Phoneypot: Data-driven Understanding of Telephony Threats

Gupta, Priyanka; Srinivasan, Bharat; Balasubramaniyan, Vijay A.; Ahamad, Mustaque

doi:10.14722/ndss.2015.23176

Cited by 44 publications

(35 citation statements)

References 26 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Similarly, the two other lines are drawn by considering incoming calls of TouchPal users and all benign users. From the figure, we observe a long tail distribution, which is consistent with earlier reports using a [15]. However, we observe that the tails of malicious call numbers and TouchPal users are significantly higher than benign phone numbers.…”

Section: E Phone Number Distributions Based On Incoming Call Volume supporting

confidence: 90%

“…We attribute this to the fact that only less than 700 call records are collected in [9], and thus the results in [9] may not be statistically robust. On the other hand, similar observations have been made based on US's data [15], though some details are different. For example, the hourly call volume histogram from [15] looks more similar to Figure 4a All above observations suggest that the call time may be a useful indicator to distinguish malicious calls from benign ones.…”

Section: Call Distribution Across Different Dates and Timesupporting

confidence: 69%

“…There have been a variety of systematic studies in malicious call analysis. For example, [15] builds a honeypot with 39,696 phone numbers that are abandoned because former owners received too many unwanted calls. The incoming calls to these phone numbers are treated as malicious calls and analyzed.…”

Section: B Telephony Malicious Call Analysismentioning

confidence: 99%

“…Using this dataset, we conduct a large scale measurement study to understand which information is more helpful to distinguish malicious calls from benign ones. Note that there have been several prior work providing measurement studies [15], [22]. However, these work mainly focused on malicious call records, and did not provide insights on how malicious call records differ from benign ones.…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

A Machine Learning Approach to Prevent Malicious Calls over Telephony Networks

Liu

et al. 2018

2018 IEEE Symposium on Security and Privacy (SP)

View full text Add to dashboard Cite

Malicious calls, i.e., telephony spams and scams, have been a long-standing challenging issue that causes billions of dollars of annual financial loss worldwide. This work presents the first machine learning-based solution without relying on any particular assumptions on the underlying telephony network infrastructures.The main challenge of this decade-long problem is that it is unclear how to construct effective features without the access to the telephony networks' infrastructures. We solve this problem by combining several innovations. We first develop a TouchPal user interface on top of a mobile App to allow users tagging malicious calls. This allows us to maintain a large-scale call log database. We then conduct a measurement study over three months of call logs, including 9 billion records. We design 29 features based on the results, so that machine learning algorithms can be used to predict malicious calls. We extensively evaluate different state-of-the-art machine learning approaches using the proposed features, and the results show that the best approach can reduce up to 90% unblocked malicious calls while maintaining a precision over 99.99% on the benign call traffic. The results also show the models are efficient to implement without incurring a significant latency overhead. We also conduct ablation analysis, which reveals that using 10 out of the 29 features can reach a performance comparable to using all features.

show abstract

Section: E Phone Number Distributions Based On Incoming Call Volume supporting

confidence: 90%

Section: Call Distribution Across Different Dates and Timesupporting

confidence: 69%

Section: B Telephony Malicious Call Analysismentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

A Machine Learning Approach to Prevent Malicious Calls over Telephony Networks

Liu

et al. 2018

2018 IEEE Symposium on Security and Privacy (SP)

View full text Add to dashboard Cite

show abstract

“…There are surveys on mobile applications such as secure messaging systems [12] and mobile operating systems, e. g., Android [13]. On the other hand, there are generic Internet security surveys [14] and telephony security contributions focusing on fraud attacks [15], [16], [17].…”

Section: Introductionmentioning

confidence: 99%

On Security Research Towards Future Mobile Network Generations

Rupprecht

Dabrowski

Holz

et al. 2018

IEEE Commun. Surv. Tutorials

View full text Add to dashboard Cite

Over the last decades, numerous security and privacy issues in all three active mobile network generations have been revealed that threaten users as well as network providers. In view of the newest generation (5G) currently under development, we now have the unique opportunity to identify research directions for the next generation based on existing security and privacy issues as well as already proposed defenses. This paper aims to unify security knowledge on mobile phone networks into a comprehensive overview and to derive pressing open research questions. To achieve this systematically, we develop a methodology that categorizes known attacks by their aim, proposed defenses, underlying causes, and root causes. Further, we assess the impact and the efficacy of each attack and defense. We then apply this methodology to existing literature on attacks and defenses in all three network generations. By doing so, we identify ten causes and four root causes for attacks.Mapping the attacks to proposed defenses and suggestions for the 5G specification enables us to uncover open research questions and challenges for the development of next-generation mobile networks. The problems of unsecured pre-authentication traffic and jamming attacks exist across all three mobile generations. They should be addressed in the future, in particular to wipe out the class of downgrade attacks and, thereby, strengthen the users' privacy. Further advances are needed in the areas of inter-operator protocols as well as secure baseband implementations. Additionally, mitigations against denial-of-service attacks by smart protocol design represent an open research question.

show abstract

Big Data for Sociological Research

Radford¹,

Lazer²

2019

The Wiley Blackwell Companion to Sociology

View full text Add to dashboard Cite

Phoneypot: Data-driven Understanding of Telephony Threats

Cited by 44 publications

References 26 publications

A Machine Learning Approach to Prevent Malicious Calls over Telephony Networks

A Machine Learning Approach to Prevent Malicious Calls over Telephony Networks

On Security Research Towards Future Mobile Network Generations

Big Data for Sociological Research

Contact Info

Product

Resources

About