Computer Science News
DCS Student Helps Uncover and Fix Mobile Network Security Flaw
An undergraduate has helped identify and responsibly disclose a security flaw in a UK mobile network as part of his dissertation project.
Sasha Shaw, a Discrete Mathematics student, carried out the work under the supervision of Professor Feng Hao. His project, titled Security analysis of the SIP stack over VoLTE, explored the security of systems and examined how data transmitted across modern mobile calling infrastructure could potentially be exposed or misused.
During the project, Sasha identified a significant vulnerability affecting a telecom network. He then followed the responsible disclosure process, reporting the issue so that it could be investigated and addressed safely.
The vulnerability has now been patched by the provider, and Sasha has since been recognised by BT on its “Hall of Fame”.
Professor Feng Hao (supervising) said the finding was an impressive outcome from undergraduate research and highlighted the real-world impact that student projects can have when they combine strong technical analysis with a responsible approach to cybersecurity.
The project grew out of Sasha’s interest in the security implications of the shift from legacy phone networks to internet-based mobile calling. His dissertation examined how signalling data in VoLTE systems could reveal sensitive information and how weaknesses in that infrastructure might be exploited.
The work also points to the wider importance of security research in communications technologies that millions of people rely on every day. By identifying the issue and ensuring it was disclosed responsibly, Sasha’s research contributed not only to academic understanding, but also to improving the security of a live network.
This achievement demonstrates how student research within the department can deliver practical impact beyond the University, with benefits for industry and the public alike.