Presentation is loading. Please wait.

Presentation is loading. Please wait.

March 2008IETF 71 (Philadelphia) - RUCUS1 SPIT architectural issues Henning Schulzrinne Columbia University (based partially on draft-tschofenig-sipping-framework-spit-reduction-03)

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "March 2008IETF 71 (Philadelphia) - RUCUS1 SPIT architectural issues Henning Schulzrinne Columbia University (based partially on draft-tschofenig-sipping-framework-spit-reduction-03)"— Presentation transcript:

1 March 2008IETF 71 (Philadelphia) - RUCUS1 SPIT architectural issues Henning Schulzrinne Columbia University (based partially on draft-tschofenig-sipping-framework-spit-reduction-03)

2 March 2008IETF 71 (Philadelphia) - RUCUS2 Unsolicited communications IMs SUBSCRIBEs Calls –email-spam like: robots, canned –revival of telemarketing just from Bangalore or Lagos bypass Do-Not-Call list regulations Residence and enterprise –most spam products sold to enterprises today…

3 March 2008IETF 71 (Philadelphia) - RUCUS3 Bot nets May dominate SPIT problem Three kinds: –fake identity –real identity (of unwitting host) random destinations destinations from host address book or Facebook friends list

4 March 2008IETF 71 (Philadelphia) - RUCUS4 User behavior Closed groups –only communicate within group –example: children Semi-open groups –mostly within group –plus introductions, possibly by other means (e.g., email) –example: research staff in company Open groups –communicate with public –examples: PSAP, call center, front desk

5 March 2008IETF 71 (Philadelphia) - RUCUS5 The cast caller.comisp.comsmith.org alice@smith.org *all proxies are optional columbia.edu oracle honey pot peering

6 March 2008IETF 71 (Philadelphia) - RUCUS6 Mechanism Mechanisms likely to evolve No single best mechanism –type of destination residence vs. business vs. PSAP –cost of false positive vs. false negative varies –SPIT evolves Volume and duration by itself insufficient –“reverse 911” –school closing calls at 5 am

7 March 2008IETF 71 (Philadelphia) - RUCUS7 Classes of mechanisms Identity-based –at callee –relationship to other identities (web pages, email) Statistics –at origin or destination Price-based –make incoming or outgoing calls expensive –monetary, computational or human resources (CAPTCHA)

8 March 2008IETF 71 (Philadelphia) - RUCUS8 Detection vs. action Detection of call characteristics –caller statistics not visible to one destination Action based on characteristics + policy –same characteristics + different policy --> different actions e.g., reject - Turing test - voice mail

9 March 2008IETF 71 (Philadelphia) - RUCUS9 Mechanisms WL BL Is bob@caller.com a SPIT bot? Does caller.com host SPITers? Is Bob making more than 100 calls/day? Trust?

10 March 2008IETF 71 (Philadelphia) - RUCUS10 Identity crisis Assumption: –RFC 4474 provides strong identity assurance –needed for white lists Reality: –E.164: draft-rosenberg-sip-rfc4474- concerns-00 –Baiting: draft-kaplan-sip-baiting-attack-02

11 March 2008IETF 71 (Philadelphia) - RUCUS11 Communicating WL BL policy language call properties oracle queries update and share

12 March 2008IETF 71 (Philadelphia) - RUCUS12 What’s to do? Many & evolving mechanisms Components from different vendors Need for glue to allow distributed mechanism, e.g., –mechanisms to convey metrics downstream –mechanisms to query oracles –policy language to allow automated decisions email: Sieve RAI: common policy

13 March 2008IETF 71 (Philadelphia) - RUCUS13 Summary Separate mechanisms from communication protocols Separate call evaluation and measurement from policy Allow for multiple parties –service providers, trust brokers, … Both mechanisms and tools likely to evolve –keep communication tools one step ahead in generality

Download ppt "March 2008IETF 71 (Philadelphia) - RUCUS1 SPIT architectural issues Henning Schulzrinne Columbia University (based partially on draft-tschofenig-sipping-framework-spit-reduction-03)"

Similar presentations

Resonance: Dynamic Access Control in Enterprise Networks Ankur Nayak, Alex Reimers, Nick Feamster, Russ Clark School of Computer Science Georgia Institute.

Resonance: Dynamic Access Control in Enterprise Networks Ankur Nayak, Alex Reimers, Nick Feamster, Russ Clark School of Computer Science Georgia Institute.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 A Perspective on VoIP: Where we are Today and the Challenges for Tomorrow.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 A Perspective on VoIP: Where we are Today and the Challenges for Tomorrow.
University of Baltimore Telecommunications Technology

University of Baltimore Telecommunications Technology
Feature Interaction Handling in LESS Xiaotao Wu and Henning Schulzrinne Internet Real Time Laboratory.

Feature Interaction Handling in LESS Xiaotao Wu and Henning Schulzrinne Internet Real Time Laboratory.
Advertising with Face Book Guadalupe Perez III October 12, 2010 EDTC 3332 Instructional Technology Practicum.

Advertising with Face Book Guadalupe Perez III October 12, 2010 EDTC 3332 Instructional Technology Practicum.
1 IPv6 and IPv4 Interoperation and Transition Tony Hain co-chair IETF ngtrans WG

1 IPv6 and IPv4 Interoperation and Transition Tony Hain co-chair IETF ngtrans WG
IPv4 Depletion IPv6 Adoption 3 February 2011 0 /8s Remaining.

IPv4 Depletion IPv6 Adoption 3 February /8s Remaining.
Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.

Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.
E-Business Risks Chapter Seven. E-Business Models EDI Web pages The online environment Distributed e-business and intranets Supply chain linkage Collaborative.

E-Business Risks Chapter Seven. E-Business Models EDI Web pages The online environment Distributed e-business and intranets Supply chain linkage Collaborative.
DomainKeys Identified Mail (DKIM): Introduction and Overview Eric Allman Chief Science Officer Sendmail, Inc.

DomainKeys Identified Mail (DKIM): Introduction and Overview Eric Allman Chief Science Officer Sendmail, Inc.
Database – Part 3 Dr. V.T. Raja Oregon State University External References/Sources: Data Warehousing – Mr. Sakthi Angappamudali.

Database – Part 3 Dr. V.T. Raja Oregon State University External References/Sources: Data Warehousing – Mr. Sakthi Angappamudali.
The State of Security Management By Jim Reavis January 2003.

The State of Security Management By Jim Reavis January 2003.
Michael Hirschbichler © 2008 Institute of Broadband CommunicationsVienna University of Technology Unsolicited Calls in IMS Spam, Spit - will we be facing.

Michael Hirschbichler © 2008 Institute of Broadband CommunicationsVienna University of Technology Unsolicited Calls in IMS Spam, Spit - will we be facing.
Victor Ivanov. Introduction  Definition  Unsolicited bulk messages  Concerns  Server load  Garbage content.

Victor Ivanov. Introduction  Definition  Unsolicited bulk messages  Concerns  Server load  Garbage content.
Introduction and Overview “the grid” – a proposed distributed computing infrastructure for advanced science and engineering. Purpose: grid concept is motivated.

Introduction and Overview “the grid” – a proposed distributed computing infrastructure for advanced science and engineering. Purpose: grid concept is motivated.
A Generic Event Notification System Using XML and SIP Knarig Arabshian and Henning Schulzrinne Department of Computer Science Columbia University

A Generic Event Notification System Using XML and SIP Knarig Arabshian and Henning Schulzrinne Department of Computer Science Columbia University
Security Awareness: Applying Practical Security in Your World, Second Edition Chapter 5 Network Security.

Security Awareness: Applying Practical Security in Your World, Second Edition Chapter 5 Network Security.
From data delivery to control: rich presence and multimedia Henning Schulzrinne, Ron Shacham, Xiaotao Wu Columbia University, New York Wolfgang Kellerer,

From data delivery to control: rich presence and multimedia Henning Schulzrinne, Ron Shacham, Xiaotao Wu Columbia University, New York Wolfgang Kellerer,
CS 268: Future Internet Architectures Ion Stoica May 1, 2006.

CS 268: Future Internet Architectures Ion Stoica May 1, 2006.
March 2009 (IETF 74)IETF - P2PRG1 Security Issues and Solutions in Peer-to- peer Systems for Real-time Communications draft-schulzrinne-p2prg-rtc-security-00.

March 2009 (IETF 74)IETF - P2PRG1 Security Issues and Solutions in Peer-to- peer Systems for Real-time Communications draft-schulzrinne-p2prg-rtc-security-00.

Similar presentations

Ads by Google