This paper examines two interrelated dimensions of internet and telecommunications security. The first discussion analyzes research by Traynor, McDaniel, and La Porta on how the architectural divergence between cellular and internet networks creates exploitable vulnerabilities, particularly through denial of service attacks targeting the General Packet Radio Service (GPRS) and the Standalone Dedicated Control Channel (SDCCH). The second discussion draws on a Blue Box podcast episode to explore government wiretapping and online surveillance as counterterrorism tools, weighing national security benefits against privacy concerns. The paper also considers how terrorist networks have adapted to digital communication environments and how intelligence agencies have used surveillance to foil planned attacks.
In "On Attack Causality in Internet-Connected Cellular Networks," internet infrastructure security researchers Patrick Traynor, Patrick McDaniel, and Thomas La Porta address the convergence of telecommunication and internet networks, and "how the architecture of cellular networks makes these systems susceptible to denial of service attacks" (2007). Rather than attribute the threat posed by denial of service attacks to the oft-cited cause of limited bandwidth capability, the authors contend that telecommunication and internet networks are constructed on fundamentally divergent design platforms.
As the authors state directly, "to support our assertion, we present two new vulnerabilities in cellular data services … (and) these attacks specifically exploit connection setup and teardown procedures in networks implementing the General Packet Radio Service (GPRS)" (Traynor, McDaniel & La Porta, 2007). Despite the complexity of this technical construction, the implication of their assertion is clear. The article explains that the Standalone Dedicated Control Channel (SDCCH) — which is used to authenticate and deliver content during the transmission of a text message — is critical to the setup phase of both text messages and voice calls. By inundating the SDCCH with malicious text messages during a denial of service attack, perpetrators of online criminal activity can effectively flood a network to prevent the delivery of genuine text messages and voice calls.
The 85th episode of the Blue Box podcast by Dan York and Jonathan Zar focuses on the issue of government wiretapping and online surveillance, and whether or not the ostensible national security benefits outweigh institutionalized infringement of internet privacy. As York and Zar note in the podcast, terrorist networks seeking to inflict harm on the United States and its interests have adopted an especially invasive method of launching demoralizing and disturbing attacks. One of the main points discussed concerns the adjustments made by terrorist groups in response to increased pressure on their organizational efforts, as the use of internet phones has allowed for clandestine communication.
The federal government's tactical wing, including the Central Intelligence Agency and the Department of Homeland Security, has expressed nearly universal alarm regarding the threat of internet-based cyberterrorism attacks detrimentally affecting the nation's essential infrastructure. The latest Threat Assessment identifies "nation states, terrorist networks, organized criminal groups, individuals, and other cyber actors with varying combinations of access, technical sophistication and intent" while warning that these threats are highly likely "to target elements of the U.S. information infrastructure for intelligence collection, intellectual property theft, or disruption" because "terrorist groups and their sympathizers have expressed interest in using cyber means to target the United States and its citizens" (U.S. Department of Homeland Security 16).
"Surveillance foils attacks amid decentralized terrorist networks"
You’re 61% through this paper. Sign up to read the remaining 1 section.
Sign Up Now — Instant Access Already a member? Log inAlways verify citation format against your institution’s current style guide requirements.