https://www.deccanchronicle.com/business/trai-moves-curb-mobile-phone-theft-313
The gist of the above link is summarized as below:
In order to curb the menace of mobile thefts TRAI has decided that all telecoms should deploy EIR and share the information amongst themselves.
There is a saying – Laws are meant to be broken, well even this “about to be implemented law” has a loophole.
The technology being used to provide support for this Law, is the EIR – Equipment Identity Register.
Definition:The Equipment Identity Register is a database employed within mobile networks. The database holds records for 3 types of mobile; namely black, grey and white. When a mobile requests services from the network its IMEI (International Mobile Equipment Identity) may be checked against the EIR, to assess which category of mobile it falls into. Black mobiles are those reported stolen or whose operation on the network will adversely affect network operation. These mobiles will not be allowed to access the network. Grey mobiles are classed as non-conforming, but may be used on the network. White mobiles are those that conform to requirements set down by the network operator.
Utilization: With the advent of Number portability, and to curb the menace of customers switching over to a different network, mobile operators may come up with a not so novel idea of binding IMIE Number with their network Services and start charging the customers. Eg. If you want to avail xyz-type-of–service, buy this mobile phone; or if you want this rate plan then buy the device provided by us.
All these activities will lead to development and deployment of Jail breaks. This means, one more law and one happy lawyer.
Now back to IMIE cracking, how the technology will be circumvented.
The modus operandi as on today used by the mobile thieves is as follows:
1: Rob the mobile from its rightful owner using various methods.
2: Switch off the phone, remove the sim-card and throw it away.
3: Visit the mobile repair shop, reflash the mobile os and change the IMIE Code.
The Future :
1: Rob the mobile from its rightful owner using various methods
2: Switch off the phone, remove the sim-card and throw it away.
3: Procure an old valid mobile handset or a brand-new low-end mobile handset, get the IMIE Code and replace the IMIE Code of the stolen handset.
4: Insert a new SIM-Card in the handset, register it with the network and you are through.
The whole exercise should not take more than 30 mins.
The root cause of the problem is not EIR or IMIE Code but the method in which IMIE Code is deployed into the handset. Unless and until mobile manufacturers share their Database with the Telecoms and an additional verification algorithm is deployed – Mobile Thefts are not going to decrease.
Now a days, the business of changing IMIE code is an open business in India but after this law comes into force, its going to go underground and the law-makers know much better about under-ground networks than anyone else.
Mobile Theft is one aspect of EIR and charge-me-as-you-want is another, which we – the consumers should be aware.
A Proof of Concept video / images will be uploaded soon.
