Phone cloning

Phone cloning is the copying of a

cellular device

's identity to another.

AMPS cloning

Analogue mobile telephones were notorious for their lack of security.

Electronic Serial Numbers (ESN) and Mobile Directory Numbers (MDN or CTN, the Cellular Telephone Number) over the air. The intercepted ESN/MDN pairs would be cloned onto another handset and used in other regions for making calls. Due to widespread fraud, some carriers required a PIN before making calls or used a system of radio fingerprinting

to detect the clones.

CDMA cloning

Electronic Serial Number (ESN) and/or Mobile Equipment Identifier (MEID) of the mobile phone to be changed. To obtain the MEID of your phone, simply open your phone's dialler and type *#06# to get its MEID number.^[2] The ESN or MEID is typically transmitted to the cellular company's Mobile Telephone Switching Office (MTSO) in order to authenticate a device onto the mobile network. Modifying these, as well as the phone's Preferred Roaming List (PRL) and the mobile identification number

, or MIN, can pave the way for fraudulent calls, as the target telephone is now a clone of the telephone from which the original ESN and MIN data were obtained.

GSM cloning

GSM cloning occurs by copying a secret key from the victim SIM card,^[3] typically not requiring any internal data from the handset (the phone itself). GSM handsets do not have ESN or MIN, only an International Mobile Equipment Identity (IMEI) number. There are various methods used to obtain the IMEI. The most common method is to eavesdrop on a cellular network.

Older GSM SIM cards can be cloned by performing a cryptographic attack against the COMP128 authentication algorithm used by these older SIM cards.^[4] By connecting the SIM card to a computer, the authentication procedure can be repeated many times in order to slowly leak information about the secret key. If this procedure is repeated enough times, it is possible to derive the K_i key.^[5]^[6] Later GSM SIMs have various mitigations built in, either by limiting the number of authentications performed in a power on session, or by the manufacturer choosing resistant K_i keys. However if it is known that a resistant key was used, it is possible to speed up the attack by eliminating weak K_i keys from the pool of possible keys.

Effectiveness and legislation

Phone cloning is outlawed in the United States by the Wireless Telephone Protection Act of 1998, which prohibits "knowingly using, producing, trafficking in, having control or custody of, or possessing hardware or software knowing that it has been configured to insert or modify telecommunication identifying information associated with or contained in a telecommunications instrument so that such instrument may be used to obtain telecommunications service without authorization."^[7]

The effectiveness of phone cloning is limited. Every mobile phone contains a radio fingerprint in its transmission signal which remains unique to that mobile despite changes to the phone's ESN, IMEI, or MIN. Thus, cellular companies are often able to catch cloned phones when there are discrepancies between the fingerprint and the ESN, IMEI, or MIN.^{[citation needed]}

References

^ "GSM Cloning". www.isaac.cs.berkeley.edu.
^ Bader, Daniel (March 21, 2017). "How to make sure your phone works on a prepaid alternative carrier". iMore. Retrieved October 24, 2017.
^ Gor, Mosam (2016-05-20). "What is Cell Phone Cloning - Everything You Need to Know". MovZio. Retrieved 2019-04-05.
^ Preuβ Mattsson, John (Jun 29, 2021). "The evolution of cryptography in mobile networks and how to secure them in the future". Ericsson. Archived from the original on 21 December 2022. Retrieved 26 July 2023.
^ Cycle, Janus (2023-01-13). "The Truth About SIM Card Cloning". YouTube. Retrieved 2023-07-23.
^ Brumley, Billy (18 Nov 2004). "A3/A8 & COMP128" (PDF). Archived (PDF) from the original on 6 June 2023. Retrieved 26 Jul 2023.
^ "S.493 - 105th Congress (1997-1998): Wireless Telephone Protection Act". 24 April 1998.

[ucb-1998-04-13-1] "GSM Cloning". www.isaac.cs.berkeley.edu.

[2] Bader, Daniel (March 21, 2017). "How to make sure your phone works on a prepaid alternative carrier". iMore. Retrieved October 24, 2017.

[3] Gor, Mosam (2016-05-20). "What is Cell Phone Cloning - Everything You Need to Know". MovZio. Retrieved 2019-04-05.

[4] Preuβ Mattsson, John (Jun 29, 2021). "The evolution of cryptography in mobile networks and how to secure them in the future". Ericsson. Archived from the original on 21 December 2022. Retrieved 26 July 2023.

[5] Cycle, Janus (2023-01-13). "The Truth About SIM Card Cloning". YouTube. Retrieved 2023-07-23.

[6] Brumley, Billy (18 Nov 2004). "A3/A8 & COMP128" (PDF). Archived (PDF) from the original on 6 June 2023. Retrieved 26 Jul 2023.

[7] "S.493 - 105th Congress (1997-1998): Wireless Telephone Protection Act". 24 April 1998.

[2]

[3]

[4]

[5]

[6]

[7]

AMPS cloning

CDMA cloning

GSM cloning

Effectiveness and legislation

See also

References