CAPEC-606: Weakening of Cellular Encryption

An attacker, with control of a Cellular Rogue Base Station or through cooperation with a Malicious Mobile Network Operator can force the mobile device (e.g., the retransmission device) to use no encryption (A5/0 mode) or to use easily breakable encryption (A5/1 or A5/2 mode).

High

Typical severity

Per MITRE

Not rated

Likelihood of attack

Per MITRE

Related weaknesses

CWEs this targets

Detailed

Abstraction

MITRE classification

Overview

CAPEC-606 (Weakening of Cellular Encryption) is a detailed-level attack pattern catalogued by MITRE in the Common Attack Pattern Enumeration and Classification (CAPEC). It describes a recurring method attackers use to exploit software weaknesses.

CAPEC-606: Weakening of Cellular Encryption

Overview

What the attacker needs

Prerequisites

Skills required

Consequences

How to mitigate it

Frequently asked questions

What is CAPEC-606?

How do you prevent CAPEC-606?

What weaknesses does CAPEC-606 target?

How severe is CAPEC-606?

References

Defend against CAPEC-606

Overview

What the attacker needs

Prerequisites

Skills required

Consequences

How to mitigate it

Related weaknesses

Related attack patterns

Parent

Frequently asked questions

What is CAPEC-606?

How do you prevent CAPEC-606?

What weaknesses does CAPEC-606 target?

How severe is CAPEC-606?

References

Defend against CAPEC-606