CAPEC-606: Weakening of Cellular Encryption
ID
CAPEC-606
Typical Severity
High
Status
Draft
An attacker, with control of a Cellular Rogue Base Station or through cooperation with a Malicious Mobile Network Operator can force the mobile device (e.g., the retransmission device) to use no encryption (A5/0 mode) or to use easily breakable encryption (A5/1 or A5/2 mode).
Weaknesses
# ID | Name | Type |
---|---|---|
CWE-757 | Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade') | weakness |