,h6W`aL]o0q_n]LG蹙[]Vx^xK)LE|/A$㷈 )D#ঀ~x U&;@+=VfW|'""aY1sʉmOGѥgxPEqmcpX]H e _M BaD0‡~-b ʫ1ʵm <ߋ.i":>([˜zpWӸڕoG)Ÿ/ ^awᷭkd _&0ڱJ R 9?/RRmF Νz_ayZ~\`{1RZ-Yqc[1V㬤]F Rt3}$纣;~  &(C"ͨa8TJ[ J}J0+ƘZ]-'|͈Vs%d 4&JSxcLW<00t+P̲jNT\OpY=XCE3 L w>VHUljod@28 :{ᛂrPZ-#Fd>hTHґu o!a<$wzR̥7b{@Ȝr 8q,Ye)+փފ> rF@Yj$GԍD% quj}@~h/ew[= d.zt稯-dJ`#oM3<2WwԘ8@# CO 2ū]~5»<1q-LCաu/ OCcPx-r9Gc9ϷFu*}n_faH9p=S-y1Șh MQ VHxDɹ~1&gV3!"&LmangOx`6 _H"518y8(aU T, ?B5DSJTmn$|s ^7ɔ,,2E<Cez?,GΎwe~tHM5iV>NWv.7x Zѷptԝsm~>^}>k_ۗ\X|j5ۼW6(P]6:-f)T3\h^Epɂw]%;飱8/&Tם'Q_lE_VCĨҫSa0LL7VeS+7Пxu3K_9u Χ65A^^Z+!PU8iz67a\nq4ħEO\=4[EEF(Q+Q~ O.w3ʑ˛@f+Oח}2>?B\͌r_;i_fC?2?C">vNtNɂdзdЧw2v2O /?As(?(#坌rˌ̐KˌBf.n~+x*k  {/>_?@/?}OP)'ߧ @MV9M@7d_ryrָ…)IFy)W?RErXB]eBy>++P/Үw3 ث : ?3/z^}NV&n3^a芪g-5,Z1nvd}חG{1*,xW&ye^>&c˼$=)>w懤Ixմ] &JR˯-cENj9.~QJxdB$h{U26#{"tXô=QǒGЬ]#=D(Ksҗe&os?`jG~@' @9ξr m>v=y `^sR:=bՇ<0 ;V.򡟼w Ńq`a\m8JI(q0vFH7704.ބk@f]3&2/}§On3A ~m o1I45~ɉf (W kDF(t#b́Pl@PJ]XvxAt60'O>8Ï }Cqzvtsʱ EaqgaK5 D 9b oZ1LmaRxY~1'~#pIi/ 0{IB m`Z(>/~y _Xw3Wg%%aV0'VbgHIأ_BDOv&{yN =cOiϞO$NSP}XOm:ZdUtN,,>qg?:hЌR(;21P E^)^xjA߭ed#əW B| ,*-Ŋi;j3鱻$0\d~\g;e=n 3&R,`'/2^;'g\4zH|k,XoMT*L[ |iKڼAM6_w,-YoˊL3t#mG3RVf:ХIG*9"Ź oPmJOdkl`vB`9`"R "@"drtPŗ;ױix_;|dzӧ-[$@O"OC24a)yc<znG}޴%cHPWFWݞ햏 Xo} 8lO.d6C|eKozr:Y W96O~0qGĶ2Cfw4MepvRv ?93_-rxgs%@NDqDgPy 6s6Na^|ۺ+AўYmw|h[d%+^FHM`WH؂{XiWe1RpCV)tO拰^UgD73D*.}X^c 0У,*0sshՆGXǸ[ [) qy6` <Щ0DM.vj]nJQXƺa#QaW:6n uywDL\7﹨]e#FP1Wov$ѿ9V0|6,lp/>&G[0tcz﮳zg[8KIJ y2 !δZxyU~ҥ^.I,g`cQd+8*)ؐrk`4bOP1,,oԛŒ'TS*4.v>ϝn<^e$;]2*箍A-Z12Mo,gkV"K0G= `5>gvC%= r?qmr?09&rX)>6saȽgz^|j}XXC`*3F"%hw2b59#ʧ3N~p `\YG7^Ekb`!g˾t/>Jz`g^VXvQJed֌V&|ƷZ2cˤ_ ?ٽ*