HAL will be down for maintenance from Friday, June 10 at 4pm through Monday, June 13 at 9am. More information
Skip to Main content Skip to Navigation
Conference papers

Holistic VoIP Intrusion Detection and Prevention System

Mohamed Nassar 1, * Saverio Niccolini 2 Radu State 1 Thilo Ewald 2
* Corresponding author
1 MADYNES - Management of dynamic networks and services
INRIA Lorraine, LORIA - Laboratoire Lorrain de Recherche en Informatique et ses Applications
Abstract : VoIP security is crucial for current and future networks and services. The rapid shift from a closed and confined telephony towards an all IP network supporting end to end VoIP services provides major challenges to the security plane. Faced with multiple attack vectors, new and comprehensive defensive security solutions for VoIP must emerge from the research community. This paper describes a multilayer intrusion detection and prevention system architecture for VoIP infrastructures. The key components of the approach are based on a VoIP-specific honeypot and on an application layer event correlation engine. While each component alone can detect only a subset of VoIP-specific attacks, the two of them together can provide an effective defense for the many class of attacks. We show in this paper, how different and complementary conceptual approaches can jointly provide an in depth defense for VoIP architectures.
Document type :
Conference papers
Complete list of metadata

Cited literature [15 references]  Display  Hide  Download

Contributor : Mohamed Nassar Connect in order to contact the contributor
Submitted on : Friday, August 31, 2007 - 2:23:33 PM
Last modification on : Wednesday, February 2, 2022 - 3:51:50 PM
Long-term archiving on: : Monday, September 24, 2012 - 11:55:57 AM


Files produced by the author(s)


  • HAL Id : inria-00169036, version 1



Mohamed Nassar, Saverio Niccolini, Radu State, Thilo Ewald. Holistic VoIP Intrusion Detection and Prevention System. IPTCOMM 2007 Telecommunications in the Internet Age, Columbia University New York in Cooperation with ACM SIGCOMM, Sep 2007, New York, United States. pp.1-9. ⟨inria-00169036⟩



Record views


Files downloads