On Spam over Internet Telephony (SPIT) Prevention

Quittek, Juergen; Niccolini, Saverio; Tartarelli, S.; Schlegel, Roman

doi:10.1109/mcom.2008.4597108

Cited by 45 publications

(22 citation statements)

References 7 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In the case of spam e-mails, which cause the bulk of e-mail traffic, the Spam over Internet Telephony (SPIT) [17] system uses blacklists and whitelists to filter undesired e-mails -this is considered an adequate solution to the problem. Since similar threats are expected to occur in large-scale networks that are based on the IP Multimedia Subsystem (IMS), the 3rd Generation Partnership Project (3GPP) has been working on the standardization of SPIT-similar solutions, so-called protection against unsolicited communication over IMS (PUCI) [18].…”

Section: Related Workmentioning

confidence: 99%

iVisher: Real-Time Detection of Caller ID Spoofing

Song¹,

Kim²,

Gkelias³

2014

ETRI J

View full text Add to dashboard Cite

Voice phishing (vishing) uses social engineering, based on people's trust in telephone services, to trick people into divulging financial data or transferring money to a scammer. In a vishing attack, a scammer often modifies the telephone number that appears on the victim's phone to mislead the victim into believing that the phone call is coming from a trusted source, since people typically judge a caller's legitimacy by the displayed phone number. We propose a system named iVisher for detecting a concealed incoming number (that is, caller ID) in Session Initiation Protocol-based Voice-over-Internet Protocol initiated phone calls. Our results demonstrate that iVisher is capable of detecting a concealed caller ID without significantly impacting upon the overall call setup time.

show abstract

Section: Related Workmentioning

confidence: 99%

iVisher: Real-Time Detection of Caller ID Spoofing

Song¹,

Kim²,

Gkelias³

2014

ETRI J

View full text Add to dashboard Cite

show abstract

“…The evaluation focuses on scalability, by measuring the response time to calls as call volumes increase. A similar architecture, with some additional components, is described by Quittek et al [55] and later extended [56].…”

Section: D) Captchas and Puzzles (4 Items)mentioning

confidence: 99%

A Comprehensive Survey of Voice over IP Security Research

Keromytis

2012

IEEE Commun. Surv. Tutorials

116

View full text Add to dashboard Cite

Abstract-We present a comprehensive survey of Voice over IP security academic research, using a set of 245 publications forming a closed cross-citation set. We classify these papers according to an extended version of the VoIP Security Alliance (VoIPSA) Threat Taxonomy. Our goal is to provide a roadmap for researchers seeking to understand existing capabilities and to identify gaps in addressing the numerous threats and vulnerabilities present in VoIP systems. We discuss the implications of our findings with respect to vulnerabilities reported in a variety of VoIP products.We identify two specific problem areas (denial of service, and service abuse) as requiring significant more attention from the research community. We also find that the overwhelming majority of the surveyed work takes a black box view of VoIP systems that avoids examining their internal structure and implementation. Such an approach may miss the mark in terms of addressing the main sources of vulnerabilities, i.e., implementation bugs and misconfigurations. Finally, we argue for further work on understanding cross-protocol and cross-mechanism vulnerabilities (emergent properties), which are the byproduct of a highly complex system-of-systems and an indication of the issues in future large-scale systems.

show abstract

“…Such a framework is presented in (Quittek et al, 2008). The idea is that at each layer of processing, a call can be classified into one of three classes-a valid call which is passed onto the receiver, a spam call which is rejected, or an undecided call which is passed onto the next stages of processing.…”

Section: Framework For Spit Preventionmentioning

confidence: 99%

“…7, No. 7;2013 The framework proposed by Quittek et al (2008) consists of three layers. Stage 3 above is not considered in the framework, since it is really an ancillary part of white lists and does not involve a voice call.…”

Section: Framework For Spit Preventionmentioning

confidence: 99%

A Review of Methods for Preventing Spam in IP Telephony

Khan¹,

Portmann²,

Bergmann³

2013

MAS

View full text Add to dashboard Cite

Voice over IP telephony reduces communications costs, but it is also subject to spam, i.e. unwanted, unsolicited calls. This paper discusses the problem of spam over IP telephony and reviews published techniques to reject likely nuisance callers. The techniques investigated include content filtering, black lists, white lists, gray lists, call rate monitoring, IP/domain correlation, reputation systems, consent-based communications, address obfuscation, limited-use addresses, computational puzzles, Turing tests, payments at risk, legislation, centralized SIP providers, circles of trust and authenticated identity. The advantages and disadvantages of each are analyzed. It is concluded that no single technique is sufficient and that a framework of multiple techniques is required. One proposed framework is analyzed and it is found that it has limited support for voicemail spam and contact request spam.

show abstract

On Spam over Internet Telephony (SPIT) Prevention

Cited by 45 publications

References 7 publications

iVisher: Real-Time Detection of Caller ID Spoofing

iVisher: Real-Time Detection of Caller ID Spoofing

A Comprehensive Survey of Voice over IP Security Research

A Review of Methods for Preventing Spam in IP Telephony

Contact Info

Product

Resources

About