The signaling system 7 (SS7) is a signaling system for the public switched telephone network (PSTN). SS7 network transports call setup, teardown messages, database queries, trunk status, instructions for remote phone switches and so on, in fact it acts as a glue for the circuit switched network. Telecommunication deregulation, liberalization of economies and convergence of telephone, IP and wireless networks has broken the trust enjoyed so long by PSTN as being considered a closed community network. The convergence results in increasing number of interfaces between SS7 and other networks, and each brings with it many vulnerabilities. This paper first analyzes existing security threats due to virtually non-existent authentication and integrity check process and then presents a MTPSec solution at the MTP3 layer in the SS7 protocol stack which provides security services through cryptographic operations. It can be implemented at each signaling point (SP) throughout the network to provide link-by-link security or at least at the SPs residing at the interface between two networks or trust sets.
[1]
D. Woolley.
The White Paper.
,
1972,
British medical journal.
[2]
John G. van Bosse.
Signaling in Telecommunication Networks
,
1997
.
[3]
Whitfield Diffie,et al.
New Directions in Cryptography
,
1976,
IEEE Trans. Inf. Theory.
[4]
Reiner Sailer.
Signalling and service interfaces for separating security sensitive telecommunication functions considering multilateral security 1
,
1997
.
[5]
Tyler Moore,et al.
Securing SS7 Telecommunications Networks
,
2001
.
[6]
Joshua D. Guttman,et al.
Authentication and Confidentiality via IPSEC
,
2000,
ESORICS.
[7]
Dan Harkins,et al.
The Internet Key Exchange (IKE)
,
1998,
RFC.
[8]
Tyler Moore,et al.
Signaling system 7 (SS7) network security
,
2002,
The 2002 45th Midwest Symposium on Circuits and Systems, 2002. MWSCAS-2002..