Skip to main content

Researchers track mobile phone locations with cheap hardware and open-source software


While cop shows have shown us that it's easy for service providers to track a person's location via their mobile phone, researchers at the University of Minnesota have revealed it's also an easy task for hackers. Using a cheap phone and open source software, the researchers were able to track the location of mobile phone users without their knowledge on the GSM network, which is estimated to serve 80 percent of the global mobile market.
According to the new research by computer scientists in the University of Minnesota's College of Science and Engineering, a third party could easily track the location of a mobile phone user without their knowledge because cellular mobile phone networks "leak" the locations of mobile phone users.
"Cell phone towers have to track cell phone subscribers to provide service efficiently," Foo Kune explained. "For example, an incoming voice call requires the network to locate that device so it can allocate the appropriate resources to handle the call. Your cell phone network has to at least loosely track your phone within large regions in order to make it easy to find it."
To do this, mobile phone towers will broadcast a page to a user's phone and wait for the phone to respond when they get a call. Hackers would be able to ascertain the general location of the user by forcing those pages to go out and hanging up before the phone rings.
Although the GSM standard assigns a phone a temporary ID to disguise its identity, it is possible to map the phone number to its temporary ID. Just by looking at the broadcast messages sent by the network, the researchers say it is possible to locate the device within an area of 100 square km (38 square miles). But by testing for a user on a single tower allows a user to be tracked to within a geographic area of 1 square km (0.38 square miles) or less.
"It has a low entry barrier," Foo Kune said. "Being attainable through open source projects running on commodity software."
In a field test using an inexpensive mobile phone and open source software and with no direct help from the service provider, the researchers were able to track the location of a test subject within a 10-block area as they traveled across an area of Minneapolis at walking pace.
In their Paper, which was presented at the 19th Annual Network & Distributed System Security Symposium in San Diego, California, the researchers highlight some possible personal safety issues arising from their discovery.
"For example, agents from an oppressive regime may no longer require cooperation from reluctant service providers to determine if dissidents are at a protest location. A second example could be the location test of a prominent figure by a group of insurgents with the intent to cause physical harm for political gain. Yet another example could be thieves testing if a user's cell phone is absent from a specific area and therefore deduce the risk level associated with a physical break-in of the victim's residence."
But it's not all bad news. Foo Kune and his group have identified low-cost techniques to plug the leaks that could be implemented without changing the hardware. They have contacted AT&T and Nokia to inform them of these techniques and are also in the process of drafting responsible disclosure statements for mobile service operators.

Comments

Post a Comment

Popular posts from this blog

Connectify Dispatch combines multiple internet connections into high speed bandwidth

Connectify, a company known for software that can turn your computer into a wireless hotspot, is at work on a new project called Dispatch that will turn all internet connections available to your device into one glorious (and hopefully faster and more stable) stream of high-speed bandwidth. The project appears to take some of its cues from live video broadcasting companies like  LiveU , which sells custom made backpacks wired up with 3G/4G and Wi-Fi transceivers. These backpacks then spread the traffic load over whatever available networks it can connect to in order to maximize bandwidth, which is obviously a major plus if you're streaming live video. Dispatch, however, is planned as a software-only solution for the masses – no special backpack required. It will dynamically manage the traffic based on which networks provide the greatest bandwidth and have the clearest signal, which also means that even if one of the networks drops out entirely, you'll still have interne...
Post a Comment
Read more

New type of silicone exhibits both viscous and elastic properties

Looking for a more effective solution to the all-too-common wobbly table dilemma than a folded up bit of cardboard or piece of rubber under the leg, University of Virginia physicist Lou Bloomfield created a new type of silicone rubber called Vistik – it's malleable enough to take on any shape when pressed, but is still resilient enough to offer support, as it  gradually starts to return to its original shape as the pressure is released. The material could have many applications ... beyond just steadying up wobbly tables. Vistik is a viscoelastic material, meaning that it exhibits both viscous and elastic properties. As a result, when compared to something such as conventional silicone rubber, there’s a considerable time lag in its response to continuous pressure. “It seems elastic in response to sudden forces or impacts, denting in proportion to the sudden, brief stress and then returning almost instantly to its earlier shape when that stress is removed,” Prof. Bloomfield ex...
Post a Comment
Read more

Tricycle House pedal-powered RV offers lots of home comforts

The idea of living life on the road in an RV can be appealing. Unfortunately, most RV’s aren’t very environmentally friendly, nor are they self-sufficient. However, the Tricycle House isn’t like most RV’s, as it relies on pedal power to move between destinations, and boasts several pieces of clever folding furniture to provide those much-needed home comforts. Conceived by architectural firm People’s Industrial Design Office (PIDO) for 2012’s “Get It Louder” Exhibition in Beijing, the Tricycle House addresses the fact that private ownership of land is not permitted in China. The pedal-powered RV envisions a future in which individual Chinese people are able to more fully connect with their land, while living simply and sustainably, on their own terms. The Tardis-like house structure is affixed to a tricycle and constructed from polypropylene (a thermoplastic polymer). The polypropylene is cut with a CNC router, before being folded and welded into shape, retaining its strength but ga...
Post a Comment
Read more