Course Details
This three-day training program delves into modern telecom systems, with a focus on 4G LTE mobile network services. Participants will gain a comprehensive understanding of LTE security mechanisms, the Evolved Packet Core network's security, vulnerabilities, and potential issues within LTE networks. Prerequisites include a basic knowledge of telecom and network principles (2G, 3G, and 4G, OSI network layers, and basic telecom technologies), as well as familiarity with Wireshark. Internet access is preferred but optional. Attendees will have access to the presenter's slides through the Intralinks Web platform for one year after the training. The training covers LTE introduction, security architecture, network elements, communication security, LTE protocols, typical attacks, legacy in LTE security, network element vulnerabilities, and attack scenarios, including radio-based, infrastructure-based, internal-based, and interconnect-based scenarios. Participants will also learned how to become an LTE network auditor.
Training Format:
- Online Delivery: P1 Security courses are designed for seamless online learning. Participants can access pre-recorded lectures and course materials through a secure online platform.
- Hands-on Practice: Participants will have access to P1 Cyber Range, allowing them to engage in practical exercises for real-world application.
- Self-Assessment: Each training module is accompanied by self-assessment quizzes, enabling participants to evaluate their understanding and track their progress.
- Expert Support: A 90-minute "Meet the Expert" session provides participants the opportunity to ask questions directly to P1 experienced instructors.
- Certification: Upon successful completion of the final exam, participants will receive a certification recognizing their achievement.
Buy Through us and Receive:
- 10% off the 2G, 3G, and SS7 Mobile Network Security TS-201 course — €2,250 (after discount).
- 3 months free access to Mpirical's Introduction to LTE course.
- 3 months free access to Mpirical's NetX.
Live Training
Course Contents
LTE Introduction.
LTE Security architecture.
LTE Network elements overview and security roles & functions.
LTE Communication security, cryptography and key management.
Study of LTE protocols:
- S1AP.
- X2AP.
- Diameter.
- GTP-C.
- GTP-U.
- GTP v2.
- GTP’.
- NAS.
Typical attacks on LTE infrastructure.
Recap of SS7 attack scenarios and comparison to 4G.
Role of legacy in LTE security.
Network elements and their functions: HSS, DRA/DEA, MME, PCRF, eNodeB, PGW, SGW.
DRA remote and RCE compromise via Diameter.
Vulnerabilities in VoLTE.
Analysis of Generic LTE Network element and vulnerabilities:
Diameter security and comparison to SIGTRAN and Radius protocols.
Diameter fuzzing and scanning.
Diameter in a roaming context.
NAS security, protocol review and known attacks.
SCTP protocol basics, scanning and attack scenarios.
SGW – PGW infrastructure and design and GTPv2 scanning and fuzzing.
S1AP interface protocol study and known vulnerabilities.
Attack scenarios over the S1AP interface.
Attacking O&M (OAM & Management) of network elements.
GRX / IPX compromise case studies, architecture and design and known vulnerabilities.
- Scenarios of attack of LTE network:
- Radio-based, subscriber role.
- Infrastructure-based, transmission or RAN vector.
- Internal-based attack.
- Interconnect based attack scenarios.