Amna Saad, A. Amran, Izzat Norkhalim, Mohd Adib Mohd Yusof
{"title":"自动入侵检测和防御系统(AIDPoS)","authors":"Amna Saad, A. Amran, Izzat Norkhalim, Mohd Adib Mohd Yusof","doi":"10.1109/ISTMET.2015.7359001","DOIUrl":null,"url":null,"abstract":"Systems employing the Internet and Voice over Internet Protocol (VoIP) are alternative to the legacy landline telephony system. The services offered by these systems allow users to communicate with their family members, friends, banks and business partners whenever they are online. Particularly, the VoIP service is popular with the Internet users because charges are bound into usually fixed access costs making the price of the long distance calls themselves appear economical and even free. However, VoIP services have several disadvantages. One of the disadvantages of VoIP is, it is exposed to Internet security vulnerabilities, threats and attacks. The attacks come in many forms. One of the methods to attack the VoIP service, is by sending a Spam over Internet Telephony (SPIT). SPIT is normally executed by malicious parties initiating automated, unsolicited, and unwanted communications that used VoIP or video conferencing services, just like an email SPAM. Solutions to mitigate SPIT are still lacking. To defense a VoIP system from SPIT, we have come out with the idea of Automated Intrusion Detection and Prevention System over SPIT (AIDPoS) that can detect and prevent SPIT from external parties to enter the VoIP network. AIDPoS is a combination system of Intrusion Detection System (IDS) and Intrusion Prevention System (IPS) on Voice over IP (VoIP) server. This is an experimental research to find a solution to combat SPIT if it happens in the future. Our result shows that an automated Intrusion detection and Prevention system over SPIT attack is feasible. Our work is on an open source VoIP network. Other vulnerabilities and threats are important, but beyond our research scope and is not covered in this paper.","PeriodicalId":302732,"journal":{"name":"2015 International Symposium on Technology Management and Emerging Technologies (ISTMET)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2015-12-17","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":"{\"title\":\"Automated Intrusion Detection and Prevention System over SPIT (AIDPoS)\",\"authors\":\"Amna Saad, A. Amran, Izzat Norkhalim, Mohd Adib Mohd Yusof\",\"doi\":\"10.1109/ISTMET.2015.7359001\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Systems employing the Internet and Voice over Internet Protocol (VoIP) are alternative to the legacy landline telephony system. The services offered by these systems allow users to communicate with their family members, friends, banks and business partners whenever they are online. Particularly, the VoIP service is popular with the Internet users because charges are bound into usually fixed access costs making the price of the long distance calls themselves appear economical and even free. However, VoIP services have several disadvantages. One of the disadvantages of VoIP is, it is exposed to Internet security vulnerabilities, threats and attacks. The attacks come in many forms. One of the methods to attack the VoIP service, is by sending a Spam over Internet Telephony (SPIT). SPIT is normally executed by malicious parties initiating automated, unsolicited, and unwanted communications that used VoIP or video conferencing services, just like an email SPAM. Solutions to mitigate SPIT are still lacking. To defense a VoIP system from SPIT, we have come out with the idea of Automated Intrusion Detection and Prevention System over SPIT (AIDPoS) that can detect and prevent SPIT from external parties to enter the VoIP network. AIDPoS is a combination system of Intrusion Detection System (IDS) and Intrusion Prevention System (IPS) on Voice over IP (VoIP) server. This is an experimental research to find a solution to combat SPIT if it happens in the future. Our result shows that an automated Intrusion detection and Prevention system over SPIT attack is feasible. Our work is on an open source VoIP network. Other vulnerabilities and threats are important, but beyond our research scope and is not covered in this paper.\",\"PeriodicalId\":302732,\"journal\":{\"name\":\"2015 International Symposium on Technology Management and Emerging Technologies (ISTMET)\",\"volume\":\"1 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2015-12-17\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"3\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2015 International Symposium on Technology Management and Emerging Technologies (ISTMET)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ISTMET.2015.7359001\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2015 International Symposium on Technology Management and Emerging Technologies (ISTMET)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ISTMET.2015.7359001","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 3
摘要
采用互联网和互联网协议语音(VoIP)的系统是传统固定电话系统的替代方案。这些系统提供的服务允许用户随时在线与家人、朋友、银行和商业伙伴进行通信。特别是,VoIP服务受到互联网用户的欢迎,因为费用被绑定在通常固定的接入费用中,使得长途电话本身的价格显得经济甚至免费。然而,VoIP服务有几个缺点。VoIP的缺点之一是暴露在互联网安全漏洞、威胁和攻击之下。攻击有多种形式。攻击VoIP服务的方法之一是通过互联网电话发送垃圾邮件(SPIT)。恶意方通常使用VoIP或视频会议服务发起自动的、未经请求的和不需要的通信,就像电子邮件垃圾邮件一样。缓解吐痰的解决方案仍然缺乏。为了保护VoIP系统免受SPIT的攻击,我们提出了自动入侵检测和防御系统(AIDPoS)的想法,该系统可以检测和阻止来自外部的SPIT进入VoIP网络。AIDPoS是在VoIP (Voice over IP)服务器上集成入侵检测系统(IDS)和入侵防御系统(IPS)的系统。这是一项实验性研究,旨在找到解决未来随地吐痰问题的方法。我们的研究结果表明,针对SPIT攻击的自动入侵检测和防御系统是可行的。我们的工作是在一个开源的VoIP网络上。其他漏洞和威胁也很重要,但超出了我们的研究范围,不在本文中讨论。
Automated Intrusion Detection and Prevention System over SPIT (AIDPoS)
Systems employing the Internet and Voice over Internet Protocol (VoIP) are alternative to the legacy landline telephony system. The services offered by these systems allow users to communicate with their family members, friends, banks and business partners whenever they are online. Particularly, the VoIP service is popular with the Internet users because charges are bound into usually fixed access costs making the price of the long distance calls themselves appear economical and even free. However, VoIP services have several disadvantages. One of the disadvantages of VoIP is, it is exposed to Internet security vulnerabilities, threats and attacks. The attacks come in many forms. One of the methods to attack the VoIP service, is by sending a Spam over Internet Telephony (SPIT). SPIT is normally executed by malicious parties initiating automated, unsolicited, and unwanted communications that used VoIP or video conferencing services, just like an email SPAM. Solutions to mitigate SPIT are still lacking. To defense a VoIP system from SPIT, we have come out with the idea of Automated Intrusion Detection and Prevention System over SPIT (AIDPoS) that can detect and prevent SPIT from external parties to enter the VoIP network. AIDPoS is a combination system of Intrusion Detection System (IDS) and Intrusion Prevention System (IPS) on Voice over IP (VoIP) server. This is an experimental research to find a solution to combat SPIT if it happens in the future. Our result shows that an automated Intrusion detection and Prevention system over SPIT attack is feasible. Our work is on an open source VoIP network. Other vulnerabilities and threats are important, but beyond our research scope and is not covered in this paper.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
