Communications Traffic Data from mobile phones is in the media today:
The Sunday Telegraph came up with a story yesterday:
"Army wives get phone death threats from Iraq", which has been quoted by the online versions of their rival media yesterday, e.g. Mail on Sunday, or The Press Association.
Today's tabloids like The Sun or even The Times are also running this story, without bothering to follow it up with any more investigations, and without any credit the Sunday Telegraph at all, which is unethical, and something which most bloggers who comment on this story, hopefully will not emulate.
We are sceptical about the details and claims made in these stories, and in the supposed briefing document leaked by the Territorial Army London Regiment.
- Lots of people get "nuisance calls" in the UK
- Lots of people get "silent calls" from automated dialing machines waiting not to hear a fax or modem tone, and then pass the call on to a call centre worker, who then tries to sell them mobile phones or kitchen units or double glazing etc. Many times these systems fail to hand over to a busy call centre , hence the "silent calls".
- What evidence is there that these "20 nuisance calls" have actually originated from Iraq ? Dialing 1471 will not reveal the number which has called, neither from a foreign based call centre. nor from the alleged "Iraqui insurgents".
The Territorial Army document supposedly says:
The document warns soldiers preparing to take part in operations that insurgents in southern Iraq have managed to obtain the home telephone numbers of soldiers by using electronic intercept devices to hack into mobile phone systems.
The military document states that there have been "many instances in the last weeks of relatives and friends of personnel serving abroad on operations getting nuisance phone calls" from Iraq.
It adds: "Investigations indicate that the 'callers' of these nuisance calls have acquired the numbers from personnel using their own mobiles to phone. This is fairly easy using today's technology. It makes no difference whether the mobile is of UK origin or sourced abroad.
Such claims are exrtremely hard to believe. Why did these supposedly professional journalists not check such claims with some mobile phone network experts ?
- We simply do not believe that "Iraqi insurgents" have access to passive GSM Mobile Phone snooping equipment. Breaking the standard A5/1encryption which protects the phone handset to base Station transmitter radio leg of the voice phone call or text messaging is possible, using a pre-computed lookup table which would need "only" about 200 Gb of disk space, but getting hold of a fast enough frequency hopping radio scanner is not so easy.
- The deliberately weakened "export" version of the GSM encryption A5/2 can now, with modern computing power, be broken in real time, thanks to some design flaws in the protocol which were not exploitable other than by national governments, when it was designed. To expolit this, an attacker still needs access to frequency hopping scanner equipment fast enough to follow the channel hopping which a GSM phone does, not really for security, but to counteract temporary interference and borderline radio transmission effects like reflection of the radio signals etc., especially at the edge of a Cell, or whilst on the move.
- "Insurgents" would have to be insane to use a man-in-the-midde attack micro-cell or fake Base Station transmitter in Iraq, since this would have to transmit and easily betray its own location, within seconds, to the military Electronic Warfare teams on the ground or in the air.
Both of the above techniques only work in a limited area i.e. within one Mobile phone transmitter cell.
If the alleged "Iraqui insurgent nuisance callers" have access to the GSM Mobile Phone core networks in Southern Iraq or Kuwait , then the British Army should be far more worried about the Location Based Service tracking of any mobile phones which they are carrying, even without making any calls, as this will warn the insurgents of troop movements, and could possibly be used to set up ambushes.
Given the importance of preventing the local GSM mobile phone networks from being used to detonate booby traps and bombs remotely, surely these networks have always been under the direct control of the British and Iraqui military forces ? If not, then why not ?
What will the Ministry of Defence do in response to these tabloid headlines ?
- Will they ban British soldiers from carrying or using mobile phones ?
- Will they vastly increase the amount of secure communications available for soldiers to contact their families back home ?
- Will they snoop on all the Communications Traffic data of all the families of British military personnel, and of all the innocent people who happen to call them ?
- Will they get an independent security audit of the security of the mobile phone core networks in Iraq ?
- Will they check that the personnel with authorised access to the Communications Traffic Data in Iraq and in the UK are not betraying these details ?