Skip to Main content Skip to Navigation
Conference papers

Holistic VoIP Intrusion Detection and Prevention System

Mohamed Nassar 1, * Saverio Niccolini 2 Radu State 1 Thilo Ewald 2
* Corresponding author
1 MADYNES - Management of dynamic networks and services
INRIA Lorraine, LORIA - Laboratoire Lorrain de Recherche en Informatique et ses Applications
Abstract : VoIP security is crucial for current and future networks and services. The rapid shift from a closed and confined telephony towards an all IP network supporting end to end VoIP services provides major challenges to the security plane. Faced with multiple attack vectors, new and comprehensive defensive security solutions for VoIP must emerge from the research community. This paper describes a multilayer intrusion detection and prevention system architecture for VoIP infrastructures. The key components of the approach are based on a VoIP-specific honeypot and on an application layer event correlation engine. While each component alone can detect only a subset of VoIP-specific attacks, the two of them together can provide an effective defense for the many class of attacks. We show in this paper, how different and complementary conceptual approaches can jointly provide an in depth defense for VoIP architectures.
Document type :
Conference papers
Complete list of metadata

Cited literature [15 references]  Display  Hide  Download
Contributor : Mohamed Nassar <>
Submitted on : Friday, August 31, 2007 - 2:23:33 PM
Last modification on : Friday, February 26, 2021 - 3:28:04 PM
Long-term archiving on: : Monday, September 24, 2012 - 11:55:57 AM


Files produced by the author(s)


  • HAL Id : inria-00169036, version 1



Mohamed Nassar, Saverio Niccolini, Radu State, Thilo Ewald. Holistic VoIP Intrusion Detection and Prevention System. IPTCOMM 2007 Telecommunications in the Internet Age, Columbia University New York in Cooperation with ACM SIGCOMM, Sep 2007, New York, United States. pp.1-9. ⟨inria-00169036⟩



Record views


Files downloads