Managing risks at runtime in VoIP networks and services

Authors:
Oussema Dabbebi;Remi Badonnel;Olivier Festor
Affiliations:
INRIA Nancy Grand Est, LORIA, Vandoeuvre-lès-Nancy, France;INRIA Nancy Grand Est, LORIA, Vandoeuvre-lès-Nancy, France;INRIA Nancy Grand Est, LORIA, Vandoeuvre-lès-Nancy, France
Venue:
AIMS'10 Proceedings of the Mechanisms for autonomous management of networks and services, and 4th international conference on Autonomous infrastructure, management and security
Year:
2010

Citing 3
Cited 1

Securing VoIP Networks: Threats, Vulnerabilities, and Countermeasures

Securing VoIP Networks: Threats, Vulnerabilities, and Countermeasures
Assessing the risk of intercepting VoIP calls

Computer Networks: The International Journal of Computer and Telecommunications Networking
Progressive multi gray-leveling: a voice spam protection algorithm

IEEE Network: The Magazine of Global Internetworking

Monitoring and security for the internet of things

AIMS'13 Proceedings of the 7th IFIP WG 6.6 international conference on Autonomous Infrastructure, Management, and Security: emerging management mechanisms for the future internet - Volume 7943

Quantified Score

Hi-index	0.00

Visualization

Abstract

IP telephony is less confined than traditional PSTN telephony. As a consequence, it is more exposed to security attacks. These attacks are specific to VoIP protocols such as SPIT, or are inherited from the IP layer such as ARP poisoning. Protection mechanisms are often available, but they may seriously impact on the quality of service of such critical environments. We propose to exploit and automate risk management methods and techniques for VoIP infrastructures. Our objective is to dynamically adapt the exposure of a VoIP network with regard to the attack potentiality while minimizing the impact for the service. This paper describes the challenges of risk management for VoIP, our runtime strategy for assessing and treating risks, preliminary results based on Monte-Carlo simulations and future work.