Cellular networks are part of our critical information infrastructure. However, the upcoming broadband cellular data networks and mobile devices have unique vulnerabilities that have attracted little research attention. The PI proposes a five-year plan for understanding the inherent vulnerabilities and developing technologies for improving the security of cellular data networks and mobile devices. Particularly, the PI will focus on the following unique vulnerabilities in cellular data systems: (1) Scarce battery power in mobile devices; (2) Expensive wireless bandwidth; (3) Scarce wireless resources shared among benign and malicious mobile devices. To address these vulnerabilities, the PI proposes a comprehensive solution consisting of three components: (1) On mobile devices, designing and enforcing access control policies on power consumption; (2) At mobile switching centers (MSC), designing and deploying firewalls configurable by individual mobile devices but verifiable by the MSC; (3) At base stations, detecting malicious mobile devices that abuse shared resources. This project will have direct, visible impact on improving the security of broadband cellular data networks. The discovered vulnerabilities and proposed defense mechanisms will help cellular providers secure their networks proactively before the adversaries deliver devastating attacks. Experiences gained in this project will help guide the security design of future cellular data networks. The novel analysis, simulation, and evaluation techniques developed in this project will be valuable to teachers and researchers in security, networking, and programming languages. The proposed education mission is to train students to become capable security researchers or practitioners through classroom teaching, real-life problem solving, and research advising.
CAREER: Securing Broadband Cellular Data Networks