Skip to Main content Skip to Navigation
New interface
Journal articles

An Online Risk Management Strategy for VoIP Enterprise Infrastructures

Oussema Dabbebi 1 Rémi Badonnel 1 Olivier Festor 1 
1 MADYNES - Management of dynamic networks and services
Inria Nancy - Grand Est, LORIA - NSS - Department of Networks, Systems and Services
Abstract : Telephony over IP has been widely deployed, supported by the standardization of VoIP signalling and media transfer protocols. This deployment has also led to the emergence of several security threats, including attacks inherited from the IP layer and attacks specific to the application layer. A large variety of security mechanisms has been proposed for addressing them, but these mechanisms may seriously degrade such a critical service. We propose in this paper an online risk management strategy for protecting VoIP infrastructures. The objective is to minimize the network exposure to security attacks while maintaining the quality of service, through the dynamic application of countermeasures. We describe our approach from the formalization of a dedicated risk model to its proof-of-concept implementation into an Asterisk VoIP server. We detail a portfolio of counter- measures and evaluate the performance of our solution with respect to different criteria, including the number of countermeasures, the risk threshold and the size of attack signatures.
Document type :
Journal articles
Complete list of metadata
Contributor : Rémi Badonnel Connect in order to contact the contributor
Submitted on : Monday, October 21, 2013 - 11:31:17 AM
Last modification on : Wednesday, February 2, 2022 - 5:00:58 PM




Oussema Dabbebi, Rémi Badonnel, Olivier Festor. An Online Risk Management Strategy for VoIP Enterprise Infrastructures. Journal of Network and Systems Management, 2015, Journal of Network and System Management, pp.26. ⟨10.1007/s10922-013-9282-4⟩. ⟨hal-00875133⟩



Record views