VoIP Fraud
•
0 likes•778 views
This document summarizes Hemant Sengar's approach to identifying VoIP fraud through device fingerprinting. It discusses how Sengar proposes classifying devices based on acoustic features in RTP payloads and uniquely fingerprinting devices based on timing differences. The document outlines Sengar's two-phase approach of device identification and verification. It also summarizes the methodology and results of experiments classifying 11 hardphones and 5 softphones based on these techniques.
Report
Share
Report
Share
Download to read offline
Recommended
Unblocking Stollen Mobile Phones using SS7-MaP vulnerabilities
This document discusses attacks on telecommunication networks using vulnerabilities in the Signaling System 7 (SS7) protocol. It describes how stolen mobile devices can be unblocked by exploiting the relationship between the device's IMEI and user's IMSI during the normal IMEI check procedure. The attack involves sending a fake CHECK_IMEI request containing a blacklisted IMEI along with the correct associated IMSI to override the blacklist status. This allows stolen devices to be reactivated without authorization.
Voippresentation
VoIP security threats include vulnerabilities in confidentiality, integrity, and availability. Confidentiality can be impacted at the data link layer through ARP and at the network layer through IP address spoofing. Integrity risks include replay attacks at the transport layer. Availability risks include bandwidth consumption attacks and resource starvation attacks. VoIP security tools like SiVuS and c07-sip can help test for vulnerabilities, but have limitations and are still evolving as VoIP adoption increases. Proper security precautions are important as VoIP systems become more prevalent.
LTE protocol exploits – IMSI catchers, blocking devices and location leaks - ...
The security flaws of legacy GSM networks, which lack of mutual authentication and implement an outdated encryption algorithm, are well understood among the technology community. Moreover, until now, the main cellular vulnerabilities being discovered and exploited in the mobile security research field were based on 2G base stations and GSM open source implementations. The Long Term Evolution (LTE) is the newest standard being deployed globally for mobile communications, and is generally considered secure. LTE’s mutual authentication and strong encryption schemes result in the false assumption that LTE networks are not vulnerable to, for example, rogue base stations, IMSI catchers and protocol exploits. However, these threats are also possible in LTE. Before the authentication and encryption steps of an LTE connection are executed, a mobile device engages in a substantial exchange of unprotected messages with *any* LTE base station (real or rogue) that advertises itself with the right broadcast information. Eavesdropping or spoofing these messages can be leveraged to implement a long list of exploits to which all LTE mobile devices are vulnerable. This talk will demonstrate how to eavesdrop LTE base station broadcast messages, and how to implement full-LTE IMSI catchers and other LTE protocol exploits, such as blocking SIMs and devices. Details will be provided as well on a previously unknown technique to track the location of mobile devices as the connection moves from tower to tower. We will discuss as well the necessary toolset to implement these and other exploits, which are possible with simply $1.5k worth of off-the-shelf hardware and some modifications of the code of widely available LTE open source implementations.
It’s in the Air(waves): Deconstructing 2017’s Biggest RF Attacks
From vulnerable insulin pumps to hacked public safety systems, insecure wireless communication systems are a defining trademark of the Internet of Things. This session will discuss the evolution of network security technology, deconstruct the most prominent wireless attacks of 2017, and demonstrate how the commodification of Software Defined Radio is changing the game for both offense and defense.
Learning Objectives:
1: Observe a technical demonstration of high-profile wireless attacks.
2: Understand the ease and prevalence of wireless exploitation.
3: Observe a series of live demos.
(Source: RSA Conference USA 2018)
iParanoid: an IMSI Catcher - Stingray Intrusion Detection System
The goal is the research and development of Intrusion Detection System related with Cell Networks.
Mainly this App will check the status of some Cell Network variables (e.g. Cellid, LAC, A5 Encryption, etc.) subsequently update a local DB and check if the information about the cell networks around the users are valid or if there could be a risk (e.g. possible interception, possible impersonation, etc.).
Abdullah Al Mamun 062507056
This document discusses a fraud monitoring system for voice over internet protocol (VoIP) telephony. It begins with an introduction to VoIP and defines fraud. It then discusses the history of VoIP and how VoIP connections work. Key points discussed include quality of service requirements, protocols used in VoIP like SIP and H.323, and security challenges like dynamic addressing and firewalls. The document examines how a fraud management system could address these security issues to help secure VoIP networks.
My ppt
The document proposes a new multi-factor authentication technique called RFAA that uses RFID technology. RFAA aims to provide stronger security than single-factor authentication by requiring both a password and RFID token for login. It compares RFAA to other authentication methods and finds that RFAA scores well in security measures while maintaining reasonable deployment costs and portability. The document outlines the RFAA process, encryption algorithm used, and concludes that RFAA could provide a highly secure yet usable identification technique for online transactions and computer systems going forward.
Huneed-Cisco Perimeter Security Solution Guide
The document summarizes a perimeter security solution from Huneed Technologies called FOMGuard. It uses fiber optic sensors installed along barriers like fences to detect intruders within 10 inches of accuracy without outdoor electronics. Combined with Cisco's Video Surveillance Manager, it automatically moves cameras and provides intruder location and response. The solution provides reliable, automated perimeter protection and surveillance for critical infrastructure at a lower long term cost than alternative options.
Recommended
Unblocking Stollen Mobile Phones using SS7-MaP vulnerabilities
This document discusses attacks on telecommunication networks using vulnerabilities in the Signaling System 7 (SS7) protocol. It describes how stolen mobile devices can be unblocked by exploiting the relationship between the device's IMEI and user's IMSI during the normal IMEI check procedure. The attack involves sending a fake CHECK_IMEI request containing a blacklisted IMEI along with the correct associated IMSI to override the blacklist status. This allows stolen devices to be reactivated without authorization.
Voippresentation
VoIP security threats include vulnerabilities in confidentiality, integrity, and availability. Confidentiality can be impacted at the data link layer through ARP and at the network layer through IP address spoofing. Integrity risks include replay attacks at the transport layer. Availability risks include bandwidth consumption attacks and resource starvation attacks. VoIP security tools like SiVuS and c07-sip can help test for vulnerabilities, but have limitations and are still evolving as VoIP adoption increases. Proper security precautions are important as VoIP systems become more prevalent.
LTE protocol exploits – IMSI catchers, blocking devices and location leaks - ...
The security flaws of legacy GSM networks, which lack of mutual authentication and implement an outdated encryption algorithm, are well understood among the technology community. Moreover, until now, the main cellular vulnerabilities being discovered and exploited in the mobile security research field were based on 2G base stations and GSM open source implementations. The Long Term Evolution (LTE) is the newest standard being deployed globally for mobile communications, and is generally considered secure. LTE’s mutual authentication and strong encryption schemes result in the false assumption that LTE networks are not vulnerable to, for example, rogue base stations, IMSI catchers and protocol exploits. However, these threats are also possible in LTE. Before the authentication and encryption steps of an LTE connection are executed, a mobile device engages in a substantial exchange of unprotected messages with *any* LTE base station (real or rogue) that advertises itself with the right broadcast information. Eavesdropping or spoofing these messages can be leveraged to implement a long list of exploits to which all LTE mobile devices are vulnerable. This talk will demonstrate how to eavesdrop LTE base station broadcast messages, and how to implement full-LTE IMSI catchers and other LTE protocol exploits, such as blocking SIMs and devices. Details will be provided as well on a previously unknown technique to track the location of mobile devices as the connection moves from tower to tower. We will discuss as well the necessary toolset to implement these and other exploits, which are possible with simply $1.5k worth of off-the-shelf hardware and some modifications of the code of widely available LTE open source implementations.
It’s in the Air(waves): Deconstructing 2017’s Biggest RF Attacks
From vulnerable insulin pumps to hacked public safety systems, insecure wireless communication systems are a defining trademark of the Internet of Things. This session will discuss the evolution of network security technology, deconstruct the most prominent wireless attacks of 2017, and demonstrate how the commodification of Software Defined Radio is changing the game for both offense and defense.
Learning Objectives:
1: Observe a technical demonstration of high-profile wireless attacks.
2: Understand the ease and prevalence of wireless exploitation.
3: Observe a series of live demos.
(Source: RSA Conference USA 2018)
iParanoid: an IMSI Catcher - Stingray Intrusion Detection System
The goal is the research and development of Intrusion Detection System related with Cell Networks.
Mainly this App will check the status of some Cell Network variables (e.g. Cellid, LAC, A5 Encryption, etc.) subsequently update a local DB and check if the information about the cell networks around the users are valid or if there could be a risk (e.g. possible interception, possible impersonation, etc.).
Abdullah Al Mamun 062507056
This document discusses a fraud monitoring system for voice over internet protocol (VoIP) telephony. It begins with an introduction to VoIP and defines fraud. It then discusses the history of VoIP and how VoIP connections work. Key points discussed include quality of service requirements, protocols used in VoIP like SIP and H.323, and security challenges like dynamic addressing and firewalls. The document examines how a fraud management system could address these security issues to help secure VoIP networks.
My ppt
The document proposes a new multi-factor authentication technique called RFAA that uses RFID technology. RFAA aims to provide stronger security than single-factor authentication by requiring both a password and RFID token for login. It compares RFAA to other authentication methods and finds that RFAA scores well in security measures while maintaining reasonable deployment costs and portability. The document outlines the RFAA process, encryption algorithm used, and concludes that RFAA could provide a highly secure yet usable identification technique for online transactions and computer systems going forward.
Huneed-Cisco Perimeter Security Solution Guide
The document summarizes a perimeter security solution from Huneed Technologies called FOMGuard. It uses fiber optic sensors installed along barriers like fences to detect intruders within 10 inches of accuracy without outdoor electronics. Combined with Cisco's Video Surveillance Manager, it automatically moves cameras and provides intruder location and response. The solution provides reliable, automated perimeter protection and surveillance for critical infrastructure at a lower long term cost than alternative options.
Network security java
This document lists 17 projects related to network security conducted in 2011 using Java technology. The projects addressed topics such as intrusion tolerance, firewall algorithms, RFID authentication protocols, spoofing defenses, worm detection, sensor network monitoring, and malware analysis. The results of the projects were published in IEEE journals on dependable and secure computing and information forensics and security.
Spying The Wire
1. The document discusses common attacks on local area networks (LANs), including spoofing, man-in-the-middle attacks, sniffing, TCP/IP session hijacking, remote code execution, and denial-of-service attacks.
2. It describes how each attack works and provides examples of how it could be carried out on a LAN. Specific techniques mentioned include ARP cache poisoning, IP spoofing, DHCP spoofing, switch port stealing, and buffer overflows.
3. The document recommends defenses against these attacks such as using switches instead of hubs, static ARP entries, port security, VLAN segmentation, encryption, firewalls, patching, and monitoring tools. Regular auditing and updating systems is
Secure sigfox ready devices recommendation guide
In the Sigfox ecosystem, the design and manufacturing of
Sigfox Ready devices and Sigfox Verified sub-systems is under
the responsibility of third parties. These third parties could be
OEMs, ODMs, Silicon vendors, module vendors or customers.
This responsibility includes design and implementation of
sufficient security measures to protect customer applications,
network access credentials and data conveyed on the
network. Therefore, the question arises of what measures
should be mandatory and whether certification or verification
of the device security should be required.
This document studies the risks related to insufficient security
in Sigfox Ready devices in order to raise awareness on this
issue within Sigfox and throughout the Sigfox ecosystem. It is
also a guide to decide what measures could be required in the
design, implementation and manufacturing of Sigfox Ready
devices.
Tbs Explanation
TBS is a trust based security system that uses a combination of technologies to secure the airport perimeter and interior. It utilizes long range sensors, video systems, and ID card systems at entry points. Inside the terminal, smart CCTV people tracking software and unique computerized behavioral analysis monitors passengers during check in. An integrated IT system provides ID verification, access control, and automatic suspect detection while sharing information in real time between systems. The proprietary TBS platform supports communications and analytics across all of the integrated airport security components.
PrivateGSM - Voice Encryption Technical Overview
>PrivateGSM Security Overview
>PrivateGSM Voice Encryption Standards:
- Signaling Encryption
- Media Encryption
- End-to-End key exchange
- End-to-Site key exchange
Near field communication
Near Field Communication is a short range high frequency wireless communication technology. Which enables the exchange of data between devices over a distance of up to 10 centimeters.
In This presentation we will go through
Introduction
Evolution of NFC Technology
How NFC work
NFC mode of communication ,tags & Operation
Comparison with existing technique
Application & Uses of NFC
NFC Security
Advantages& Disadvantages of NFC
Conclusion
Security course: exclusive 5G SA pitfalls and new changes to legislation
This document provides information about Positive Technologies, a leading cybersecurity company focused on telecom security. Some key points:
- Positive Technologies has 19 years of experience in enterprise cybersecurity R&D and 9 years focused on telecom security. It has two R&D centers in Europe.
- The company performs over 60 security assessments per year for telecom operators and was the first vendor focused on end-to-end cybersecurity for mobile operators.
- Positive Technologies has a global presence with offices in 10 countries and has performed projects in 41 countries.
- As a pioneer in signaling security research, the company has published numerous reports on vulnerabilities in 2G-5G networks and standards over the past
I N T E R O P09 Suhas Desai Secure Your Vo I P Network With Open Source
The document discusses securing VoIP networks with open source tools. It describes how open source testing tools like SiVuS and SIP Bomber can be used to assess the security of VoIP implementations. SiVuS is a vulnerability scanner that discovers SIP components, generates attack messages, and produces a security findings report. SIP Bomber tests SIP protocol implementations by generating messages and validating passwords. The document advocates using open source tools to securely configure servers, clients, gateways, and firewalls before deploying VoIP networks.
The Present and Future of IoT Cybersecurity
The document discusses IoT cybersecurity challenges and solutions. It notes that 57% of IoT devices are currently vulnerable to attacks costing over $500,000 per month. Various regulatory standards for IoT security are outlined, along with the security requirements of platforms like Amazon Alexa. The company discussed provides compliance services, security assessments, and automated testing tools to help customers address vulnerabilities and meet requirements throughout the product development lifecycle.
12 wireless ips-ss_12-17-10_a
The document is a product specification sheet for Motorola's AirDefense Wireless IPS module. The module detects and prevents wireless network attacks in real-time through constant monitoring and analysis of wireless traffic. It identifies rogue devices, unauthorized users, and a wide range of threats. The module is part of Motorola's comprehensive AirDefense Services Platform which provides holistic wireless network management, security, and troubleshooting capabilities to reduce costs and speed return on investment.
5G mission diary: Houston, we have a problem
In 2020, many telecommunication companies will debut their first commercial 5G networks. The 5G mission has become a hot-button topic for the entire telecom community. But these networks have inherited many threats from their 3G and 4G forebears. Long-known weaknesses in security protocols and algorithms have been baked into new 5G systems. This creates a perfect storm for threat actors to target 5G security weaknesses using their old tricks.
Watch the webinar recording, where PT experts Paolo Emiliani, Head of Pre-Sales Engineering team, and Jun Kim, Managing Director, Korea, help you to navigate the tricky path to 5G deployment and:
explain new 5G trust and service delivery models
assess the evolving 5G threat landscape and privacy issues
explore realms of 5G protection with a focus on real-life cases
discuss new and emerging 5G threats affecting telecom infrastructure and end devices
explain why roaming protection in 5G is a game-changer
underline essential mitigation techniques for 5G security
Follow us on LinkedIn to keep up with our upcoming webinars and events: https://www.linkedin.com/company/positive-tech/
Defcon 22-robert-rowley-detecting-defending-against-surveill
This document discusses state-actor surveillance techniques including hardware bugs, software exploits, and compromising cellular and WiFi networks. It describes various surveillance device codenames like "RAGEMASTER" and "HOWLERMONKEY" and explains how hardware can be implanted or firmware hacked to enable persistent surveillance. The document advocates for detection of these devices and urges caution but also skepticism of conspiracy theories without evidence. It provides sources for further reading on technical surveillance techniques.
Ict encryption agt_fabio_pietrosanti
The document discusses PrivateWave's mobile voice encryption solutions. It describes PrivateGSM software that provides encryption for phone calls on smartphones using VoIP over mobile data. PrivateGSM uses the ZRTP standard to provide end-to-end encryption with human authentication and key agreement. It can also use SRTP and provide end-to-site encryption when integrated with telephony infrastructure. The document emphasizes that PrivateWave's solutions use open standards like ZRTP and SRTP to ensure the technologies are politically neutral and not subject to backdoors.
Positive approach to security of Core networks
Mobile operators across the globe have already started to roll out their 5G. It is here to stay and so security should be kept it mind ensuring the industry learns from the lessons of previous generous networks.
In 2020 our PT Telecom Attack Discovery (PT TAD) 5G-ready next-generation signaling firewall scored no. 1 on the security market.* Want to find out the reasons behind this accolade, then watch the record of our webinar to learn about an effective approach towards signaling security in the era of 5G.
During the live session Positive Technologies’ experts - Kirill Puzankov, Product Manager and Jimmy Jones, security telecoms expert:
explained how to implement security for Core networks quickly, efficiently and with fewer efforts
showed a demo on how telecom operators could withstand an attack or malicious actions using our next-generation Telecom Attack Discovery signaling Firewall
provided statistics and key trends in signaling security.
* According to ROCCO Signalling Firewall Vendor Performance Report 2020. https://positive-tech.com/research/rocco-report-2020/
Follow us on LinkedIn to keep up with our upcoming webinars and events: https://www.linkedin.com/company/positive-tech/
Controlling Laptop and Smartphone Access to Corporate Networks
With company-issued, IT-controlled laptops, IT has traditionally had the option to lock down the operating system to prevent the installation of potentially insecure or non-approved applications.
Signaling network vulnerabilities exposed, protection strategies for operator...
In the wake of recent highly publicized cyberattacks and the increased threat of data exploitation, with the growing demand for protecting network security, Xura participated in a live external webinar with Erik K Linask, Senior Editor,TMCnet.
Our security expert Ilia Abramov discussed recent publications in the press related to the signaling network vulnerabilities and explored SS7 fraud that threatens mobile network security and subscriber privacy. He identified the risks, determined protection scenarios and highlighted important security considerations for LTE signaling network planning.
Elm wifi
This document summarizes the specifications and features of the ELM327 WiFi OBD2 auto scanner adapter. It can connect to iOS and other smartphone systems over WiFi. Key specs include an internal antenna, 50 foot range, 0.75 watt power consumption, and support for various auto protocols. It also lists common vehicle data parameters that can be monitored, and includes a CD drive, websites and social media links for the product.
Telecom Security in the Era of 5G and IoT
Dmitry Kurbatov is the CTO of Positive Technologies, a cybersecurity company. He began his career as a network engineer in 2007 before switching to security in 2009. In his presentation, he discusses security issues for 5G and IoT networks. He notes that the virtualized and programmable nature of 5G introduces new vulnerabilities, and that legacy threats to previous cellular standards still apply. Additionally, the massive number of connected IoT devices poses new threats like large-scale botnets. He concludes by providing guidelines for 5G security, including implementing policies separately for each network slice and securing new interfaces from the start.
FortiGate 1500D Series Delivers High-Performance Next-Generation Firewall
The FortiGate 1500D series delivers high-performance next-generation firewall (NGFW) capabilities for large enterprises and service providers. With multiple high-speed interfaces, high-port density, and high-throughput, ideal deployments are at the enterprise edge, hybrid data center core, and across internal segments. The FortiGate 1500D Firewall is a compact, Network Security Appliance ideal for use as both a Next-Generation Firewall and High-Performance Data Center Firewall at the Enterprise Edge. It delivers up to 80 Gbps firewall throughput and ultra-low latency as well as 11 Gbps next-generation threat protection and control over more than 3000 discrete applications
[CLASS 2014] Palestra Técnica - Delfin Rodillas
Título da Palestra: Defendendo sistemas de controle industrial contra ameaças cibernéticas com segurança de próxima geração
Advanced fuzzing in the vo ip space
This document summarizes the authors' experience over two years fuzzing VoIP devices to discover vulnerabilities. They used their in-house tool KIF to conduct stateful protocol fuzzing on a variety of VoIP equipment. The testing uncovered many vulnerabilities related to weak input validation, including buffer overflows and format string issues. Some vulnerabilities allowed compromising internal networks by exploiting unfiltered web interfaces on VoIP phones. The authors disclosed vulnerabilities responsibly and provided mitigation techniques.
Sip Intrusion Detection And Prevention Recommendations And Prototype Impleme...
This document discusses the development of a prototype SIP intrusion detection and prevention system using the open-source Snort software. The prototype extends Snort's functionality by adding a SIP preprocessor to analyze SIP protocol packets and implement knowledge-based intrusion detection techniques. The preprocessor fits into Snort's architecture and allows for deeper analysis of layers above TCP/UDP compared to Snort's default decoder. The performance impact of the additional SIP analysis on quality of service is also evaluated.
More Related Content
What's hot
Network security java
This document lists 17 projects related to network security conducted in 2011 using Java technology. The projects addressed topics such as intrusion tolerance, firewall algorithms, RFID authentication protocols, spoofing defenses, worm detection, sensor network monitoring, and malware analysis. The results of the projects were published in IEEE journals on dependable and secure computing and information forensics and security.
Spying The Wire
1. The document discusses common attacks on local area networks (LANs), including spoofing, man-in-the-middle attacks, sniffing, TCP/IP session hijacking, remote code execution, and denial-of-service attacks.
2. It describes how each attack works and provides examples of how it could be carried out on a LAN. Specific techniques mentioned include ARP cache poisoning, IP spoofing, DHCP spoofing, switch port stealing, and buffer overflows.
3. The document recommends defenses against these attacks such as using switches instead of hubs, static ARP entries, port security, VLAN segmentation, encryption, firewalls, patching, and monitoring tools. Regular auditing and updating systems is
Secure sigfox ready devices recommendation guide
In the Sigfox ecosystem, the design and manufacturing of
Sigfox Ready devices and Sigfox Verified sub-systems is under
the responsibility of third parties. These third parties could be
OEMs, ODMs, Silicon vendors, module vendors or customers.
This responsibility includes design and implementation of
sufficient security measures to protect customer applications,
network access credentials and data conveyed on the
network. Therefore, the question arises of what measures
should be mandatory and whether certification or verification
of the device security should be required.
This document studies the risks related to insufficient security
in Sigfox Ready devices in order to raise awareness on this
issue within Sigfox and throughout the Sigfox ecosystem. It is
also a guide to decide what measures could be required in the
design, implementation and manufacturing of Sigfox Ready
devices.
Tbs Explanation
TBS is a trust based security system that uses a combination of technologies to secure the airport perimeter and interior. It utilizes long range sensors, video systems, and ID card systems at entry points. Inside the terminal, smart CCTV people tracking software and unique computerized behavioral analysis monitors passengers during check in. An integrated IT system provides ID verification, access control, and automatic suspect detection while sharing information in real time between systems. The proprietary TBS platform supports communications and analytics across all of the integrated airport security components.
PrivateGSM - Voice Encryption Technical Overview
>PrivateGSM Security Overview
>PrivateGSM Voice Encryption Standards:
- Signaling Encryption
- Media Encryption
- End-to-End key exchange
- End-to-Site key exchange
Near field communication
Near Field Communication is a short range high frequency wireless communication technology. Which enables the exchange of data between devices over a distance of up to 10 centimeters.
In This presentation we will go through
Introduction
Evolution of NFC Technology
How NFC work
NFC mode of communication ,tags & Operation
Comparison with existing technique
Application & Uses of NFC
NFC Security
Advantages& Disadvantages of NFC
Conclusion
Security course: exclusive 5G SA pitfalls and new changes to legislation
This document provides information about Positive Technologies, a leading cybersecurity company focused on telecom security. Some key points:
- Positive Technologies has 19 years of experience in enterprise cybersecurity R&D and 9 years focused on telecom security. It has two R&D centers in Europe.
- The company performs over 60 security assessments per year for telecom operators and was the first vendor focused on end-to-end cybersecurity for mobile operators.
- Positive Technologies has a global presence with offices in 10 countries and has performed projects in 41 countries.
- As a pioneer in signaling security research, the company has published numerous reports on vulnerabilities in 2G-5G networks and standards over the past
I N T E R O P09 Suhas Desai Secure Your Vo I P Network With Open Source
The document discusses securing VoIP networks with open source tools. It describes how open source testing tools like SiVuS and SIP Bomber can be used to assess the security of VoIP implementations. SiVuS is a vulnerability scanner that discovers SIP components, generates attack messages, and produces a security findings report. SIP Bomber tests SIP protocol implementations by generating messages and validating passwords. The document advocates using open source tools to securely configure servers, clients, gateways, and firewalls before deploying VoIP networks.
The Present and Future of IoT Cybersecurity
The document discusses IoT cybersecurity challenges and solutions. It notes that 57% of IoT devices are currently vulnerable to attacks costing over $500,000 per month. Various regulatory standards for IoT security are outlined, along with the security requirements of platforms like Amazon Alexa. The company discussed provides compliance services, security assessments, and automated testing tools to help customers address vulnerabilities and meet requirements throughout the product development lifecycle.
12 wireless ips-ss_12-17-10_a
The document is a product specification sheet for Motorola's AirDefense Wireless IPS module. The module detects and prevents wireless network attacks in real-time through constant monitoring and analysis of wireless traffic. It identifies rogue devices, unauthorized users, and a wide range of threats. The module is part of Motorola's comprehensive AirDefense Services Platform which provides holistic wireless network management, security, and troubleshooting capabilities to reduce costs and speed return on investment.
5G mission diary: Houston, we have a problem
In 2020, many telecommunication companies will debut their first commercial 5G networks. The 5G mission has become a hot-button topic for the entire telecom community. But these networks have inherited many threats from their 3G and 4G forebears. Long-known weaknesses in security protocols and algorithms have been baked into new 5G systems. This creates a perfect storm for threat actors to target 5G security weaknesses using their old tricks.
Watch the webinar recording, where PT experts Paolo Emiliani, Head of Pre-Sales Engineering team, and Jun Kim, Managing Director, Korea, help you to navigate the tricky path to 5G deployment and:
explain new 5G trust and service delivery models
assess the evolving 5G threat landscape and privacy issues
explore realms of 5G protection with a focus on real-life cases
discuss new and emerging 5G threats affecting telecom infrastructure and end devices
explain why roaming protection in 5G is a game-changer
underline essential mitigation techniques for 5G security
Follow us on LinkedIn to keep up with our upcoming webinars and events: https://www.linkedin.com/company/positive-tech/
Defcon 22-robert-rowley-detecting-defending-against-surveill
This document discusses state-actor surveillance techniques including hardware bugs, software exploits, and compromising cellular and WiFi networks. It describes various surveillance device codenames like "RAGEMASTER" and "HOWLERMONKEY" and explains how hardware can be implanted or firmware hacked to enable persistent surveillance. The document advocates for detection of these devices and urges caution but also skepticism of conspiracy theories without evidence. It provides sources for further reading on technical surveillance techniques.
Ict encryption agt_fabio_pietrosanti
The document discusses PrivateWave's mobile voice encryption solutions. It describes PrivateGSM software that provides encryption for phone calls on smartphones using VoIP over mobile data. PrivateGSM uses the ZRTP standard to provide end-to-end encryption with human authentication and key agreement. It can also use SRTP and provide end-to-site encryption when integrated with telephony infrastructure. The document emphasizes that PrivateWave's solutions use open standards like ZRTP and SRTP to ensure the technologies are politically neutral and not subject to backdoors.
Positive approach to security of Core networks
Mobile operators across the globe have already started to roll out their 5G. It is here to stay and so security should be kept it mind ensuring the industry learns from the lessons of previous generous networks.
In 2020 our PT Telecom Attack Discovery (PT TAD) 5G-ready next-generation signaling firewall scored no. 1 on the security market.* Want to find out the reasons behind this accolade, then watch the record of our webinar to learn about an effective approach towards signaling security in the era of 5G.
During the live session Positive Technologies’ experts - Kirill Puzankov, Product Manager and Jimmy Jones, security telecoms expert:
explained how to implement security for Core networks quickly, efficiently and with fewer efforts
showed a demo on how telecom operators could withstand an attack or malicious actions using our next-generation Telecom Attack Discovery signaling Firewall
provided statistics and key trends in signaling security.
* According to ROCCO Signalling Firewall Vendor Performance Report 2020. https://positive-tech.com/research/rocco-report-2020/
Follow us on LinkedIn to keep up with our upcoming webinars and events: https://www.linkedin.com/company/positive-tech/
Controlling Laptop and Smartphone Access to Corporate Networks
With company-issued, IT-controlled laptops, IT has traditionally had the option to lock down the operating system to prevent the installation of potentially insecure or non-approved applications.
Signaling network vulnerabilities exposed, protection strategies for operator...
In the wake of recent highly publicized cyberattacks and the increased threat of data exploitation, with the growing demand for protecting network security, Xura participated in a live external webinar with Erik K Linask, Senior Editor,TMCnet.
Our security expert Ilia Abramov discussed recent publications in the press related to the signaling network vulnerabilities and explored SS7 fraud that threatens mobile network security and subscriber privacy. He identified the risks, determined protection scenarios and highlighted important security considerations for LTE signaling network planning.
Elm wifi
This document summarizes the specifications and features of the ELM327 WiFi OBD2 auto scanner adapter. It can connect to iOS and other smartphone systems over WiFi. Key specs include an internal antenna, 50 foot range, 0.75 watt power consumption, and support for various auto protocols. It also lists common vehicle data parameters that can be monitored, and includes a CD drive, websites and social media links for the product.
Telecom Security in the Era of 5G and IoT
Dmitry Kurbatov is the CTO of Positive Technologies, a cybersecurity company. He began his career as a network engineer in 2007 before switching to security in 2009. In his presentation, he discusses security issues for 5G and IoT networks. He notes that the virtualized and programmable nature of 5G introduces new vulnerabilities, and that legacy threats to previous cellular standards still apply. Additionally, the massive number of connected IoT devices poses new threats like large-scale botnets. He concludes by providing guidelines for 5G security, including implementing policies separately for each network slice and securing new interfaces from the start.
FortiGate 1500D Series Delivers High-Performance Next-Generation Firewall
The FortiGate 1500D series delivers high-performance next-generation firewall (NGFW) capabilities for large enterprises and service providers. With multiple high-speed interfaces, high-port density, and high-throughput, ideal deployments are at the enterprise edge, hybrid data center core, and across internal segments. The FortiGate 1500D Firewall is a compact, Network Security Appliance ideal for use as both a Next-Generation Firewall and High-Performance Data Center Firewall at the Enterprise Edge. It delivers up to 80 Gbps firewall throughput and ultra-low latency as well as 11 Gbps next-generation threat protection and control over more than 3000 discrete applications
[CLASS 2014] Palestra Técnica - Delfin Rodillas
Título da Palestra: Defendendo sistemas de controle industrial contra ameaças cibernéticas com segurança de próxima geração
What's hot (20)
Security course: exclusive 5G SA pitfalls and new changes to legislation
Security course: exclusive 5G SA pitfalls and new changes to legislation
I N T E R O P09 Suhas Desai Secure Your Vo I P Network With Open Source
I N T E R O P09 Suhas Desai Secure Your Vo I P Network With Open Source
Defcon 22-robert-rowley-detecting-defending-against-surveill
Defcon 22-robert-rowley-detecting-defending-against-surveill
Controlling Laptop and Smartphone Access to Corporate Networks
Controlling Laptop and Smartphone Access to Corporate Networks
Signaling network vulnerabilities exposed, protection strategies for operator...
Signaling network vulnerabilities exposed, protection strategies for operator...
FortiGate 1500D Series Delivers High-Performance Next-Generation Firewall
FortiGate 1500D Series Delivers High-Performance Next-Generation Firewall
Similar to VoIP Fraud
Advanced fuzzing in the vo ip space
This document summarizes the authors' experience over two years fuzzing VoIP devices to discover vulnerabilities. They used their in-house tool KIF to conduct stateful protocol fuzzing on a variety of VoIP equipment. The testing uncovered many vulnerabilities related to weak input validation, including buffer overflows and format string issues. Some vulnerabilities allowed compromising internal networks by exploiting unfiltered web interfaces on VoIP phones. The authors disclosed vulnerabilities responsibly and provided mitigation techniques.
Sip Intrusion Detection And Prevention Recommendations And Prototype Impleme...
This document discusses the development of a prototype SIP intrusion detection and prevention system using the open-source Snort software. The prototype extends Snort's functionality by adding a SIP preprocessor to analyze SIP protocol packets and implement knowledge-based intrusion detection techniques. The preprocessor fits into Snort's architecture and allows for deeper analysis of layers above TCP/UDP compared to Snort's default decoder. The performance impact of the additional SIP analysis on quality of service is also evaluated.
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
Abstract
Voice over Internet Protocol (VoIP) is an advanced telecommunication technology which transfers the voice/video over
high speed network that provides advantages of flexibility, reliability and cost efficient advanced telecommunication
features. Still the issues related to security are averting many organizations to accept VoIP cloud environment due to
security threats, holes or vulnerabilities. So, the novel secured framework is absolutely necessary to prevent all kind of
VoIP security issues. This paper points out the existing VoIP cloud architecture and various security attacks and issues
in the existing framework. It also presents the defense mechanisms to prevent the attacks and proposes a new security
framework called Intrusion Prevention System (IPS) using video watermarking and extraction technique and Liveness
Voice Detection (LVD) technique with biometric features such as face and voice. IPSs updated with new LVD features
protect the VoIP services not only from attacks but also from misuses.
A Comprehensive Survey of Security Issues and
Defense Framework for VoIP Cloud
Ashutosh Satapathy* and L. M. Jenila Livingston
School of Computing Science and Engineering, VIT University, Chennai - 600127, Tamil Nadu, India;
[email protected], [email protected]
Keywords: Defense Mechanisms, Liveness Voice Detection, VoIP Cloud, Voice over Internet Protocol, VoIP Security Issues
1. Introduction
The rapid progress of VoIP over traditional services is
led to a situation that is common to many innovations
and new technologies such as VoIP cloud and peer to
peer services like Skype, Google Hangout etc. VoIP is the
technology that supports sending voice (and video) over
an Internet protocol-based network1,2. This is completely
different than the public circuit-switched telephone net-
work. Circuit switching network allocates resources to
each individual call and path is permanent throughout
the call from start to end. Traditional telephony services
are provided by the protocols/components such as SS7, T
carriers, Plain Old Telephone Service (POTS), the Public
Switch Telephone Network (PSTN), dial up, local loops
and anything under International Telecommunication
Union. IP networks are based on packet switching and
each packet follows different path, has its own header and
is forwarded separately by routers. VoIP network can be
constructed in various ways by using both proprietary
protocols and protocols based on open standards.
1.1 VoIP Layer Architecture
VoIP communication system typically consist of a front
end platform (soft-phone, PBX, gateway, call manager),
back end platform (server, CPU, storage, memory, net-
work) and intermediate platforms such as VoIP protocols,
database, authentication server, web server, operating sys-
tems etc. It is mainly divided into five layers as shown in
Figure1.
1.2 VoIP Cloud Architecture
VoIP cloud is the framework for delivering telephony
services in which resourc.
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
Abstract
Voice over Internet Protocol (VoIP) is an advanced telecommunication technology which transfers the voice/video over
high speed network that provides advantages of flexibility, reliability and cost efficient advanced telecommunication
features. Still the issues related to security are averting many organizations to accept VoIP cloud environment due to
security threats, holes or vulnerabilities. So, the novel secured framework is absolutely necessary to prevent all kind of
VoIP security issues. This paper points out the existing VoIP cloud architecture and various security attacks and issues
in the existing framework. It also presents the defense mechanisms to prevent the attacks and proposes a new security
framework called Intrusion Prevention System (IPS) using video watermarking and extraction technique and Liveness
Voice Detection (LVD) technique with biometric features such as face and voice. IPSs updated with new LVD features
protect the VoIP services not only from attacks but also from misuses.
A Comprehensive Survey of Security Issues and
Defense Framework for VoIP Cloud
Ashutosh Satapathy* and L. M. Jenila Livingston
School of Computing Science and Engineering, VIT University, Chennai - 600127, Tamil Nadu, India;
[email protected], [email protected]
Keywords: Defense Mechanisms, Liveness Voice Detection, VoIP Cloud, Voice over Internet Protocol, VoIP Security Issues
1. Introduction
The rapid progress of VoIP over traditional services is
led to a situation that is common to many innovations
and new technologies such as VoIP cloud and peer to
peer services like Skype, Google Hangout etc. VoIP is the
technology that supports sending voice (and video) over
an Internet protocol-based network1,2. This is completely
different than the public circuit-switched telephone net-
work. Circuit switching network allocates resources to
each individual call and path is permanent throughout
the call from start to end. Traditional telephony services
are provided by the protocols/components such as SS7, T
carriers, Plain Old Telephone Service (POTS), the Public
Switch Telephone Network (PSTN), dial up, local loops
and anything under International Telecommunication
Union. IP networks are based on packet switching and
each packet follows different path, has its own header and
is forwarded separately by routers. VoIP network can be
constructed in various ways by using both proprietary
protocols and protocols based on open standards.
1.1 VoIP Layer Architecture
VoIP communication system typically consist of a front
end platform (soft-phone, PBX, gateway, call manager),
back end platform (server, CPU, storage, memory, net-
work) and intermediate platforms such as VoIP protocols,
database, authentication server, web server, operating sys-
tems etc. It is mainly divided into five layers as shown in
Figure1.
1.2 VoIP Cloud Architecture
VoIP cloud is the framework for delivering telephony
services in which resourc ...
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
Abstract
Voice over Internet Protocol (VoIP) is an advanced telecommunication technology which transfers the voice/video over
high speed network that provides advantages of flexibility, reliability and cost efficient advanced telecommunication
features. Still the issues related to security are averting many organizations to accept VoIP cloud environment due to
security threats, holes or vulnerabilities. So, the novel secured framework is absolutely necessary to prevent all kind of
VoIP security issues. This paper points out the existing VoIP cloud architecture and various security attacks and issues
in the existing framework. It also presents the defense mechanisms to prevent the attacks and proposes a new security
framework called Intrusion Prevention System (IPS) using video watermarking and extraction technique and Liveness
Voice Detection (LVD) technique with biometric features such as face and voice. IPSs updated with new LVD features
protect the VoIP services not only from attacks but also from misuses.
A Comprehensive Survey of Security Issues and
Defense Framework for VoIP Cloud
Ashutosh Satapathy* and L. M. Jenila Livingston
School of Computing Science and Engineering, VIT University, Chennai - 600127, Tamil Nadu, India;
[email protected], [email protected]
Keywords: Defense Mechanisms, Liveness Voice Detection, VoIP Cloud, Voice over Internet Protocol, VoIP Security Issues
1. Introduction
The rapid progress of VoIP over traditional services is
led to a situation that is common to many innovations
and new technologies such as VoIP cloud and peer to
peer services like Skype, Google Hangout etc. VoIP is the
technology that supports sending voice (and video) over
an Internet protocol-based network1,2. This is completely
different than the public circuit-switched telephone net-
work. Circuit switching network allocates resources to
each individual call and path is permanent throughout
the call from start to end. Traditional telephony services
are provided by the protocols/components such as SS7, T
carriers, Plain Old Telephone Service (POTS), the Public
Switch Telephone Network (PSTN), dial up, local loops
and anything under International Telecommunication
Union. IP networks are based on packet switching and
each packet follows different path, has its own header and
is forwarded separately by routers. VoIP network can be
constructed in various ways by using both proprietary
protocols and protocols based on open standards.
1.1 VoIP Layer Architecture
VoIP communication system typically consist of a front
end platform (soft-phone, PBX, gateway, call manager),
back end platform (server, CPU, storage, memory, net-
work) and intermediate platforms such as VoIP protocols,
database, authentication server, web server, operating sys-
tems etc. It is mainly divided into five layers as shown in
Figure1.
1.2 VoIP Cloud Architecture
VoIP cloud is the framework for delivering telephony
services in which resourc.
169
Whenyour computer isconnected to the Internet, you expose your computer to a variety of potentialthreats. The Internet isdesigned in such a waythat if you have access to the Internet, all other computers on the Internet canconnect to yourcomputer.Thisleavesyouvulnerable to variouscommonattacks. This isespeciallytroubling as severalpopular programs open services on your computer thatallowothers to view files on your computer! Whilethisfunctionalityisexpected, the difficultyisthatsecurityerrors are detectedthatalwaysallow hackers to attackyour computer with the ability to view or destroy sensitive information stored on your computer. To protectyour computer fromsuchattacksyouneed to "teach" your computer to ignore or resistexternaltestingattempts. The commonname for such a program is Firewall. A firewall is software thatcreates a secureenvironmentwhosefunctionis to block or restrictincoming and outgoing information over a network. These firewalls actually do not work and are not suitable for business premises to maintain information securitywhilesupporting free exchange of ideas. Firewall are becoming more and more sophisticated in the day, and new features are beingadded all the time, sothat, despitecriticism and intimidatingdevelopmentmethods, they are still a powerfuldefense. In thispaper, weread a network firewall thathelps the corporateenvironment and other networks thatwant to exchange information over the network. The firewall protects the flow of trafficthrough the internet and limits the amount of external and internal information and provides the internal user with the illusion of anonymous FTP and www online communications.
Securty Issues from 1999
A Powerpoint Presentation with ho'made illustrations and a hidden eye-blink animation at the end. From 10 years ago.
Fortinet ixia ottawa, june 2013
What's next in next generation firewalls and testing. Fortinet / Ixia presentation, Ottawa, June 20, 2013.
Adding P2P support to WengoPhone, an open-source VoIP and ...
This document proposes adding peer-to-peer (P2P) support to the open-source VoIP and video conferencing application WengoPhone. The author plans to implement a P2P-SIP architecture using a Chord distributed hash table within a hierarchical network of super nodes. Key aspects to be addressed include integrating the P2P layer into the SIP protocol stack, supporting locality and proximity, and evaluating security through analyzing potential attacks and implementing countermeasures. The proposed timeline is to complete the work by the end of April 2006, with evaluation based on scalability testing and damage assessment from conducted attack scenarios.
IoT setup and pairing
Michael Mars, Cloud IoT Architect at Softimize.co, provided techniques for initial setup and pairing of IoT devices in April 2018. The document describes sample device pairing flows involving turning on a Fast Pair-enabled device, establishing a Bluetooth connection when the user taps to pair, and downloading a companion app. It also discusses Bluetooth secured pairing as a 3-phase procedure to establish keys for encrypted links and Bluetooth simple pairing models like numeric comparison, just works, out of band, and passkey entry. Wi-Fi protected setup methods like push button configuration, PIN entry, and out of band channels are also summarized. Finally, an overall architecture for handling device data on onboarding, organization, monitoring, and remote management is
Testing
The document provides a summary of Gowri Sankarreddy's professional experience, skills, qualifications, and projects. It outlines 3+ years of experience in VOIP testing, networking, and currently working as an IPsec VPN consultant. Technical skills include VOIP phones, PBX systems, Linux, networking tools, security protocols. Academic qualifications include a Bachelor's degree in Engineering from Anna University. Previous project experience includes testing IPsec VPN configurations, SIP signaling, and a SIP proxy server.
NXP'S-PORTFOLIO-FOR-ADDRESSING-IOT-SECURITY.pdf
NXP's portfolio addresses IoT security across the entire device lifecycle from edge to cloud. [NXP's portfolio includes] secure elements, microcontrollers, application processors, device management software, and solutions that provide security from device procurement through decommissioning. NXP products offer hardware-protected keys, secure boot, tamper resistance, and cryptographic accelerators to establish trust from the edge to the cloud.
Wireless Security and Mobile DevicesChapter 12Princi.docx
Wireless Security
and Mobile Devices
Chapter 12
Principles of Computer Security, Fifth Edition
Copyright © 2018 by McGraw-Hill Education. All rights reserved.
Objectives
Describe the different wireless systems in use today.
Detail WAP and its security implications.
Identify 802.11’s security issues and possible solutions.
Learn about the different types of wireless attacks.
Examine the elements needed for enterprise wireless deployment.
Examine the security of mobile systems.
Principles of Computer Security, Fifth Edition
Copyright © 2018 by McGraw-Hill Education. All rights reserved.
2
Key Terms (1 of 4)
Beacon frames
Bluebugging
Bluejacking
Bluesnarfing
Bluetooth
Bluetooth DoS
Captive portal
Containerization
Custom firmware
Direct-sequence spread spectrum (DSSS)
Disassociation
Extensible Authentication Protocol (EAP)
EAP-FAST
EAP-TLS
EAP-TTLS
Principles of Computer Security, Fifth Edition
Copyright © 2018 by McGraw-Hill Education. All rights reserved.
Beacon frames – A series of frames used in WiFi (802.11) to establish the presence of a wireless network device.
Bluebugging – The use of a Bluetooth-enabled device to eavesdrop on another person’s conversation using that person’s Bluetooth phone as a transmitter. The bluebug application silently causes a Bluetooth device to make a phone call to another device, causing the phone to act as a transmitter and allowing the listener to eavesdrop on the victim’s conversation in real time.
Bluejacking – The sending of unsolicited messages over Bluetooth to Bluetooth-enabled devices such as mobile phones, tablets, or laptop computers.
Bluesnarfing – The unauthorized access of information from a Bluetooth-enabled device through a Bluetooth connection, often between phones, desktops, laptops, and tablets.
Bluetooth DOS – The use of Bluetooth technology to perform a denial-of-service attack against another device. In this attack, an attacker repeatedly requests pairing with the victim device. This type of attack does not divulge information or permit access, but is a nuisance. And, more importantly, if done repeatedly it can drain a device’s battery, or prevent other operations from occurring on the victim’s device.
Captive portal – A website used to validate credentials before allowing access to a network connection.
Containerization – Dividing a device into a series of containers, with one container holding work-related materials and the other personal materials.
Custom firmware - Firmware for a device that has been altered from the original factory settings.
Direct-sequence spread spectrum (DSSS) – A method of distributing a communication over multiple frequencies to avoid interference and detection.
Disassociation – An attack against a wireless system designed to disassociate a host from the wireless access point, and from the wireless network. Disassociation attacks stem from the deauthentication frame that is in the IEEE 802.11 (Wi-Fi) standard.
Extensible Authentication Protocol.
AirHopper: Bridging the Air-Gap between Isolated Networks and Mobile Phones u...
Information is the most critical asset of modern organizations, and accordingly coveted by adversaries. When highly sensitive data is involved, an organization may resort to air-gap isolation, in which there is no networking connection between the inner network and the external world. While infiltrating an air-gapped network has been proven feasible in recent years (e.g., Stuxnet), data exfiltration from an air-gapped network is still considered to be one of the most challenging phases of an advanced cyber-attack.
In this paper we present "AirHopper", a bifurcated malware that bridges the air-gap between an isolated network and nearby infected mobile phones using FM signals.
While it is known that software can intentionally create radio emissions from a video display unit, this is the first time that mobile phones are considered in an attack model as the intended receivers of maliciously crafted radio signals. We examine the attack model and its limitations, and discuss implementation considerations such as stealth and modulation methods. Finally, we evaluate AirHopper and demonstrate how textual and binary data can be exfiltrated from physically isolated computer to mobile phones at a distance of 1-7 meters, with effective bandwidth of 13-60 Bps (Bytes per second).
10.1.1.64.2504
This document presents a technique for tracking anonymous peer-to-peer VoIP calls on the Internet. The technique embeds a unique watermark into the timing of encrypted VoIP flows by slightly adjusting the timing of selected packets. This makes the timing characteristics of VoIP flows distinctive enough to identify correlations across anonymizing networks. The technique is evaluated using the Skype peer-to-peer VoIP client and the anonymous VPN service from findnot.com. Results show the technique can feasibly track anonymous calls and low latency anonymizing systems are susceptible to timing attacks.
Firewalls
The document discusses firewalls and their implementation, providing details on different types of firewalls like network layer packet filters, application layer proxies, and network address translation firewalls. It also describes different implementations of firewalls including transparent/bridging firewalls, sandwich firewalls, and VLAN switch implementations. The document then focuses on Cisco PIX firewalls, providing details on their architecture, operation, and hardware.
Fortigate fortiwifi-80f-series
The FortiGate 80F series provides a compact and fanless SD-WAN and network security solution for branch offices and mid-sized businesses. It offers 10Gbps firewall performance, 1.4Gbps IPS, 1Gbps NGFW capabilities and 900Mbps threat protection. The FortiGate uses a purpose-built ASIC and security processor to deliver industry-leading performance and protection while integrating with the Fortinet Security Fabric for broad visibility, threat intelligence sharing and automated remediation across the network.
VoIPER: Smashing the VoIP stack while you sleep
Voiper is an open source, cross-platform VoIP fuzzing toolkit that automates the process of finding vulnerabilities in SIP and SDP protocol implementations. It includes around 10 ready-to-use fuzzers covering the RFCs, a SIP library to manage sessions, and tools for crash detection and recreation to facilitate remote code execution testing without constant user interaction. Initial testing with Voiper found several crashes across four VoIP clients, demonstrating its ability to effectively hunt for bugs in SIP devices.
EGLA's Patent and Intellectual Property Portfolio - Licensing
EGLA represents a variety of patents and intellectual property for sale or license to any bidder. Our IP includes : RF Emulation/Simulation Platforms and Patents, Mobility Protocols for 4G, Cloud-based systems for multimedia streaming, Safety Apps/Cloud with patents (SafeFi) and a Hotel Management System.
Fuzzing101: Unknown vulnerability management for Telecommunications
This document summarizes a webinar about fuzzing and unknown vulnerability management for telecommunications. The webinar was presented by Juha-Matti Tirilä and Tero Rontti from Codenomicon and covered topics like the growing complexity and attack vectors in telecommunications, definitions of fuzzing and different fuzzing techniques, challenges with vulnerability management, and a case study on fuzzing MPEG2-TS files. The goal of unknown vulnerability management is to have a framework for applying proper security testing procedures to identify vulnerabilities before they are discovered and exploited.
Similar to VoIP Fraud (20)
Sip Intrusion Detection And Prevention Recommendations And Prototype Impleme...
Sip Intrusion Detection And Prevention Recommendations And Prototype Impleme...
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
Adding P2P support to WengoPhone, an open-source VoIP and ...
Adding P2P support to WengoPhone, an open-source VoIP and ...
Wireless Security and Mobile DevicesChapter 12Princi.docx
Wireless Security and Mobile DevicesChapter 12Princi.docx
AirHopper: Bridging the Air-Gap between Isolated Networks and Mobile Phones u...
AirHopper: Bridging the Air-Gap between Isolated Networks and Mobile Phones u...
EGLA's Patent and Intellectual Property Portfolio - Licensing
EGLA's Patent and Intellectual Property Portfolio - Licensing
Fuzzing101: Unknown vulnerability management for Telecommunications
Fuzzing101: Unknown vulnerability management for Telecommunications
VoIP Fraud
- 2. HAROKOPIO UNIVERSITY - DEPARTMENT OF INFORMATICS AND TELEMATICS MSc in Advanced Telecommunication Systems and Applications Data and Systems Security Dr. Panagiotis Rizomiliotis 2
- 3. Hello! We are: Elena Politi - 14207 Fotis Evangelou - 14203 Giorgos Fragiadakis - 14212 3
- 5. VoiceoverInternetProtocol Cheaper and more flexible than PSTN 5 A technology that enables people to use the Internet as the transmission medium for telephone calls. Works through sending digitized voice samples in packets.
- 6. SIP ≡ Session Initiation Protocol Τhe dominant signaling channel to handle multimedia sessions. RTP ≡ Real-time Transport Protocol Τhe voice channel VoIPProtocols 6
- 7. VoIPArchitecture Place your screenshot here 7
- 8. AnexamPleofSIPcallEstaBlishmentandTearDown 8 Incorporating Active Fingerprinting into SPIT Prevention Systems Hong Yan et. al.
- 9. 2.SecurityRisks SIP based VoIP services are offered in an open architecture network which makes them attractive targets. 9
- 10. 10 SIP scanning attack Accounts with vulnerabilities (i.e. poor authentication) that are brutally attacked in order to steal credentials and be compromised. Attacks via voicemail Hackers exploit vulnerabilities in voicemail systems in order to launch various fraudulent activities (i.e. billing) According to the article there are two common attacks to SIP-based elements:
- 12. TheGlobalFraudLossSurvey2013 12Communications Fraud Control Association Estimated fraud losses by service type
- 13. Insimplenumbers... The estimated Global Fraud Loss for 2013 was $46.3 Billion: ✖ $11.08 is due to VoIP fraud ✖ 15% increased from 2011 13 e.g. August 2012 Mississippi Counties were hit by hackers stealing $100.000 worth of phone calls to Central Africa
- 14. 3.ProBlem & ExistingSolUtions Attackers are being masqueraded as another user and originate calls using forged identity 14
- 16. CateGoriesofPropoSedSoluTions Identity & Trust value of callers 16 Stronger authentication mechanisms Ascertain to the real path of call source To date, related work is being focused on three different scopes and proposes solutions which can be the ingredients of a general and united solution
- 18. 18 Another two solutions are presented in last decade, was directly related to the article which we are presenting today. SoluTionstillYesteRday2
- 20. phaSesofVoiPSecuriTy User Authentication Device Authorization Identification Classification Verification Fingerprinting 20
- 21. 21 A. Classification If same class of devices look similar and have same type of hardware then there should exist common attributes, that can put it apart from other classes of devices. B. Fingerprinting Each device has its own unique notion of time that makes it distinct within its own class of devices. PHASE1 Identification
- 22. 22 The SIP Server confirms whether the device is associated with the particular user or not. Verification PHASE2
- 24. a. ClassiFicatIon The analysis of RTP payloads (or packets) can reveal information about the device that created it. The article discusses the following acoustic features: ✖ Silence Energy ✖ DC Offset ✖ Dithering Pattern 24
- 25. Experimental Evaluation 25 11 Different Hardphones 5 Softphones installed on a laptop computer All of the phones register from one access location to the SBC 5-8 calls from each phone Analysis of Various Softphones and Hardphones
- 26. 26 B.FinGerpriNting fig. REGISTER Message Flow A unique identity of the calling device is created by achieving a proper registration
- 27. Experimental Evaluation 27 Group of devices share the same configuration files. Devices use same synchronization system clock The device location remains fixed The signaling and media streams flow through the same SBC Different manufacturing stamp
- 28. Handset vs Handsfree Experimental Results 28 The experimental process concludes to the following aspects that affect device identification Subscriber’s Behavior Phone's manufacturing release version Laptop connection for softphones (wifi - Ethernet)
- 29. 6.ConClusions 29
- 30. Device Authorization Observing the signaling and media streams in order to determine the device information Fingerprinting a remote device with a high speed degree of accuracy Establishing a relationship between user ID and the authorized calling device 30 Sengarsuggests
- 32. 32 OurProposals Use stronger encryption where is possible Better password management Better collaboration between service providers and device manufacturers Establish a unified SIP standard protocol