Implementation of a Malicious Traffic Filter Using Snort and Wireshark as a Proof of Concept to Enhance Mobile Network Security, Journal of Telecommunications and Information Technology, 2022, nr 1 - Instytut Łączności – Państwowy Instytut Badawczy

Skip to main menu
Skip to search engine
Skip to content
Skip to footer

Implementation of a Malicious Traffic Filter Using Snort and Wireshark as a Proof of Concept to Enhance Mobile Network Security, Journal of Telecommunications and Information Technology, 2022, nr 1

Download

Title: Implementation of a Malicious Traffic Filter Using Snort and Wireshark as a Proof of Concept to Enhance Mobile Network Security, Journal of Telecommunications and Information Technology, 2022, nr 1

Creator:

Murugesan, Raja Kumar ; Afzal, Rafia

Date:

Resource Type:

Description:

In the 1970s, roaming interconnections for cellular networks were designed for a few trusted parties. Hence, security was not a major concern. Today, the SS7 (Signaling System no. 7) solution that is several decades old is still used for many roaming interconnections. SS7 has been proven vulnerable to serious threats due to deregulation, expansion, and convergence with IP-based Long Term Evolution (LTE) networks. The limitations of the SS7 network that it is unable to check the subscriber’s authentic location, verify their identity and filter illegitimate messages, makes the system vulnerable to attacks. Adversaries taking advantage of these shortcomings can inflict threats such as interception of calls and text messages, subscriber tracking and denial of service attacks. Although LTE and Diameter signaling protocols promise enhanced security keeping up with the latest attack vectors, their inherent flaws related to roaming interconnections are still there and continue to make the networks vulnerable. Hence, a highly secure signaling network is required to protect the operators and the subscribers from a diverse range of security attacks. SS7 network protocol layers, such as signaling connection control part (SCCP), transaction capabilities application part (TCAP), and global system for mobile Communications – mobile application part (GSM MAP), manage connectivity between networks and subscribers. An analysis of the parameters of these layers may provide a clear insight into any anomalies present. Unfortunately, these parameters are not validated and verified at the network’s edge. The major contribution of this research is a methodology for detecting anomalies by checking malformed parameters and intra-layer parameter discrepancies at the abovementioned protocol layers. This paper provides an insight into the severity of SS7 network security vulnerabilities. Furthermore, it provides a proof of concept for the analysis of SS7 network traffic using the Wireshark packet capture tool and the Snort intrusion detection system (IDS) capable of detecting malicious traffic patterns.

Publisher:

Instytut Łączności - Państwowy Instytut Badawczy

Format:

application/pdf

Resource Identifier:

ISSN 1509-4553, on-line: ISSN 1899-8852 ; oai:bc.itl.waw.pl:2216

Source:

Journal of Telecommunications and Information Technology

Language:

Rights Management:

Biblioteka Naukowa Instytutu Łączności

Subject and keywords:

mobile network SS7 signaling network security

Object collections:

Last modified:

Feb 25, 2026

In our library since:

Apr 26, 2022

Number of object content hits:

70

All available object's versions:

https://bc.itl.waw.pl/publication/2522

Show description in RDF format:

Show description in OAI-PMH format:

Journal of Telecommunications and Information Technology

Edition name	Date
Afzal, Rafia, Implementation of a Malicious Traffic Filter Using Snort and Wireshark as a Proof of Concept to Enhance Mobile Network Security, Journal of Telecommunications and Information Technology, 2022, nr 1	Feb 25, 2026

Objects Similar

Mechanizm transportowy aplikacji APM i jego wykorzystanie w protokołach sygnalizacyjnych sieci ISDN użytku publicznego. Telekomunikacja i Techniki Informacyjne, 2004, nr 1-2

Obrocka, Anna

2004, nr 1-2

artykuł

Parallel and Distributed Simulation of Ad Hoc Networks, Journal of Telecommunications and Information Technology, 2009, nr 3

Niewiadomska-Szynkiewicz, Ewa Sikora, Andrzej

2009, nr 3

artykuł

Transmission of Disaster Warnings via Control Channels in Cellular Networks, Journal of Telecommunications and Information Technology, 2020, nr 4

Salman, Omar Hussein Abdullah, Osamah Aal-Nouman, Mohammed I. Al-Shaikhli Noor Qusay A.

2020, nr 4

artykuł

On-demand QoS and Stability Based Multicast Routing in Mobile Ad Hoc Networks, Journal of Telecommunications and Information Technology, 2014, nr 3

Manvi, Sunilkumar S. Basarkod, P. I.

2014, nr 3

artykuł

Requirements of 4G-Based Mobile Broadband on Future Transport Networks, Journal of Telecommunications and Information Technology, 2012, nr 2

Voß, Stefan Schwarze, Silvia Nitsch, Ralf Wevering,Stefan Fricke, Matthias Heckwolf, Andrea Herber, Ralf

2012, nr 2

artykuł

Mobile Telecommunication Systems Changed the Electronic Communications and ICT Market, Journal of Telecommunications and Information Technology, 2013, nr 2

Zieliński, Andrzej Zieliński, Kazimierz

2013, nr 2

artykuł

A Method of Mobile Base Station Placement for High Altitude Platform Based Network with Geographical Clustering of Mobile Ground Nodes, Journal of Telecommunications and Information Technology, 2009, nr 2

Yoon Song, Ha

2009, nr 2

artykuł

A static test-bed for the evaluation and optimization of multihop wireless network protocols, Journal of Telecommunications and Information Technology, 2008, nr 2

Bachran, Thomas Bongartz, Harald H.-J.

2008, nr 2

artykuł

More

Citation style:

Chicago

Contact details

Address

Instytut Łączności – Państwowy Instytut Badawczy ul. Szachowa 1 04-894 Warszawa

Phone

(+48) 5128 696

E-Mail

biblioteka@il-pib.pl

Visit us!

https://www.gov.pl/web/instytut-lacznosci

This page uses 'cookies'. More information