Geneva, Switzerland, 2 June 2014

Study on Spoofed Call Detection and Prevention in 3GPP

China Mobile

ITU Workshop on “Caller ID Spoofing”

(Geneva, Switzerland, 2 June 2014)

Contents

Background

3GPP progress

Conclusions and recommendations

Geneva, Switzerland, 2 June 2014 2

3GPP Progress

BackgroudA variety of methods and technologies that can be used to make spoofed calls which can cause substantial loss to users and operators.The origin of problems is wider than just 3GPP networks(TS 23.081) and relates to ISUP(TS 29.163 ） , also used in fixed PSTN.

Geneva, Switzerland, 2 June 2014 3

3GPP Progress

Security Study on Spoofed Call Detection and PreventionThe project was set up in 3GPP since 2012.Spec number: TR 33.831Rapporteur: LI, Xiangjun,China MobileContributor:NSN,Ericsson,HuaWei,NECLatest TR: Draft S3-131201http://www.3gpp.org/DynaReport/33831.htm

Geneva, Switzerland, 2 June 2014 4

3GPP Progress

ObjectiveOutline valid threat scenarios for caller id spoofing coming to 2G and 3G CS domains. Analyze and evaluate if any tools in 3GPP can be used to counteract this problem.Study possible required technology mechanism to detect and prevent.

Geneva, Switzerland, 2 June 2014 5

3GPP Progress

Spoofed call ScenariosSpoofed call using the VoIPSpoofed call using the PRI/PBXSpoofing id from an IP-PBX towards IMSSpoofing of caller IDSpoofing of caller location……

Geneva, Switzerland, 2 June 2014 6

3GPP Progress

Security Requirementsthe caller ID received should be authorized.The unauthorized caller ID should be alerted.The unauthorized caller ID should be logged.If the spoofed call is detected, the network should be able to tear down the call and/or save in blacklists.……

Geneva, Switzerland, 2 June 2014 7

3GPP Progress

Candidate solutions for detectionIBCF checking incoming requests from untrusted networksPresent only trusted Calling Line IdentifiersOut of Band Methods closed to user group

Geneva, Switzerland, 2 June 2014 8

3GPP Progress

IBCF checking incoming requests from untrusted networks

Geneva, Switzerland, 2 June 2014 9

The solution ‘CS domain protected by an IMS network’ shows some restrictions ： the call is originated in an untrusted network while the caller ID of the incoming session belongs to a trusted network.

3GPP Progress

Present only trusted Calling Line Identifiers

Geneva, Switzerland, 2 June 2014 10

This solution proposes to present Calling Line Identifiers to the terminating user only if they can be regarded as ‘trusted’. A federation (originating, transit and terminating network(s)) of trust is formed by bilateral or multilateral agreements .

untrustednetwork

X

NetworkOperator

A

NetworkOperator

B

untrustednetwork

Z

NetworkOperator

C

untrustednetwork

Y

Federationof Trust

3GPP Progress

Out of Band Methods closed to user groupVerifying Through “Middle” 3rd PartyUsing Time-based One Time Password (TOTP) to Verify CallerVerifying Caller through Shared Confidential Data

Geneva, Switzerland, 2 June 2014 11

This solution is appropriate for an individual service provider ， and not appropriate as a general purpose protection mechanisms for spoofed calls in general. This is mainly because they require a third party that is trusted by both caller A and caller B, which seems infeasible to set up for any given parties A and B.

Conclusions and recommendations

3GPP SA3: This technical report analyses solutions for the spoofed caller ID problem. It seems practically infeasible to provide a solution that requires modifications to the signaling system 7.SA3 has finalized the present TR. If a more effective solution requiring standardisation is found, a new WID can be created.

Geneva, Switzerland, 2 June 2014 12

Conclusions and recommendations

From CMCC perspective:The solutions in the present TR have not fully meet China Mobile’s requirements, and more requirements are needed to be implemented into specifications.We recommend ITU to joint with other SDOs such as 3GPP to continue cooperation on Caller ID spoofing, which can reach a further common understanding.

Geneva, Switzerland, 2 June 2014 13

Thanks！

Geneva, Switzerland, 2 June 2014