Amor Lazzez

DOI: https://doi.org/10.48550/arXiv.1312.2225

2013-12-08

Networking and Internet Architecture

Abstract:Voice over IP (VoIP) is the technology allowing voice and multimedia transmissions as data packets over a private or a public IP network. Thanks to the benefits that it may provide, the VoIP technology is increasingly attracting attention and interest in the industry. Actually, VoIP allows significant benefits for customers and communication services providers such as cost savings, rich media service, phone and service portability, mobility, and the integration with other applications. Nevertheless, the deployment of the VoIP technology encounters many challenges such as architecture complexity, interoperability issues, QoS issues, and security concerns. Among these disadvantages, VoIP security issues are becoming more serious because traditional security devices, protocols, and architectures cannot adequately protect VoIP systems from recent intelligent attacks. The aim of this paper is carry out a deep analysis of the security concerns of the VoIP technology. Firstly, we present a brief overview about the VoIP technology. Then, we discuss security attacks and vulnerabilities related to VoIP protocols and devices. After that, we talk about the security profiles of the VoIP protocols, and we present the main security components designed to help the deployment of a reliable and secured VoIP systems.

Mir Ali Rezazadeh Baee,Leonie Simpson,Xavier Boyen,Ernest Foo,Josef Pieprzyk

DOI: https://doi.org/10.1186/s13638-021-01968-6

2021-05-21

EURASIP Journal on Wireless Communications and Networking

Abstract:Abstract In intelligent vehicular networks, vehicles have enhanced sensing capabilities and carry computing and communication platforms to enable new versatile systems known as Vehicular Communication (VC) systems. Vehicles communicate with other vehicles and with nearby fixed equipment to support different applications, including those which increase driver awareness of the surroundings. This should result in improved safety and may optimize traffic. However, VC systems are vulnerable to cyber attacks involving message manipulation. Research aimed at tackling this problem has resulted in the proposal of multiple authentication protocols. Several existing survey papers have attempted to classify some of these protocols based on a limited set of characteristics. However, to date there is no generic framework to support the comparison of these protocols and provide guidance for design and evaluation. Most existing classifications either use computation complexity of cryptographic techniques as a criterion, or they fail to make connections between different important aspects of authentication. This paper provides such a framework, proposing a new taxonomy to enable a consistent means of classifying authentication schemes based upon seven main criteria. The main contribution of this study is a framework to enable protocol designers and investigators to adequately compare and select authentication schemes when deciding on particular protocols to implement in an application. Our framework can be applied in design, making choices appropriate for the intended context in both intra-vehicle and inter-vehicle communications. We demonstrate the application of our framework using two different types of case study: individual analysis and hypothetical design. Additionally, this work makes several related contributions. We present the network model, outline the applications, list the communication patterns and the underlying standards, and discuss the necessity of using cryptography and key management in VC systems. We also review the threats, authentication, and privacy requirements in vehicular networks.

telecommunications,engineering, electrical & electronic

Jianhong Lin,Tianyu Chen,Peng Wang,Chunming Wu

DOI: https://doi.org/10.1109/imcec55388.2022.10019885

2022-01-01

Abstract:With the rapid development of 5G technology, the number of telecom network users is exploding, which brings great pressure to the governance of the whole network. Voice spam, such as fraud, harassment and other illegal voice calls, not only occupy communication resources, but also disturb people's daily life and social order. In light of this, considering different scenario elements, this paper proposes a governance framework that considers time, location and user attributes simultaneously to identify and intercept voice spam. Specifically, we firstly use decision tree algorithm to recognize and classify voice spam in telecom network. Then, based on the frequent itemset theory, the malicious phone IDs are further analyzed and revealed. The telephone numbers are divided into white list, grey list, personal blacklist and group blacklist. Through simulation analysis and practical application in Zhengzhou area, the framework proposed can accurately detect voice spam and timely remind users of potential risks, providing users with secure voice services.

张旭光,平玲娣,潘雪增

DOI: https://doi.org/10.3969/j.issn.1000-3428.2004.14.037

2004-01-01

Abstract:With the development of the Internet technologies and computer communication technologies, the traditionary circuit-switch based network must evolves to the new generation network which is based on the packet-switch technology. Facing the progress and status of the convergence of the three-networks, This document presents a distributed and SIP protocal based VoIP system prototype. Due to combinating of merits of SIP and IP, this model not only provides the interoperation with the existed network, but also provides an extendable plat for the NGN. This model uses private VoIP network to achieve the QoS.

Kinjal Shah,Satya Prakash Ghrera,Alok Thaker

DOI: https://doi.org/10.5121/ijdps.2012.3319

2012-06-08

Abstract:VoIP (Voice over Internet Protocol) is a growing technology during last decade. It provides the audio, video streaming facility on successful implementation in the network. However, it provides the text transport facility over the network. Due to implementation of it the cost effective solution, it can be developed for the intercommunication among the employees of a prestigious organization. The proposed idea has been implemented on the audio streaming area of the VoIP technology. In the audio streaming, the security vulnerabilities are possible on the VoIP server during communication between two parties. In the proposed model, first the VoIP system has been implemented with IVR (Interactive Voice Response) as a case study and with the implementation of the security parameters provided to the asterisk server which works as a VoIP service provider. The asterisk server has been configured with different security parameters like VPN server, Firewall iptable rules, Intrusion Detection and Intrusion Prevention System. Every parameter will be monitored by the system administrator of the VoIP server along with the MySQL database. The system admin will get every update related to the attacks on the server through Mail server attached to the asterisk server. The main beauty of the proposed system is VoIP server alone is configured as a VoIP server, IVR provider, Mail Server with IDS and IPS, VPN server, connection with database server in a single asterisk server inside virtualization environment. The VoIP system is implemented for a Local Area Network inside the university system

Networking and Internet Architecture

Yuting Feng,Feng Xiong,Wenchao Huang,Yan Xiong

DOI: https://doi.org/10.1109/bigcom53800.2021.00005

2021-01-01

Abstract:The Internet Engineering Task Force (IETF) proposed the Session Initiation Protocol (SIP) as the IP-based telephony protocol. With the widespread application of the Voice over IP (VoIP) on Internet, Security problems of SIP have received a lot of attention of researchers and the authentication mechanism in SIP is becoming increasingly important. Many studies reveal that the initial version of SIP specification suffers malicious attacks. To improve the security of the authentication mechanism in SIP, amendments and supplements are expressed over years. Researches on the previous specification have been carried out and some attacks are found, such as replay attack, online dictionary attack, man in the middle attack, etc. However, there is currently a lack of security analysis to the fresh security mechanisms of SIP. In this paper, we accommodate such a requirement by analyzing the security properties of SIP Digest Access Authentication Scheme adopting a formal protocol analysis tool SPAN. The authentication scheme is modeled in the validator according to two practical scenarios. With the two back-ends of SPAN, the two models of authentication scheme are verified both as safe. This result confirms that the supplemented version of SIP authentication mechanism is more reliable.

Aimin Pan

2004-01-01

Abstract:The paper introduces the advantages of the VoIP, points out its shortage on security. Two major VoIP standards, H.323 and SIP, are analyzed about the security. The research directions are given about VoIP's security problem at the end of the paper.

Shawish Ahmed,Xiaohong Jiang,Susumu Horiguchi

DOI: https://doi.org/10.1109/wcnc.2008.381

2008-01-01

Abstract:Effective support of VoIP over Wireless LAN (WLAN) remains a crucial challenge for the last-mile wireless coverage of IP networks with mobility support. Due to the limited bandwidth available in a WLAN, an accurate analysis of voice capacity in such a network is critical for the efficient usage of WLAN's resources. The available upper or lower bound models on voice capacity may significantly overestimate or underestimate a WLAN's capacity to support VoIP, thus they are not suitable for above purpose. In this paper, we focus on the voice capacity analysis of a single wireless 802.11(a/b) network cell running the distributed coordination function (DCF). In particular, by taking into account the spatial distribution of clients, we propose a more accurate analytical model to estimate the average voice capacity of such a network cell. We further show that by properly exploring the clients' spatial distribution information in allocating the access points, we may be able to increase the overall voice capacity. The efficiency of our new voice capacity model and new access point allocation scheme is validated through simulation and comparisons with available ones.

Amor Lazzez,Thabet Slimani

DOI: https://doi.org/10.48550/arXiv.1312.2581

2013-12-08

Networking and Internet Architecture

Abstract:Voice over IP (VoIP) is an emerging communication service allowing voice transmission over a private or a public IP network. VoIP allows significant benefits for customers and service providers including cost savings, phone and service portability, mobility, and the integration with other applications. Nevertheless, the deployment of the VoIP technology encounters many challenges such as interoperability issues, security issues, and QoS concerns. Among these disadvantages, QoS issues are considered the most serious due to the QoS problems that may arise on IP networks, and the stringent QoS requirements of voice traffic. The aim of this paper is carry out a deep analysis of the QoS concerns of the VoIP technology. Firstly, we present a brief overview about the VoIP technology. Then, we discuss the QoS issues related to the use of the IP networking technology for voice traffic transmission. After that, we present the QoS concerns related voice clarity. Finally, we present the QoS mechanisms proposed to make the IP technology able to support voice traffic QoS requirements in terms of voice clarity, voice packet delay, packet delay variation, and packet loss.

Andreas U. Schmidt,Nicolai Kuntze,Rachid El Khayari

DOI: https://doi.org/10.48550/arXiv.0806.1610

2008-06-10

Abstract:In our modern society telephony has developed to an omnipresent service. People are available at anytime and anywhere. Furthermore the Internet has emerged to an important communication medium. These facts and the raising availability of broadband internet access has led to the fusion of these two services. Voice over IP or short VoIP is the keyword, that describes this combination. The advantages of VoIP in comparison to classic telephony are location independence, simplification of transport networks, ability to establish multimedia communications and the low costs. Nevertheless one can easily see, that combining two technologies, always brings up new challenges and problems that have to be solved. It is undeniable that one of the most annoying facet of the Internet nowadays is email spam. According to different sources email spam is considered to be 80 to 90 percent of the email traffic produced. The threat of so called voice spam or Spam over Internet Telephony (SPIT) is even more fatal, for the annoyance and disturbance factor is much higher. As instance an email that hits the inbox at 4 p.m. is useless but will not disturb the user much. In contrast a ringing phone at 4 p.m. will lead to a much higher disturbance. From the providers point of view both email spam and voice spam produce unwanted traffic and loss of trust of customers into the service. In order to mitigate this threat different approaches from different parties have been developed. This paper focuses on state of the art anti voice spam solutions, analyses them and reveals their weak points. In the end a SPIT producing benchmark tool will be introduced, that attacks the presented anti voice spam solutions. With this tool it is possible for an administrator of a VoIP network to test how vulnerable his system is.

Cryptography and Security,Human-Computer Interaction

Joseph Konan,Shikhar Agnihotri,Ojas Bhargave,Shuo Han,Yunyang Zeng,Ankit Shah,Bhiksha Raj

2024-08-01

Abstract:Within the ambit of VoIP (Voice over Internet Protocol) telecommunications, the complexities introduced by acoustic transformations merit rigorous analysis. This research, rooted in the exploration of proprietary sender-side denoising effects, meticulously evaluates platforms such as Google Meets and Zoom. The study draws upon the Deep Noise Suppression (DNS) 2020 dataset, ensuring a structured examination tailored to various denoising settings and receiver interfaces. A methodological novelty is introduced via Blinder-Oaxaca decomposition, traditionally an econometric tool, repurposed herein to analyze acoustic-phonetic perturbations within VoIP systems. To further ground the implications of these transformations, psychoacoustic metrics, specifically PESQ and STOI, were used to explain of perceptual quality and intelligibility. Cumulatively, the insights garnered underscore the intricate landscape of VoIP-influenced acoustic dynamics. In addition to the primary findings, a multitude of metrics are reported, extending the research purview. Moreover, out-of-domain benchmarking for both time and time-frequency domain speech enhancement models is included, thereby enhancing the depth and applicability of this inquiry.

Sound,Computation and Language,Audio and Speech Processing

Nguyen Cong Luong,Dinh Thai Hoang,Ping Wang,Dusit Niyato,Zhu Han

DOI: https://doi.org/10.48550/arXiv.1707.07846

2017-07-25

Computer Science and Game Theory

Abstract:This paper provides a comprehensive literature review on applications of economic and pricing theory to security issues in wireless networks. Unlike wireline networks, the broadcast nature and the highly dynamic change of network environments pose a number of nontrivial challenges to security design in wireless networks. While the security issues have not been completely solved by traditional or system-based solutions, economic and pricing models recently were employed as one efficient solution to discourage attackers and prevent attacks to be performed. In this paper, we review economic and pricing approaches proposed to address major security issues in wireless networks including eavesdropping attack, Denial-of-Service (DoS) attack such as jamming and Distributed DoS (DDoS), and illegitimate behaviors of malicious users. Additionally, we discuss integrating economic and pricing models with cryptography methods to reduce information privacy leakage as well as to guarantee the confidentiality and integrity of information in wireless networks. Finally, we highlight important challenges, open issues and future research directions of applying economic and pricing models to wireless security issues.

Zhiwei Yu,Thomborson, C.,Chaokun Wang,Junning Fu

DOI: https://doi.org/10.1109/MINES.2009.227

2009-01-01

Abstract:In 2005, an extensive taxonomy of threats for VoIP was published by a prominent industry group. Strangely, this taxonomy does not identify stegocommunication as a threat, even though many steganographic channels have been identified in VoIP protocols. To avoid such security gaps in the future, we argue that stegocommunication should be added to the traditional list of network threats: interruption, interception, modification, fabrication. The stegocommunication threat arises when the communication channel is purchased, provided, or supervised by anyone other than the communicating parties. We illustrate a stegocommunication threat to a business owner Charles. If Charles purchases a VoIP service for business-related communications by an employee Alice, then he faces the risk that Alice may undetectably communicate a business secret to an outside party Bob. In this insider-threat scenario, Charles can mitigate his security risk by installing a stegodetector.

Huang Yong-feng,Deng Ze,Li Xing

DOI: https://doi.org/10.1007/bf02830435

2004-01-01

Abstract:We first discusses some threats to VoIP system and H. 323 architectures designed for VoIP communications on security point of view. Continues with presenting security requirements of VoIP, and explaining the essential security constraints surrounding a seccessful VoIP deployment. Finally, suggests some strategies to implement the security and encryption functions of VoIP system based on H. 323.

Ankur Shukla,Basel Katt,Livinus Obiora Nweke,Prosper Kandabongee Yeng,Goitom Kahsay Weldehawaryat

DOI: https://doi.org/10.1016/j.cosrev.2022.100496

2022-07-29

Abstract:System security assurance provides the confidence that security features, practices, procedures, and architecture of software systems mediate and enforce the security policy and are resilient against security failure and attacks. Alongside the significant benefits of security assurance, the evolution of new information and communication technology (ICT) introduces new challenges regarding information protection. Security assurance methods based on the traditional tools, techniques, and procedures may fail to account new challenges due to poor requirement specifications, static nature, and poor development processes. The common criteria (CC) commonly used for security evaluation and certification process also comes with many limitations and challenges. In this paper, extensive efforts have been made to study the state-of-the-art, limitations and future research directions for security assurance of the ICT and cyber-physical systems (CPS) in a wide range of domains. We conducted a systematic review of requirements, processes, and activities involved in system security assurance including security requirements, security metrics, system and environments and assurance methods. We highlighted the challenges and gaps that have been identified by the existing literature related to system security assurance and corresponding solutions. Finally, we discussed the limitations of the present methods and future research directions.

Cryptography and Security,Software Engineering

Kashif Nisar,Mohd Hanafi Ahmad Hijazi,Ibrahim A. Lawal

DOI: https://doi.org/10.1109/icctim.2015.7224613

2015-04-01

Abstract:The Voice over Internet Protocol (VoIP) and Wireless Local Area Networks (WLANs) has observed the fastest growth in the world of communication. The WLAN is the most assuring of technologies among the wireless networks, which has facilitated high-rate voice services at low cost and good flexibility over IP-based networks. Worldwide Interoperability for Microwave Access (WiMAX) technology is also a preliminary step to develop Fourth Generation networks (4G) technologies. WiMAX is a recent wireless broadband standard that has promised high bandwidth over long-range transmission. The standard specifies the air interface, including the Medium Access Control (MAC) and Physical (PHY) layers, of Broadband Wireless Access (BWA). It has not only succeeded in the utilization of several of the latest telecommunication techniques in the form of unique practical standards, but also paved the way for the quantitative and qualitative developments of high-speed broadband access. The Institute of Electrical and Electronics Engineers (IEEE 802.16) Standard introduces several advantages; one of them is support for Quality of Services (QoS) at the Media Access Control (MAC) level. However, the existing VoIP over WLAN and WiMAX architecture does not provide sufficient QoS in both networks. In this paper we provide an overview and develops a new distributed model to improve QoS performance for VoIP over WLAN and Fixed WiMAX network with respect to Application Response Time (ART). The model was simulated in the OPNET modeler (16.0) with Multiple Access Points (APs), Base Stations (BSs)as well as mobile devices, Subscribers Stations (SSs), and some server BSs that were selected based on Nearest Neighborhood Algorithm and Orthogonal Frequency Division Multiplexing (OFDM) techniques. The results obtained from this proposed model showed significant performance in network application response time.

FENG Li,WANG Jun,SHA Li,LI Jun-chao,HOU Hui-chao

2011-01-01

Abstract:Existing research on the SIP conferencing always only focuses on system architecture,utility function and running performance,but overlooks security issue in conferences.The security problems mainly summarize to two kinds,which are confidentiality problems caused by leakage and reliability problems caused by SIP attacks.According to these problems in SIP conferencing,this paper proposes a series of methods to advance SIP standard conferencing framework.The conference confidentiality technology research includes password security and media security.We use moderator's authentication and encryption to achieve double insurance.The conference reliability research mainly includes standardized examination,protocol extensions and SIP flooding intrusion detection.We verify the reasonableness via the experiment at last.

Zhen Cao,Zhi Guan,Zhong Chen,Jian-Bin Hu,Li-Yong Tang

DOI: https://doi.org/10.1007/s11390-010-9330-4

2010-01-01

Abstract:Denial-of-Service (DoS) attacks are virulent to both computer and networked systems. Modeling and evaluating DoS attacks are very important issues to networked systems; they provide both mathematical foundations and theoretic guidelines to security system design. As defense against DoS has been built more and more into security protocols, this paper studies how to evaluate the risk of DoS in security protocols. First, we build a formal framework to model protocol operations and attacker capabilities. Then we propose an economic model for the risk evaluation. By characterizing the intruder capability with a probability model, our risk evaluation model specifies the “Value-at-Risk” (VaR) for the security protocols. The “Value-at-Risk” represents how much computing resources are expected to lose with a given level of confidence. The proposed model can help users to have a better understanding of the protocols they are using, and in the meantime help designers to examine their designs and get clues of improvement. Finally we apply the proposed model to analyze a key agreement protocol used in sensor networks and identify a DoS flaw there, and we also validate the applicability and effectiveness of our risk evaluation model by applying it to analyze and compare two public key authentication protocols.

Haixin Duan,Jianping Wu

DOI: https://doi.org/10.3321/j.issn:1002-8331.2000.05.008

2000-01-01

Abstract:The definitions of some concepts related to security architecture for computer networks are presented firstly in this paper, and then, a framework is proposed from the aspect of security requirements. Based on the analysis of dependence among security services, a method is presented for classifying and rating network security according to se curity services and mechanisms. After the analysis of security mechanisms in TCP/IP protocol including IPSec and SSL, a protocol layered entity model is presented for implementation of security services and security management. From the aspect of entity unit, all kinds of security technologies are organized into to four layers. The place of security management in the architecture and content of management activities for large networks are described. At the end of this paper, further research directions are pointed about the security architecture.

Manjur S Kolhar,Mosleh M. Abu-Alhaj,Omar Abouabdalla,Tat Chee Wan,Ahmad M. Manasrah

DOI: https://doi.org/10.48550/arXiv.1001.2280

2010-01-14

Abstract:Voice over IP (VoIP) is a technology to transport media over IP networks such as the Internet. VoIP has the capability of connecting people over packet switched networks instead of traditional circuit switched networks. Recently, the InterAsterisk Exchange Protocol (IAX) has emerged as a new VoIP which is gaining popularity among VoIP products. IAX is known for its simplicity, NAT friendliness, efficiency, and robustness. More recently, the Real time Switching (RSW) control criterion has emerged as a multimedia conferencing protocol. In this paper, we made a comparative evaluation and analysis of IAX and RSW using Mean Opinion Score rating (MOS) and found that they both perform well under different network packet delays in ms.

Networking and Internet Architecture,Multimedia