
	Home > Ask the Unified Communications Experts > UC Security Questions & Answers > Criminal abuse of VoIP

Ask The Unified Communications Expert: Questions & Answers

EMAIL THIS

Criminal abuse of VoIP

EXPERT RESPONSE FROM: Andrew Graydon

		Pose a Question

		Other Unified Communications Categories

		Meet all Unified Communications Experts
		Become an Expert for this site

VoIP news and advice channel

Digg This! StumbleUpon Del.icio.us

QUESTION POSED ON: 09 November 2005
I am the detective inspector in charge of the Garda Hi-Tech Crime Unit in Ireland. I am part of a team looking at the threats and abuse VoIP will receive by criminals. I would appreciate any comments you have on what threats you perceive will occur with this relatively new technology.

EXPERT RESPONSE

VoIP communications opens up a whole set of concerns previously unconsidered in voice communications. As you know, each country has regulated communications and provisions for 'legal intercept' which is widely known as wiretapping. In VoIP systems, not only is this more difficult, but IP to IP communications has been removed from having this requirement in the U.S. under CALEA. This is of major concern to law enforcement, as IP-to-IP communications is not limited to PCs anymore, but can now be done using WiFi SIP phones in hotspots, which are becoming widely available. This type of communications is difficult to monitor, but not impossible. However, legislative bodies and their advisors need to be better informed of the issues involved.

Technical solutions in the area of IP communications are already in use by legal entities for IM, e-mail and Web traffic, allowing investigations into online illegal activities to be carried out. The real-time aspect of VoIP introduces some extra complexity, but solutions can be implemented at the ISP level through packet sniffing and protocol analysis leading to media forking. Think of it as a high speed, high bandwidth Ethereal.

On another note, IP PBX attacks can be classified into two areas, transport and application layer attacks. Transport layer attacks are well known IP layer attacks such as DOS, DDOS, SYN, ACK, etc. These attacks are identical to the type of attacks faced every day by current IP systems and can be remedied in the standard ways we secure networks. The application layer attacks introduce some new concerns. Attacks at this layer are quite difficult to protect against, as many of the attacks are based on common usage of the systems, for example DOS attacks, phone calls for SPAM/SPIT, voice mail messages, or protocol exploitations -- such as cutting off calls, making phones ring and faking caller ID. Of course, there are also 'man-in-the-middle', session hijacking, and sniffing attacks just to mention a few, which are blended attacks. These attacks are a combination of transport layer and protocol vulnerabilities.

All of these areas can be contained and protected in today's networks. A combination of network design, traffic flow design and a SIP Firewall or SBC will mitigate many of the issues mentioned above.

Digg This!

StumbleUpon

Del.icio.us

RELATED CONTENT

	UC Security
	Why is VoIP authentication essential?
	Traffic logging and VoIP encryption
	Alternative to keeping data and VoIP traffic on separate VLANs
	Do session border controllers (SBCs) improve security at the level of VoIP traffic?
	Will implementing VoIP increase our company's vulnerability to hackers and denial-of-service attacks?
	Can VoIP and firewalls work together for the greater security good?

VoIP Security

Security concerns for enterprise Skype

SIP tutorial

Unified communications security risks and countermeasures

Can outsiders access my VoIP line and gather confidential data?

Top VoIP Chapter Downloads of 2007

Best practices for instant messaging security

Top rated VoIP security tips of 2007

Voice over IPv6: Architectures for Next Generation VoIP Networks

VoIP vulnerability threatens data

How to Cheat at VoIP Security

RELATED GLOSSARY TERMS

Terms from Whatis.com − the technology online dictionary

vishing (SearchUnifiedCommunications.com)

RELATED RESOURCES

2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems

Search Bitpipe.com for the latest white papers and business webcasts

Whatis.com, the online computer dictionary

Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.

Browse our Expert Advice
Operating Systems IT Management Networking Database	Security Servers and Storage Applications and Development Career Center

Voice and Data Communications Tips

SEARCH

TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.


TechTarget Corporate Web Site \| Media Kits \| Reprints \| Site Map All Rights Reserved, Copyright 2008, TechTarget \| Read our Privacy Policy