DOCSLIB.ORG

Enabling City-Wide IMSI-Catcher Detection

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Enabling City-Wide IMSI-Catcher Detection Proceedings on Privacy Enhancing Technologies ; 2017 (3):39–56 Peter Ney*, Ian Smith*, Gabriel Cadamuro, and Tadayoshi Kohno SeaGlass: Enabling City-Wide IMSI-Catcher Detection 1 Introduction Abstract: Cell-site simulators, also known as IMSI- catchers and stingrays, are used around the world by Cell-site simulators, also known as IMSI-catchers or governments and criminals to track and eavesdrop on stingrays, act as rogue cellular base stations that can cell phones. Despite extensive public debate surround- surveil cellphone locations and often eavesdrop on cellu- ing their use, few hard facts about them are available. lar communications. These devices are used extensively For example, the richest sources of information on U.S. by governments and law enforcement, with devices com- government cell-site simulator usage are from anony- ing in a wide range of capabilities. According to the mous leaks, public records requests, and court proceed- Surveillance Catalogue, leaked by the Intercept, differ- ings. This lack of concrete information and the diffi- ent models claim to intercept and record digital voice, culty of independently obtaining such information ham- geo-locate targets, and capture thousands of phones at pers the public discussion. To address this deficiency, we once [27]. A series of open records requests and inves- build, deploy, and evaluate SeaGlass, a city-wide cell- tigative journalism show that many U.S. police depart- site simulator detection network. SeaGlass consists of ments used them extensively, including Anaheim, CA; sensors that measure and upload data on the cellular Baltimore, MD; Milwaukee, WI; New York, NY; and environment to find the signatures of portable cell-site Tacoma, WA [8, 13, 20, 22, 33]. The U.S. Marshal’s simulators. SeaGlass sensors are designed to be robust, service has used airplane-mounted “DRT Box”’ cell- low-maintenance, and deployable in vehicles for long site simulators to track fugitives since 2007 [3]. Other durations. The data they generate is used to learn a countries are using cell-site simulators as well, e.g., city’s network properties to find anomalies consistent Ukraine’s use of cell-site simulators to send a mass text with cell-site simulators. We installed SeaGlass sensors to protesters during the Euromaidan protests [17]. into 15 ridesharing vehicles across two cities, collect- Given their clear privacy implications, there is vig- ing two months of data in each city. Using this data, we orous public discussion on their proper use and regula- evaluate the system and show how SeaGlass can be used tion. A key question and important topic among jour- to detect signatures of portable cell-site simulators. Fi- nalists, policy makers, and the legal community, is how nally, we evaluate our signature detection methods and often and in what context cell-site simulators are used, discuss anomalies discovered in the data. and whether they are being used responsibly. For the Keywords: cellular surveillance, cell-site simulator, present, the public relies on data obtained from pub- IMSI-catcher, stingray, ridesharing, crowdsource lic records requests, court documents, and leaks to the press to understand government usage. We argue that DOI 10.1515/popets-2017-0027 Received 2016-11-30; revised 2017-03-15; accepted 2017-03-16. the community — and those engaged in the policy de- bate surrounding cell-site simulator usage — would ben- efit from additional, independent sources of information on cell-site simulators. To facilitate this goal, we developed SeaGlass, a sys- tem designed to detect cell-site simulators by longitu- † The first two authors contributed equally to this work. dinally measuring and analyzing the cellular environ- *Corresponding Author: Peter Ney: University of Wash- ment across any city. SeaGlass collects data about cel- ington, E-mail: [email protected] lular networks using portable sensors that are placed in *Corresponding Author: Ian Smith: University of Wash- ington, E-mail: [email protected] ridesharing vehicles. We designed sensors to be highly Gabriel Cadamuro: University of Washington, E-mail: robust to failure, enabling long-term deployment in ve- [email protected] hicles owned and operated by others. Each sensor col- Tadayoshi Kohno: University of Washington, E-mail: lects data when the vehicle is powered on and uploads [email protected] it to a cloud server for aggregation. We use this data to Brought to you by | University of Washington Libraries Authenticated Download Date | 8/8/17 7:43 PM SeaGlass 40 develop methods for detecting anomalies or signatures A network base station broadcasts its identifiers and that we expect from cell-site simulators. other configuration properties to phones on a Broadcast To evaluate SeaGlass, and to iteratively refine our Control Channel (BCCH). Phones generally choose to analysis pipeline, we deployed SeaGlass for two months camp on the BTS in the network that has the highest in two cities: (1) Seattle, WA using nine drivers for eight received signal strength and best combination of BCCH weeks and (2) Milwaukee, WI using six drivers for eight properties. To register with the network, each GSM sub- weeks. Over the course of these deployments we col- scriber has a smart card, called a Subscriber Identity lected 2.1 million unique cellular scans from locations Module (SIM), which contains unique subscriber in- across both cities. We then applied our analysis meth- formation, such as the International Mobile Subscriber ods to our real data set and found that they detected Identity (IMSI). The IMSI is transmitted to base sta- base stations with anomalous signatures that might be tions to identify the phone to the network. Because IM- expected from cell-site simulators. Our results suggest SIs are sent in the clear and can be linked to individ- that if SeaGlass was deployed in a city where cell-site ual subscribers, phones typically negotiate a Temporary simulators are frequently used that they would be de- Mobile Subscriber Identity (TMSI) to attempt some pri- tected. vacy of the IMSI. The network can renegotiate a TMSI This paper contributes the following: at any time, such as when a subscriber moves to a new – We developed SeaGlass, a cost-effective, low- geographical area — indicated by a BTS with a different maintenance system to collect cellular environment Location Area Identity (LAI). data for detecting cell-site simulators on a city-wide scale using sensors in vehicles. – We deployed SeaGlass in ridesharing vehicles in two 2.2 Cell-Site Simulators U.S. cities, Seattle and Milwaukee, for nine and eight weeks respectively to evaluate our collection Cell-site simulators have a variety of features. In their system. most basic form, they coax phones in the vicinity to – We designed methods to detect the identifying be- reveal their IMSIs by imitating legitimate base stations. haviors of cell-site simulators, and evaluated those Once a target IMSI is retrieved, they may use directional methods using the data collected from the two antennas and received signal strengths gathered from SeaGlass deployments. multiple locations to localize a phone. More advanced models give users the capabilities of a network provider. Many models offer active at- 2 Basic Concepts tacks like voice, SMS, and data traffic eavesdropping; injection; denial of service; cloning; and SMS spam- This section provides high-level background information ming [27, 37]. GSM networks (2G) make these attacks and terminology on the GSM protocol and cell-site sim- possible because the network does not authenticate it- ulators. It also includes a discussion of signatures that self to phones. To exploit higher-level network protocols cell-site simulators exhibit, which were used to develop that support network authentication (3G and 4G LTE), our detection methods, and a list of publicly available some cell-site simulators take advantage of protocol vul- sources of cellular network data. nerabilities to downgrade to GSM before the network authenticates or jam on 4G/3G frequencies [5, 35]. In all protocol levels (2G, 3G, and 4G LTE), the IMSI is 2.1 The GSM Protocol still transmitted as plaintext before network authentica- tion, enabling some cell-site simulator functionality [32]. GSM, also known as 2G, is a cellular protocol first de- A recent leak of documents from the Harris Corpo- ployed in 1991 that remains in widespread use today. ration (a cell-site simulator manufacturer known to sell In the U.S. and Canada, it operates on 850 MHz and to police departments) sheds some light on the strate- 1900 MHz, and in most other countries on 900 MHz gies that common cell-site simulators use to capture and 1800 MHz. These bands contain uplink-downlink phones [4]. Manuals for their RayFish product family, channel pairs, called Absolute Radio Frequency Chan- which includes the Stingray and Hailstorm models, indi- nel Numbers (ARFCNs), on which phones communicate cate that these devices exploit a phone’s cell reselection with Base Transceiver Stations (BTS), more generally decision procedure by mimicking the weakest neighbor known as base stations. being advertised by a strong nearby base station. The Brought to you by | University of Washington Libraries Authenticated Download Date | 8/8/17 7:43 PM SeaGlass 41 cell-site simulator then “transmits modified system in- Geographic inconsistency. Base stations advertise formation messages, including a modified Location Area attributes determined by their network provider and Identifier (LAI) causing [a phone] to
Load more

Recommended publications
  • Steps for Retrofitting Macro Towers for C-Band 5G
    RAYCAP ARTICLE Steps For Retrofitting Macro Towers for C-Band 5G Mid-band spectrum auctions are going to make existing macrocell wireless sites more desirable for 5G radios and services. For areas outside dense urban cores, carriers and tower companies can bypass many of the obstacles and costs involved in deploying large numbers of small cells across a geographic area. Yet, there are specific concerns around size, strength, thermal performance and concealment of the macrocell site that must be overcome. Expert engineering services can ensure suitability of macro sites and help achieve cost and time efficiencies of retrofitting an existing installation. Mid-Band Spectrum Will Accelerate 5G Deployment Macro Tower Sites Come Into Play To date, many 5G deployments have used high-band This new “5G land rush” has already begun and will millimeter wave (mmWave) spectrum (above 6GHz) that accelerate 5G deployment in the coming years. Initial enables ultra-high-speed, gigabit-plus wireless connectivity, mmWave deployments focused on densely populated urban but that high-frequency bandwidth only works over very short areas such as downtown plazas and areas surrounding connections. Other early 5G rollouts have used lower bands convention centers, arenas, stadiums and airports where (below 2.5GHz) that offer wider coverage, but noticeably less there is the potential for the most demand, and therefore most bandwidth that does not meet the ultimate potential for 5G revenue, from high bandwidth 5G services. Low-band services services. are often focused in other urban areas to quickly expand 5G connections across the most people, even though low-band 5G does not offer a noticeable improvement over a good 4G LTE connection.
    [Show full text]
  • Spectrum Allocation for 5G International Framework
    Spectrum Allocation for 5G International Framework Joaquin RESTREPO Capacity Bulding Coordinator ; Study Grups Dept. (SGD) Radiocommunications Bureau (BR) International Telecommunications Union, ITU ITU Regional Economic Dialogue on Information and Communication Technologies for Europe and CIS (RED-2019) regulatory and economic tools for a dynamic ICT market place Odessa, Ukraine, October 30-31, 2019 Broadband Access: Fixed vs. Mobile 0% Broadband Networks 100% Fixed Mobile Satellite Broadband services infrastructure is based upon 3 types of final access networks (last km, last mile): - Fixed: copper, coaxial, fiber - Wireless (Terrestrial): cellular, Wi-Fi? - Satellite Broadband penetration is topped by the penetration of these networks Broadband Access: Fixed vs. Mobile - Fixed Networks in slight decline - Mobile Networks in high growth, near saturation - increasing Gap between developed and developing world. - Broadband Universal Service in developing world: Mobile & Prepaid Mobile Networks Evolution 5G (IMT2020) 2016. 4G* (IMT-Advanced) 4 Years . Digital System, IP-based . Service Convergence: Telecom & Datacom 2012 Very High Data rate (Broadband); multimeda format, Video . For over 30 years, ITU has 3G (IMT-2000) Seamless Roaming . 5 Years been developing the Digital System Global Radio Access / Global Solution . Service Concepts and Models: Multimedia Apps. standards and spectrum 2007 High Data rate (Broadband) . arrangements to support 2G Seamless Roaming . International Mobile Digital System Global Radio Access / Global Solution 7 Years . Telecommunications More Services: Digital Voice; Text-based Apps. Low data speed (Narrowband) . (IMT) Advanced Mobility (Roaming) 2000 Towards Global Compatibility . 1G . Analog System . 10 Years Very basic Services (mostly voice) . Basic Mobility . Systems Incompatibility 1990 4 First Generation (1G) 1G analogue systems provided two key improvements over the first radiotelephone services: - the invention of the microprocessor; and - digitization of the control link between the mobile phone and the cell site.
    [Show full text]
  • Mobile Backhaul: Fiber Vs. Microwave Case Study Analyzing Various Backhaul Technology Strategies
    Mobile Backhaul: Fiber vs. Microwave Case Study Analyzing Various Backhaul Technology Strategies Tzvika Naveh, Solutions Marketing Manager October 2009 Ceragon Networks®, CeraView®, FibeAir® and the FibeAir® design mark are registered trademarks of Ceragon Networks Ltd., and Ceragon™, PolyView™, ConfigAir™, CeraMon™, EtherAir™, QuickAir™, QuickAir Partner Program™, QuickAir Partner Certification Program™, QuickAir Partner Zone™, EncryptAir™ and Microwave Fiber™ are trademarks of Ceragon Networks Ltd. All rights reserved. Introduction The advent of 3G and 4G mobile services brings with it a surge in data traffic, which in turn puts a strain on existing cellular networks. Nowhere is the demand for more available capacity felt more than in the Backhaul. Looking into their backhaul options, operators can choose one of three physical mediums; copper, fiber or microwave. A recent report by Heavy Reading Research1 estimates that microwave represents nearly 50% of global backhaul deployments. As shown in Figure 1, the report also finds that the use of microwave is not distributed evenly across nations. In fact, microwave is frequently deployed in developing markets and in emerging markets in which fiber is not available. Microwave is also frequently used in developed markets as an alternative to costly line-leasing services offered by Telecom incumbents. Copper networks, that according to Heavy Reading make up for nearly 20% of all backhaul deployments, are likely to decrease due to their limited capacity support and their inability to scale in a cost efficient manner. Looking forward, fiber is expected to take the place of copper based wire-line connections, and increase its overall share (albeit not at the expense of Microwave).
    [Show full text]
  • Cellular Technology.Pdf
    Cellular Technologies Mobile Device Investigations Program Technical Operations Division - DFB DHS - FLETC Basic Network Design Frequency Reuse and Planning 1. Cellular Technology enables mobile communication because they use of a complex two-way radio system between the mobile unit and the wireless network. 2. It uses radio frequencies (radio channels) over and over again throughout a market with minimal interference, to serve a large number of simultaneous conversations. 3. This concept is the central tenet to cellular design and is called frequency reuse. Basic Network Design Frequency Reuse and Planning 1. Repeatedly reusing radio frequencies over a geographical area. 2. Most frequency reuse plans are produced in groups of seven cells. Basic Network Design Note: Common frequencies are never contiguous 7 7 The U.S. Border Patrol uses a similar scheme with Mobile Radio Frequencies along the Southern border. By alternating frequencies between sectors, all USBP offices can communicate on just two frequencies Basic Network Design Frequency Reuse and Planning 1. There are numerous seven cell frequency reuse groups in each cellular carriers Metropolitan Statistical Area (MSA) or Rural Service Areas (RSA). 2. Higher traffic cells will receive more radio channels according to customer usage or subscriber density. Basic Network Design Frequency Reuse and Planning A frequency reuse plan is defined as how radio frequency (RF) engineers subdivide and assign the FCC allocated radio spectrum throughout the carriers market. Basic Network Design How Frequency Reuse Systems Work In concept frequency reuse maximizes coverage area and simultaneous conversation handling Cellular communication is made possible by the transmission of RF. This is achieved by the use of a powerful antenna broadcasting the signals.
    [Show full text]
  • A Broadband Network Cost Model
    OBI TECHNICAL PAPER N O . 2 A BROADBAND NETWORK COST MODEL: A BASIS FOR PUBLIC FUNDING ESSENTIAL TO BRINGING NATIONWIDE INTEROPERABLE COMMUNICATIONS TO AMERICA’S FIRST RESPONDERS OBI TECHNICAL PAPER NO. 2 FEDERAL COMMUNICATIONS COMMISSION | MAY 2010 OBI TECHNICAL PAPER N O . 2 B FEDERAL COMMUNICATIONS COMMISSION | WWW.BROADBAND.GOV OBI TECHNICAL PAPER N O . 2 INTRODUCTION EXECUTIVE SUMMARY The NBP’s vision is to create a communications system that allows public safety agencies to take full advantage of cutting- In March 2010, the FCC released its National Broadband Plan edge broadband technologies. It is therefore essential that (NBP), which made significant recommendations for improv- public safety agencies have access to commercial technologies, ing access to broadband communications across America ruggedized for public safety use. This leveraging of commercial and for enhancing the role of broadband in public safety technologies will enable public safety agencies to achieve great- and emergency response. In particular, the NBP proposed a er communications capabilities, but at much lower costs. comprehensive strategy for creating a nationwide interoper- The NBP’s vision for the future of public safety broadband able public safety broadband wireless network (“public safety communications encompasses several elements: broadband network”) for first responders and other public As shown in Exhibit 1, a multi-pronged approach will provide safety personnel. This strategy includes: public safety with greater dependability, capacity and cost sav- ings. First, the hardened network will provide reliable service ➤ Creating an administrative system that ensures access to throughout a wide area. Second, since emergency responders sufficient capacity on a day-to-day and emergency basis; will be able to roam on commercial networks, capacity and ➤ Ensuring there is a mechanism in place to promote in- resiliency will improve (at a reasonable cost).
    [Show full text]
  • Cellular Communications
    Cellular Communications Definition A cellular mobile communications system uses a large number of low-power wireless transmitters to create cells—the basic geographic service area of a wireless communications system. Variable power levels allow cells to be sized according to the subscriber density and demand within a particular region. As mobile users travel from cell to cell, their conversations are "handed off" between cells in order to maintain seamless service. Channels (frequencies) used in one cell can be reused in another cell some distance away. Cells can be added to accommodate growth, creating new cells in unserved areas or overlaying cells in existing areas. Overview This tutorial discusses the basics of radio telephony systems, including both analog and digital systems. Upon completion of this tutorial, you should be able to accomplish the following: 1. describe the basic components of a cellular system 2. identify and describe digital wireless technologies Topics 1. Mobile Communications Principles 2. Mobile Telephone System Using the Cellular Concept 3. Cellular System Architecture 4. North American Analog Cellular Systems 5. Cellular System Components 6. Digital Systems Self-Test Correct Answers Acronym Guide 1. Mobile Communications Principles Each mobile uses a separate, temporary radio channel to talk to the cell site. The cell site talks to many mobiles at once, using one channel per mobile. Channels use a pair of frequencies for communication—one frequency, the forward link, for transmitting from the cell site, and one frequency, the reverse link, for the cell site to receive calls from the users. Radio energy dissipates over distance, so mobiles must stay near the base station to maintain communications.
    [Show full text]
  • Microwave Exposure: Safeguarding Public Health in the Absence of National Standards
    H. A. KUES, P. E. MAZIK, AND J. C. MONAHAN Microwave Exposure: Safeguarding Public Health in the Absence of National Standards Henry A. Kues, Phyllis E. Mazik, and John C. Monahan The lack of a national safety standard for exposure to electromagnetic radiation has generated considerable public concern and a plethora of court cases. The involvement of the Applied Physics Laboratory in this arena began in the mid-1960s following disclosure of Soviet irradiation of the U.S. embassy in Moscow, and over the years has included measurements, research, education, and assistance to governments around the world. This article describes a recent case in which the scientific expertise and knowledge developed at the Laboratory were used to assist a local government. It presents one city’s attempt to deal with health concerns associated with electromag- netic exposure by endeavoring to protect and educate the public while allowing for the development of beneficial technologies. (Keywords: Antenna ordinance, Electromagnetic radiation, Radio frequency protection guidelines, Telecommunications.) INTRODUCTION Frequently, scientists and engineers at The Johns case-by-case basis. This article describes one such con- Hopkins University are asked to provide advice in their sulting relationship. The case is representative of the field of expertise to public organizations, scientific increasing need for research to provide the appropriate panels, and local and national governments. Public scientific base necessary to support a national standard service has long been the mission of the University, and for exposure to electromagnetic radiation. staff members at APL, as part of the University, support During the last half century, use of electromagnetic this role regularly.
    [Show full text]
  • Raycap 5G Mmwave Small Cell Deployment Update Q1 2020
    RAYCAP NEWS FOR MUNICIPALITIES Raycap 5G mmWave Small Cell Deployment Update Q1 2020 Raycap, a leader in 5G mmWave small cell concealment and telecom protection solutions, has taken the pulse of the wireless industry to see how U.S. municipalities are moving ahead with 5G wireless deployment in their jurisdictions. Executive Summary Residents’ fears about small cell towers appearing in their own front yards were also captured in a report by Governing.com Recent media coverage documents the current state of on February 11 that cited a lack of colocation as an issue. The municipalities and utilities as they strive to strike a balance author claimed this could lead to “multiple pole installations between aesthetics and the ideal location for 5G mmWave in your front yard.” This indicates that some municipalities are small cell towers. not aware of the possibility to co-locate wireless facilities from In parallel, municipalities are continuing to resist pressure from different carriers in the same integrated pole. the FCC and major tier-1 carriers to speed up the pace of the The appearance of 5G small cell poles has come under 5G roll-out and localized small cell deployments. increased scrutiny during debates and consultations Raycap brings you a recap of press coverage over the between city authorities and resident groups. Indeed, one city last six months that tells the story of how municipalities are council member in San Clemente, California, claimed they approaching this seminal time in the development of wireless planned to vote against their installation because they are telecommunications networks in the U.S.
    [Show full text]
  • Cell Phone Location and Tracking Forensic
    DIGITAL FORENSICS GUIDE CELL PHONE LOCATION AND TRACKING FORENSIC Larry Daniel, DFCP, BCE, EnCE, ACE, AME, CTNS, CTA, CWA Spencer McInvaille, CTNS, CWA Eric Grabski, CTNS Copyright 2020, Envista Forensics, All Rights Reserved. Methods of Locating Cell Phones Call Detail Records The approximate location of a cell phone in reference to a cell tower is the most common method of phone location you will see in cases. This is because this is the easiest type of evidence to obtain. Precision Location Data i.e. PCMD, RTT or NELOS In some cases, Network Equipment Location Service (NELOS), Per Call Measurement Data (PCMD) and Real Time Tool (RTT) data may be present in addition to call detail records. None of these methods contains particularly accurate GPS locations and are highly suspect for any kind of use for determining the location of a cell phone other than a general location that is really no more precise and in many cases less precise than the use of call detail records. NELOS data is a form of precision location that is performed by AT&T in their network. However, the data does not provide any more specific information than a GPS coordinate with nothing to substantiate its accuracy other than the a “better than xx meters” estimate. It is interesting in this type of data that the data points can vary in accurate by thousands of meters in minutes. NELOS was not created as a method for location people, it is for AT&T’s commercial purposes, and is not the same as the emergency location of a cell phone.
    [Show full text]
  • UNITED STATES DEPARTMENT of AGRICULTURE Telephone
    UNITED STATES DEPARTMENT OF AGRICULTURE Rural Electrification Administration BULLETIN 1751H-705 SUBJECT: Fundamentals of Cellular Radio Service TO: Telephone Borrowers REA Telephone Staff EFFECTIVE DATE: Date of Approval EXPIRATION DATE: Three years from the effective date. OFFICE OF PRIMARY INTEREST: Transmission Branch, Telecommunications Standards Division PREVIOUS INSTRUCTIONS: None - this bulletin is new information. FILING INSTRUCTIONS: Place this document in Section 1751H, Transmission Design Bulletins. PURPOSE: Provide a tutorial on Cellular Radio Systems and include definitions, fundamentals, system architecture and equipment, and future developments. Michael M. F. Liu 12-27-91 ---------------------------------- -------------- Acting Administrator Date FUNDAMENTALS OF CELLULAR RADIO SYSTEMS TABLE OF CONTENTS 1. Introduction...........................................7 1.1 General...........................................7 1.2 Overview..........................................7 1.3 History...........................................9 1.4 IMTS.............................................10 2. Fundamentals of the Cellular Mobile Radio System......11 2.1 General Description..............................11 2.2 Frequency Allocation.............................12 2.3 Cellular Geometry................................14 2.4 Frequency Reuse..................................16 2.5 Channel Assignments..............................18 2.6 Cell Splitting...................................21 2.7 Cellular System Parameters.......................21
    [Show full text]
  • Wireless Cell Towers and Antennae: Municipal and Private Relationship James M
    Pace University DigitalCommons@Pace Master in Public Administration Theses Dyson College of Arts & Sciences 2013 Wireless Cell Towers and Antennae: Municipal and Private Relationship James M. Collins Dyson College of Arts and Sciences, Pace University. Follow this and additional works at: http://digitalcommons.pace.edu/dyson_mpa Part of the Other Political Science Commons, Public Administration Commons, Public Affairs Commons, and the Public Policy Commons Recommended Citation Collins, James M., "Wireless Cell Towers and Antennae: Municipal and Private Relationship" (2013). Master in Public Administration Theses. Paper 11. http://digitalcommons.pace.edu/dyson_mpa/11 This Thesis is brought to you for free and open access by the Dyson College of Arts & Sciences at DigitalCommons@Pace. It has been accepted for inclusion in Master in Public Administration Theses by an authorized administrator of DigitalCommons@Pace. For more information, please contact [email protected]. WIRELESS CELL TOWERS AND ANTENNAE: MUNICIPAL AND PRIVATE RELATIONSHIP BY JAMES M. COLLINS SUBMITTED IN PARTIAL FULFILLMENT OF REQUIREMENTS FOR THE DEGREE OF MASTER OF PUBLIC ADMINISTRATION DEPARTMENT OF PUBLIC ADMINISTRATION DYSON COLLEGE OF ARTS AND SCIENCES PACE UNIVERSITY December, 2013 APPROVED BY_______________________________________________ Acknowledgement In dedication to my Mother, Ann Collins, a retired employee of Pace University’s School of Education, whose valiant and courageous battle against an advanced form of Melanoma during the creation of this Capstone Project
    [Show full text]
  • RFS Wireless Cell Site Solutions
    RFS Wireless Cell Site Solutions Ready for the next generation of wireless services The Clear Choice® Optimize the value of your sites with the help of a worldwide leader The wireless industry: A challenging business environment In today’s highly competitive environment, mobile operators face an array of challenges: In emerging markets, operators must In all markets, mobile operators must accommodate rapid subscriber growth, constantly optimize network performance, by ensuring high-speed deployment of while providing the best possible quality of the network. Moreover, they need cost- service to subscribers. effective solutions to ensure profitability in a market that generates low Average Whatever their geography or markets, Revenue per User (ARPU). The introduction mobile operators will continue to rely on of 3G in these markets – at a time when their RF component partners to meet their 2G is still widely deployed – is yet another needs for years to come. Among the areas challenge. in which operators can intervene, the choice of RF components plays In more mature markets, data traffic is a critical role. surging with the advent of 3G USB keys and user-friendly smartphones. As a first From higher gain antennas for deeper step, mobile operators need to optimize indoor service to lowest possible network capacity for radio and backhaul, attenuation cables and conditioning and maximize spectrum usage. Soon, they products, premium performance RF will have to introduce 4G to accommodate components are by far the most cost- data traffic growth. This deployment will effective way for operators to optimize require the use of new frequency bands site quality indicators, compared to costly and therefore new RF components.
    [Show full text]