SoK: Fraud in Telephony Networks

2017 IEEE European Symposium on Security and Privacy (EuroS&P) Pub Date : 2017-04-26 DOI:10.1109/EuroSP.2017.40

Merve Sahin, Aurélien Francillon, Payas Gupta, M. Ahamad

{"title":"SoK: Fraud in Telephony Networks","authors":"Merve Sahin, Aurélien Francillon, Payas Gupta, M. Ahamad","doi":"10.1109/EuroSP.2017.40","DOIUrl":null,"url":null,"abstract":"Telephone networks first appeared more than a hundred years ago, long beforetransistors were invented. They, therefore, form the oldest large scale networkthat has grown to touch over 7 billion people. Telephony is now merging manycomplex technologies and because numerous services enabled by these technologiescan be monetized, telephony attracts a lot of fraud. In 2015, a telecom fraudassociation study estimated that the loss of revenue due to global telecom fraudwas worth 38 billion US dollars per year. Because of the convergence oftelephony with the Internet, fraud in telephony networks can also have anegative impact on security of online services. However, there is littleacademic work on this topic, in part because of the complexity of such networksand their closed nature. This paper aims to systematically explorefraud in telephony networks. Our taxonomy differentiates the root causes, thevulnerabilities, the exploitation techniques, the fraud types and finally theway fraud benefits fraudsters. We present an overview of eachof these and use CAller NAMe (CNAM) revenue share fraud as aconcrete example to illustrate how our taxonomy helps in better understandingthis fraud and to mitigate it.","PeriodicalId":233564,"journal":{"name":"2017 IEEE European Symposium on Security and Privacy (EuroS&P)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2017-04-26","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"59","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2017 IEEE European Symposium on Security and Privacy (EuroS&P)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/EuroSP.2017.40","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 59

Abstract

Telephone networks first appeared more than a hundred years ago, long beforetransistors were invented. They, therefore, form the oldest large scale networkthat has grown to touch over 7 billion people. Telephony is now merging manycomplex technologies and because numerous services enabled by these technologiescan be monetized, telephony attracts a lot of fraud. In 2015, a telecom fraudassociation study estimated that the loss of revenue due to global telecom fraudwas worth 38 billion US dollars per year. Because of the convergence oftelephony with the Internet, fraud in telephony networks can also have anegative impact on security of online services. However, there is littleacademic work on this topic, in part because of the complexity of such networksand their closed nature. This paper aims to systematically explorefraud in telephony networks. Our taxonomy differentiates the root causes, thevulnerabilities, the exploitation techniques, the fraud types and finally theway fraud benefits fraudsters. We present an overview of eachof these and use CAller NAMe (CNAM) revenue share fraud as aconcrete example to illustrate how our taxonomy helps in better understandingthis fraud and to mitigate it.

查看原文本刊更多论文

电话网络中的欺诈

电话网络最早出现在一百多年前，远远早于晶体管的发明。因此，他们形成了最古老的大规模网络，已经发展到超过70亿人。电话现在融合了许多复杂的技术，由于这些技术提供的许多服务可以货币化，电话吸引了许多欺诈行为。2015年，电信诈骗协会的一项研究估计，全球电信诈骗造成的收入损失每年高达380亿美元。由于电话与互联网的融合，电话网络中的欺诈也会对在线服务的安全性产生负面影响。然而，关于这一主题的学术研究很少，部分原因是此类网络的复杂性及其封闭性。本文旨在系统地探讨电话网络中的欺诈行为。我们的分类法区分了根本原因、漏洞、利用技术、欺诈类型以及欺诈对欺诈者的好处。我们将对这两种情况进行概述，并使用CAller NAMe (CNAM)收入分成欺诈作为具体示例，说明我们的分类法如何帮助更好地理解这种欺诈并减轻这种欺诈。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2017 IEEE European Symposium on Security and Privacy (EuroS&P)

自引率

0.00%

发文量