STATUS: ACTIVE
SECTOR: ITU-T
LEVEL: UNCLASSIFIED // RESEARCH

itu-t Series-F: Non-Telephone Telecommunication Services

Messaging, directory services, video surveillance, and emerging digital service frameworks — where smishing, LDAP traversal, and OTT data-privacy attacks live.

Official Scope

Study Group: SG13 (Future networks) & SG16 (Multimedia)
Active Status: Ongoing

Defines service requirements for non-voice telecommunication services: messaging (SMS/MMS/OTT), directory services (X.500/LDAP integration), video surveillance, and newer frameworks for blockchain-based and AI-assisted services.

Tactical Security Significance

  • Relevance: 🟡 High — Messaging Fraud, Directory Security, OTT Privacy
  • Key Security Concepts: SMS Phishing (Smishing), Secure Directory Access (X.500), OTT Messaging Privacy, Video Feed Integrity
  • Attack Surface: SMS delivery channels (used for OTP delivery), directory services (exposing subscriber identity data), and video surveillance feeds

Key Recommendations

ITU RecTitleSecurity DomainCross-Reference
F.500International public directory servicesDirectory Security / LDAPX.500 / RFC 4511
F.743Functional requirements for video surveillanceVideo Feed IntegrityONVIF / IEC 62676
F.748Framework for blockchain-based telecommunications servicesDLT Security & ImmutabilityISO/TC 307
F.749Requirements for AI-based communication servicesAI Service SecurityX.1400 series
F.771Service description for multimedia messaging (MMS)MMS Attachment Security3GPP TS 23.140

Security Mapping

SMS as an Attack Vector — Smishing and OTP Bypass

The SMS channel defined under the F.400 series (message handling) and delivered over networks governed by E.164/E.212 is the primary delivery mechanism for authentication OTPs. This makes it a high-value target for smishing and SIM-swap-facilitated OTP interception.

  • Attack: Fraudulent SMS messages impersonate banks or government bodies with malicious links (smishing)
  • SIM-Swap OTP Bypass: After a fraudulent SIM swap, OTPs for banking or 2FA are delivered to the attacker
  • Mitigation: Operators should implement spam-detection for A2P SMS; prohibit sender ID spoofing at the SMSC level; enforce E.157 CLI validation for SMS origination

Directory Service Security (F.500 / X.500 LDAP)

F.500 public directory services are the precursor to modern LDAP directories. Poorly secured directory infrastructure (exposed LDAP ports, anonymous binds, unrestricted searches) enables subscriber data harvesting and enables targeted phishing attacks.

  • Attack: Anonymous LDAP bind allows enumeration of subscriber names, email addresses, and organizational structure
  • Mitigation: Require authenticated access; restrict attribute visibility by requester class; log all directory queries for anomaly detection

Video Surveillance Feed Integrity (F.743)

F.743 defines functional requirements for video surveillance systems integrated into telecom infrastructure. Unsecured RTSP streams and default credentials on network cameras expose CCTV feeds and enable physical security bypass.

  • Attack: RTSP stream hijack or replay attack allows attacker to substitute a static image for a live feed during physical intrusion
  • Mitigation: Require TLS for all surveillance feeds; enforce certificate-based camera authentication per F.743 requirements; monitor for stream anomalies

!NOTE This series is part of the master Series Tracker.

Temporal SignatureSYNC_ID: 19E4041380E
ITU-T Navigator v4.0.0
IntegritySIGNAL: SECURE
TELCOSEC INITIATIVEEST. 2026 // GLOBAL STANDARDS RESEARCH

Independent, non-affiliated security research project dedicated to hardening global telecommunications infrastructure through data-driven auditing.

PlatformNavigatorVuln TrackerChecklists
LegalPrivacy PolicyTerms of ServiceID:NAV_HUB_ALPHA