Last night I gave a talk as part of Oxford University’s Information Security and Privacy Programme. I decided to talk about the problem of mobile phone theft as it is something I have been involved in tackling for a number of years, mainly on the handset security side. I still work with the UK Police now on some of these issues. It really is an increasing issue that doesn’t look to have an obvious solution. Future technologies will provide another incentive to steal a device so it is clear that further effort must be put into addressing theft. There are many different reasons why someone would want to steal a phone and what they subsequently will do with it. On the industry side, network operator customer service management is difficult, particularly when people are lying to you. Getting all network operators in the world to share accurate information to the Central Equipment Identity Register (CEIR) is a tough call, even if they were interested in doing it in the first place.
I got some great feedback on twitter when I said I was going to give this talk. Two in particular stood out – @realbelahzur wrote this blog and focused on one particular aspect – the theft of service, how far a network operator has to go and the responsibility a user must also take in keeping their own property safe. @paul_clarke pointed me at his blog about his experience of blocking and unblocking a phone.
The slides and notes from the presentation are re-posted here. Please feel free to tweet me and leave comments on your theft experiences and ideas for helping to deal with / manage the problem.