Skip to content
Login
Speak to sales
Open a live chat Send a message Book a meeting
Courses / Partners / LTE Security and Insecurity TS-401

LTE Security and Insecurity TS-401

Course details Content Purchase options Frequently Asked Questions
Learning Time:
3 Days
Level:
Advanced
Delivery:
Live online
Share
Link Copied
Share:
Link Copied

Course Details

This three-day training program delves into modern telecom systems, with a focus on 4G LTE mobile network services. Participants will gain a comprehensive understanding of LTE security mechanisms, the Evolved Packet Core network's security, vulnerabilities, and potential issues within LTE networks. Prerequisites include a basic knowledge of telecom and network principles (2G, 3G, and 4G, OSI network layers, and basic telecom technologies), as well as familiarity with Wireshark. Internet access is preferred but optional. Attendees will have access to the presenter's slides through the Intralinks Web platform for one year after the training. The training covers LTE introduction, security architecture, network elements, communication security, LTE protocols, typical attacks, legacy in LTE security, network element vulnerabilities, and attack scenarios, including radio-based, infrastructure-based, internal-based, and interconnect-based scenarios. Participants will also learned how to become an LTE network auditor.

Training Format:

  • Online Delivery: P1 Security courses are designed for seamless online learning. Participants can access pre-recorded lectures and course materials through a secure online platform.
  • Hands-on Practice: Participants will have access to P1 Cyber Range, allowing them to engage in practical exercises for real-world application.
  • Self-Assessment: Each training module is accompanied by self-assessment quizzes, enabling participants to evaluate their understanding and track their progress.
  • Expert Support: A 90-minute "Meet the Expert" session provides participants the opportunity to ask questions directly to P1 experienced instructors.
  • Certification: Upon successful completion of the final exam, participants will receive a certification recognizing their achievement.

Buy Through us and Receive:

  • 10% off the 2G, 3G, and SS7 Mobile Network Security TS-201 course — €2,250 (after discount).
  • 3 months free access to Mpirical's Introduction to LTE course.
  • 3 months free access to Mpirical's NetX.

This course is not available as a package option.
Download course outline
Let's chat

Live Training

Live training options include live, instructor-led onsite or online for teams of 10 or more.

Enquire now

Course Contents

LTE Introduction.

LTE Security architecture.

LTE Network elements overview and security roles & functions.

LTE Communication security, cryptography and key management.

Study of LTE protocols:

  • S1AP.
  • X2AP.
  • Diameter.
  • GTP-C.
  • GTP-U.
  • GTP v2.
  • GTP’.
  • NAS.

Typical attacks on LTE infrastructure.

Recap of SS7 attack scenarios and comparison to 4G.

Role of legacy in LTE security.

Network elements and their functions: HSS, DRA/DEA, MME, PCRF, eNodeB, PGW, SGW.

DRA remote and RCE compromise via Diameter.

Vulnerabilities in VoLTE.

Analysis of Generic LTE Network element and vulnerabilities:

Diameter security and comparison to SIGTRAN and Radius protocols.

Diameter fuzzing and scanning.

Diameter in a roaming context.

NAS security, protocol review and known attacks.

SCTP protocol basics, scanning and attack scenarios.

SGW – PGW infrastructure and design and GTPv2 scanning and fuzzing.

S1AP interface protocol study and known vulnerabilities.

Attack scenarios over the S1AP interface.

Attacking O&M (OAM & Management) of network elements.

GRX / IPX compromise case studies, architecture and design and known vulnerabilities.

  • Scenarios of attack of LTE network:
  • Radio-based, subscriber role.
  • Infrastructure-based, transmission or RAN vector.
  • Internal-based attack.
  • Interconnect based attack scenarios.
 Let's chat

Live Training

Live training options include live, instructor-led onsite or online for teams of 10 or more.

Enquire now

How to get started...

Step 1

Purchase the course with one of the methods below.

Step 2
Log in to the Mpirical learning portal to access your course.
Step 3
Start learning right away with on-demand or get ready for your live session.

Pricing

 Let's chat

Live Training

Live training options include live, instructor-led onsite or online for teams of 10 or more.

Enquire now

Live Training

Frequently Asked Questions

Will I receive certification for completing the course?

Yes, all our courses provide a shareable certificate of completion following the test of understanding.

How long do I get access to the course?

On-demand courses are accessible immediately following purchase. Each course will have a different access period ranging from 3-6 months on average. You can continue to access the Mpirical learning platform after your course licence expires; however, you won’t be able to view any course content or learning tools unless you are a paid customer.

What else do I get with a course?

All students benefit from automatic access to our ‘Ask the Trainer’ feature with an on-demand course purchase. You will also get access to our acclaimed network visualisation tool, NetX.*

*NetX is not included with the Mini Telecoms MBA course or partner training.

Can I access the course offline?

Offline access is not currently available. You must use a connected device to access the course and learning tools. However, course pdfs and reference documents are downloadable.

Is there recommended follow-on training?

Yes, we do recommend follow-on training courses within the Mpirical learning platform.

How do I choose between a live course or on-demand course?

Our live courses are generally reserved for teams and enterprises of 10 or more. If you’d like to learn more about purchasing a single course to be delivered at your location or online, please get in touch: enquiries@mpirical.com.