A Formally Verified Mechanism for Countering SPIT

Soupionis, Yannis; Basagiannis, Stylianos; Katsaros, Panagiotis; Gritzalis, Dimitris

doi:10.1007/978-3-642-21694-7_11

Cited by 8 publications

(5 citation statements)

References 14 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Owing to the exponential growth of the spam calls, researchers have paved various ways for mitigating the SPIT calls using various techniques such as policy based, turing test based, reputation based, payment at risk, Completely Automated Public Turing test to tell the Computers and Humans Apart (CAPTCHA), machine learning algorithms based and content based over the period of 2006 to 2015 …”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Detection and prevention of spam over Internet telephony in Voice over Internet Protocol networks using Markov chain with incremental SVM

Vennila¹,

Manikandan²,

Suresh³

2016

Int J Communication

View full text Add to dashboard Cite

This paper is mainly focused on the detection and prevention of the spammers such as telemarketing callers in Voice over Internet Protocol networks. The existing spam over Internet telephony (SPIT) detection mechanisms use call characteristics features such as reputation rate, call rejection rate, and user feedback that might increase the computation overhead and communication overhead. In this paper, a 2-tier model is proposed and implemented for detecting, preventing, and mitigating SPIT callers. The 2-tier model consists of a Markov chain (MC) and an incremental support vector machine (ISVM). The MC, in the first tier, detects the telemarketing callers, whereas the ISVM classifier in the second tier segregates these callers from the legitimate users. Also, the ISVM gradually mitigates the arrival of telemarketing callers at the recipient side. The performance of the proposed MC-ISVM classifier is tested using an experimental test bed, and the results show that the 2-tier model reports a promising blockage probability rate of 0.9 against spammers with a false positive rate of less than 0.01.

show abstract

Section: Related Workmentioning

confidence: 99%

“…However, these policy rules are insufficient to fight against SPIT calls, and an adequate knowledge is also required. Thus, the policy conditions are defined based on the in‐depth analysis of SPIT‐related threats and vulnerabilities that result to an action of either to block or notify or block with description using SIP message codes …”

Section: Related Workmentioning

confidence: 99%

Detection and prevention of spam over Internet telephony in Voice over Internet Protocol networks using Markov chain with incremental SVM

Vennila¹,

Manikandan²,

Suresh³

2016

Int J Communication

View full text Add to dashboard Cite

show abstract

“…Robustness properties that have been checked include (a) the absence of deadlocks and non-progress cycles (livelocks) in error-free communications, (b) fairness for the service users, (c) guaranteed call establishment for error-free SIP sessions, and (d) absence of message overload that could violate call establishment timeliness. All properties were formally verified by model checking a Sphinx system model developed in the SPIN toolset [13,14]. The model was parameterized based on measurements taken in our VoIP infrastructure, for the SIP message exchange times with (and without) the anti-SPIT policy.…”

Section: Formal Verificationmentioning

confidence: 99%

The Sphinx enigma in critical VoIP infrastructures: Human or botnet?

et al. 2013

View full text Add to dashboard Cite

show abstract

“…Kapravelos et al [9] presented a flow state based filter mechanism for preventing nuisance dialing but did not address false positive rates. Soupionis et al [22] detailed an audio based anti-bot verification method and more formal methods later [20,21]. In general, most existing VoIP defense mechanisms are designed to protect the VoIP servers, and be deployed close to them, rather than end hosts such as SIP softphones.…”

Section: Related Workmentioning

confidence: 99%

Disabling a Computer by Exploiting Softphone Vulnerabilities: Threat and Mitigation

Farley

Wang

2013

Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering

View full text Add to dashboard Cite

Abstract. As more and more people are using VoIP softphones in their laptop and smart phones, vulnerabilities in VoIP protocols and systems could introduce new threats to the computer that runs the VoIP softphone. In this paper, we investigate the security ramifications that VoIP softphones expose their host to and ways to mitigate such threats. We show that crafted SIP traffic (noisy attack) can disable a Windows XP host that runs the official Vonage VoIP softphone within several minutes. While such a noisy attack can be effectively mitigated by threshold based filtering, we show that a stealthy attack could defeat the threshold based filtering and disable the targeted computer silently without ever ringing the targeted softphone. To mitigate the stealthy attack, we have developed a limited context aware (LCA) filtering that leverages the context and SIP protocol information to ascertain the intentions of a SIP message on behalf of the client. Our experiments show that LCA filtering can effectively defeat the stealthy attack while allowing legitimate VoIP calls to go through.

show abstract

A Formally Verified Mechanism for Countering SPIT

Cited by 8 publications

References 14 publications

Detection and prevention of spam over Internet telephony in Voice over Internet Protocol networks using Markov chain with incremental SVM

Detection and prevention of spam over Internet telephony in Voice over Internet Protocol networks using Markov chain with incremental SVM

The Sphinx enigma in critical VoIP infrastructures: Human or botnet?

Disabling a Computer by Exploiting Softphone Vulnerabilities: Threat and Mitigation

Contact Info

Product

Resources

About