Sciweavers

ESORICS
2010
Springer

D(e|i)aling with VoIP: Robust Prevention of DIAL Attacks

14 years 18 hour ago
D(e|i)aling with VoIP: Robust Prevention of DIAL Attacks
We carry out attacks using Internet services that aim to keep telephone devices busy, hindering legitimate callers from gaining access. We use the term DIAL (Digitally Initiated Abuse of teLephones), or, in the simple form, Dial attack, to refer to this behavior. We develop a simulation environment for modeling a Dial attack in order to quantify its full potential and measure the effect of attack parameters. Based on the simulation's results we perform the attack in the real-world. By using a Voice over IP (VoIP) provider as the attack media, we manage to hold an existing landline device busy for 85% of the attack duration by issuing only 3 calls per second and, thus, render the device unusable. The attack has zero financial cost, requires negligible computational resources and cannot be traced back to the attacker. Furthermore, the nature of the attack is such that anyone can launch a Dial attack towards any telephone device. We investigate existing countermeasures in VoIP provi...
Alexandros Kapravelos, Iasonas Polakis, Elias Atha
Added 06 Dec 2010
Updated 06 Dec 2010
Type Conference
Year 2010
Where ESORICS
Authors Alexandros Kapravelos, Iasonas Polakis, Elias Athanasopoulos, Sotiris Ioannidis, Evangelos P. Markatos
Comments (0)