Forensics of a rogue base transceiver station Online publication date: Thu, 02-Mar-2023
by Ahmed Landry Sankara; Ramya Shah; Digvijaysinh Rathod
International Journal of Electronic Security and Digital Forensics (IJESDF), Vol. 15, No. 2, 2023
Abstract: Mobile communication systems have become an integral part of daily life, and GSM networks are the most widely used telecommunication technology among mobile users in many nations. In recent years, the incidence of attacks with rogue BTS has risen unexpectedly, primarily in nations where GSM remains the primary telecommunications infrastructure. Using YateBTS as the BTS software, we simulated an attack scenario with IMSI catcher, calls/SMS spoofing and calls/SMS interception. Using forensic software such as EnCase and FTK, we examined Raspberry OS (a Linux-based operating system) and YateBTS. We gathered and recovered important artefacts related to user activity, user authentication activity, system calls messages from Blade RF, call logs, internet traffic log, custom SMS and BTS configurations that would be useful in a court of law. We can reconstruct the truth of the crime using the artefacts recovered. Law enforcement, computer forensic investigators, and the digital forensics research community will benefit greatly from the findings of this study.
Existing subscribers:
Go to Inderscience Online Journals to access the Full Text of this article.
If you are not a subscriber and you just want to read the full contents of this article, buy online access here.Complimentary Subscribers, Editors or Members of the Editorial Board of the International Journal of Electronic Security and Digital Forensics (IJESDF):
Login with your Inderscience username and password:
Want to subscribe?
A subscription gives you complete access to all articles in the current issue, as well as to all articles in the previous three years (where applicable). See our Orders page to subscribe.
If you still need assistance, please email subs@inderscience.com