VoIP Security — Attacks and Solutions

Phithakkitnukoon, Santi; Dantu, Ram; Baatarjav, Enkh-Amgalan

doi:10.1080/19393550802308618

Cited by 10 publications

(7 citation statements)

References 9 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Furthermore, it can be used to block automated SPAM over IP Telephony (SPIT) calls [25], the number of which will continue to increase as VoIP technology becomes cheaper and widely adopted. Here, we focus on how to defend against the attack.…”

Section: A Architecturementioning

confidence: 99%

CAPTCHuring Automated (Smart) Phone Attacks

Polakis

Kontaxis

Ioannidis

2011

2011 First SysSec Workshop

View full text Add to dashboard Cite

Abstract-As the Internet has entered everyday life and become tightly bound to telephony, both in the form of Voice over IP technology as well as Internet-enabled cellular devices, several attacks have emerged that target both landline and mobile devices. We present a variation of an existing attack, that exploits smartphone devices to launch a DoS attack against a telephone device by issuing a large amount of missed calls. In that light, we conduct an excessive study of Phone CAPTCHA usage for preventing attacks that render telephone devices unusable, and provide information on the design and implementation of our system that protects landline devices. Subsequently, we propose the integration of Phone CAPTCHAs in smartphone software as a countermeasure against a series of attacks that target such devices. We also present various enhancements to strengthen CAPTCHAs against automated attacks. Finally, we conduct a user study to measure the applicability of our enhanced Phone CAPTCHAs.

show abstract

Section: A Architecturementioning

confidence: 99%

CAPTCHuring Automated (Smart) Phone Attacks

Polakis

Kontaxis

Ioannidis

2011

2011 First SysSec Workshop

View full text Add to dashboard Cite

show abstract

“…These attacks are usually carried out during call transmission by disallowing honest users access to the VoIP service, example of aforesaid attacks are SIP flooding attack and VoIP amplification attack [3]. They are usually achieved by generating immense number of calls at an instance and direct the large traffic through its targeted VoIP server, these attack patterns can easily be detected by network administrators and by placing a good monitoring tool that analyses the network flow and whenever there is unusual increase in traffic it activated the mitigating tool to block IPs [4].…”

Section: Introductionmentioning

confidence: 99%

Mitigating Coordinated Call Attacks On VoIP Networks Using Hidden Markov Model

Nakorji

Adedokun

Umoh

et al. 2019

KINETIK

View full text Add to dashboard Cite

This paper presents a 2-tier scheme for mitigating coordinated call attacks on VoIP networks. Call interaction pattern was considered using talk and salient periods in a VoIP call conversation. At the first-tier, Short Term Energy algorithm was used for call interaction feature extraction and at the second-tier Hidden Markov Model was used for caller legitimacy recognition. Data of VoIP call conversations were collated and analyzed to extract distinctive features in VoIP call interaction pattern to ascertain the legitimacy of a caller against coordinated call attacker. The performance metrics that was used are; False Error Rate (FER), Specificity, Detection Accuracy and Throughput. Several experiments were conducted to see how effective the mitigating scheme is, as the scheme acts as a proxy server to Session Initiation Protocol (SIP) server. The experiments show that; when the VoIP server is under coordinated call attack without a mitigating scheme only 15.2% of legitimate VoIP users had access to the VoIP network and out of which about half of the legitimate users had their calls dropped before completion, while with the 2-tier mitigating scheme, when the VoIP server is under coordinated call attacks over 90.3% legitimate VoIP callers had their calls through to completion

show abstract

“…In VoIP, eavesdropping is a scenario where the attacker is able to monitor signal or media contents that are exchanged between users in order to examine communications to prepare for other future attacks. [7] …”

Section: Eavesdroppingmentioning

confidence: 99%

“…The G.7xx series defines audio codec used by H.323, and the H.26x series defines the video codec. H.323 uses RTP for media transport and RTCP for control of the RTP sessions [1] [7]. …”

Section: H323 Family Of Protocolsmentioning

confidence: 99%

See 1 more Smart Citation

A Survey Paper on Voice over Internet Protocol (VOIP)

Shaw¹,

Sharma²

2016

IJCA

View full text Add to dashboard Cite

Voice over Internet protocol (VoIP), which is a communication protocol existing over a network. The IP network can makes it possible for users to make telephone calls using the VoIP technology. Use of VoIP and Internet telephony has increased significantly in the recent years. These new phone services are based on the transmission of voice over packet switched IP networks. VoIP can be realized on any data network that uses IP, like the Internet, Intranets and Local Area Networks (LAN). VoIP customers use their Internet connection to connect to the Internet as well as to make phone calls. VoIP is the real-time transfer of voice signals using the Internet Protocol (IP) over the Internet or a private network. In simpler terms, your voice is converted to digital signal by VoIP that travels over the internet. The key factors that entice enterprises to switch to VoIP are its flexibility and cost efficiency. Some security problems may arise due to the widespread deployment of VoIP. Voice over IP (VoIP) has the potential to provide interactive communication services like video and voice conferencing. VoIP helps to transfer data which are difficult to transfer over circuit-switched wired and wireless networks.

show abstract

VoIP Security — Attacks and Solutions

Cited by 10 publications

References 9 publications

CAPTCHuring Automated (Smart) Phone Attacks

CAPTCHuring Automated (Smart) Phone Attacks

Mitigating Coordinated Call Attacks On VoIP Networks Using Hidden Markov Model

A Survey Paper on Voice over Internet Protocol (VOIP)

Contact Info

Product

Resources

About