3.1.3 Category 3
This category includes messages that should only be received from the subscriber’s visited network. Specifically, MAP packets that are authorized to be sent on interconnects between mobile operators.
- Blocking of messages in relation to outbound roaming subscribers, where MCC+MNC of IMSI and CdPA or prefix ID of the HLR do not match
- Blocking of messages in relation to outbound roaming subscribers, where VLR Id and CgPA do not match.
Following is the list of vulnerable category 3 opcodes:
Table 3-3 Message Category 3
| opCode | Originating SSN | Destination SSN | Description |
|---|---|---|---|
| sendParameters | SGSN | HLR |
This opcode is used in FLOBR/TOBR feature. When addressed to an HLR, the MAP message can be used to request authentication vectors and subscriber data. |
| registerSS | HLR | VLR |
This opcode is used in FLOBR/ToBR and Stateful Security Support (VLR Validation) features. It blocks the SS related MAP packets. |
| eraseSS | HLR | VLR |
This opcode is used in FLOBR/ToBR and Stateful Security Support (VLR Validation) features. It blocks the SS related MAP packets. |
| activateSS | HLR | VLR |
This opcode is used in FLOBR/ToBR and Stateful Security Support (VLR Validation) features. It blocks the SS related MAP packets. |
| deactivateSS | HLR | VLR |
This opcode is used in FLOBR/ToBR and Stateful Security Support (VLR Validation) features. It blocks the SS related MAP packets. |
| interrogateSS | HLR | VLR |
This opcode is used in FLOBR/ToBR and Stateful Security Support (VLR Validation) features. It blocks the SS related MAP packets. |
| registerPassword | HLR | VLR |
This opcode is used in FLOBR/ToBR and Stateful Security Support (VLR Validation) features. It blocks the SS related MAP packets. |
| processUnstructuredSS-Data | HLR | VLR |
This opcode is used in FLOBR/ToBR and Stateful Security Support (VLR Validation) features. It blocks the SS related MAP packets. |
| readyForSM | MSC | HLR |
This opcode is used in FLOBR/TOBR feature. Block MAP readyForSM packets when send to a HLR. |
| mt-forwardSM | MSC | SGSN |
This opcode is used in FLOBR/TOBR feature. |
| updateLocation | HLR | VLR |
This opcode is used in Stateful Security Support (Velocity Check) features. Block inbound map packets if the received VLR or SGSN address in the CgPA is not reasonable compared with the last known location. |
| updateGprsLocation | HLR | VLR |
This opcode is used in Stateful Security Support (Velocity Check) features. Block inbound map packets if the received VLR or SGSN address in the CgPA is not reasonable compared with the last known location. |
| sendAuthentication | HLR | VLR |
This opcode is used in Stateful Security Support (Velocity Check) features. Block inbound map packets if the received VLR or SGSN address in the CgPA is not reasonable compared with the last known location. |
| processUnstructuredSS-Request | VLR | HLR |
This opcode is used in FLOBR/ToBR and Stateful Security Support (VLR Validation) features. It blocks the SS related MAP packets. |