SIMcurity: Tools for Securing the SIM interface
Protect phones and users against SIM vulnerabilities and hostility
The SIMcurity project will develop new software and hardware tools to secure mobile devices against attacks from hostile SIMs. Often considered as root-of-trust in mobile communication networks, SIMs and eSIMs authenticate users and their equipment, including smartphones, cars, smart devices, and even trains. However, SIMs cannot always be trustworthy: rogue operators can update them remotely over the air, their communication interface is susceptible to machine-in-the-middle attacks, and the software running on them may itself have vulnerabilities. SIMcurity will shine light on this often overlooked attack surface, provide tooling to find and mitigate security flaws, and create strong defenses to protect users and their mobile communication.
- The project's own website: https://github.com/tomasz-lisowski/simurai
Run by University of Birmingham
This project was funded through the NGI Mobifree Fund, a fund established by NLnet with financial support from the European Commission's Next Generation Internet programme under the aegis of DG Communications Networks, Content and Technology. The NGI Mobifree R&D programme is part of Horizon Europe research and innovation programme under grant agreement No. 101135795.
