We develop a vulnerability detection module to identify three important security vulnerabilities in the IMS system that supports 4G/5G multimedia services. We have validated them in 4 carriers from Taiwan and U.S. using smartphones from 7 brands, and shown that they can be exploited to launch a stealthy call DoS attack, a social engineering attack with ghost calls, and a call ID spoofing attack. Moreover, attackers can detect attackable users using an AI technique with only the users’ phone numbers. We finally propose solutions and develop an AI-based technique of call ID spoofing detection.

We are the first group in the world to have four breakthrough contributions below.
1. We developed a vulnerability detection module to identify four important security vulnerabilities in call state machine, call management, call ID verification, and call information leakage, respectively, from the IMS system.
2. We validated those vulnerabilities in 4 carriers from Taiwan and U.S. using smartphones from 7 brands.
3. We proposed solutions and validated their effectiveness experimentally.
4. We developed an AI-based technique of call ID spoofing detection, which can do detection at run time.

The security threats identified by our developed vulnerability detection module generally exist in global 4G/5G cellular network systems. The module can assist cellular network standards, carriers, and telecom/phone vendors in detecting and addressing the security vulnerabilities of 4G/5G cellular networks and multimedia services. We have contributed the result to CHT, TTC, NCC, and GSMA. The global 4G/5G IMS systems can thus benefit. We will start to promote the vulnerability detection module and AI-based technique of call ID spoofing detection to the telecom industry.

線上展網址：
https://tievirtual.twtm.com.tw/iframe/6ee24c9b-1b87-483c-ade0-bd83386aad6b?group=23bfb1fa-dd5b-4836-81a1-4a1809b1bae5&lang=en