Presentation is loading. Please wait.

Presentation is loading. Please wait.

Emergency call assurance. Highest-level goals Protect PSAP resources –network resources –call takers Protect first-responder resources –unnecessary dispatch.

Published byHilary Mason Modified over 8 years ago

Similar presentations

Presentation on theme: "Emergency call assurance. Highest-level goals Protect PSAP resources –network resources –call takers Protect first-responder resources –unnecessary dispatch."— Presentation transcript:

1 Emergency call assurance

2 Highest-level goals Protect PSAP resources –network resources –call takers Protect first-responder resources –unnecessary dispatch No worse than today –local attack vs. non-local –discourage abuse

3 Threats (D) DDOS (bots) –(L) from within local service area –(R) outside local area (C) Hoax/crank calls (humans) –(L) at correct location –(R) at another (fake) location

4 Discouragement Distinguish bots from humans –including silent calls Catch likely remote (bogus) calls Catch perpetrators after the call –discourages crank calls

5 Tools and impact Coarse-grained location assertion –e.g., IP address, provider POP, DSLAM,... –addresses D/R Fine-grained location –e.g., geo, street address –can be by value (“signing”) or reference –address C/L Coarse-grained identity –provider (VSP) –addresses C/R? Fine-grained identity –responsible party (caller) name & address –may not be useful if outside jurisdiction –addresses D/L, C/L, C/R (some) can be signature or transitive trust (reference)

6 Nothing is perfect Unlikely that every legitimate call will have the “good” bits set (signed, recognizable signer, trusted reference,...) Realistic goal is that “almost all” good calls are verifiable –rest is treated as suspicious when call taker resources are available similar to payphone calls today –and will be lower priority during overload (“ranking”) Thus, don’t need perfection in any single technique –combination of techniques likely works better –choose easiest-to-deploy –every call should have one at least one “is good” indicator

7 Deployment scenarios, from easy to hard ISP = VSP –includes large enterprise well-known (to PSAP) VSP, well-known ISP well-known VSP with strong customer authentication –e.g., credit card address (“can sue”) –could be emergency-only VSP well-known ISP with authentication well-known ISP without authentication –“unauthenticated network access” –e.g., guest on corporate or home hot spot or public WiFi unknown ISP/VSP –e.g., out of area (“Sierra Leonian VSP”)

8 Concerns: Delegation identity assurance: subscriber identity within service provider –SIP identity, PAI location signing: within enterprise (room/building level) –ISP customers gets signed LO includes in calls –or private key to sign own LOs? enterprise as trusted CA?

9 Questions: Value or Reference? sign LO –fine-grained or get LO from trusted/verifiable source via TLS? –e.g., corporate LIS

Download ppt "Emergency call assurance. Highest-level goals Protect PSAP resources –network resources –call takers Protect first-responder resources –unnecessary dispatch."

Similar presentations

Internet Protocol Security (IP Sec)

Internet Protocol Security (IP Sec)
Why Is DDoS Hard to Solve? 1.A simple form of attack 2.Designed to prey on the Internet’s strengths 3.Easy availability of attack machines 4.Attack can.

Why Is DDoS Hard to Solve? 1.A simple form of attack 2.Designed to prey on the Internet’s strengths 3.Easy availability of attack machines 4.Attack can.
Topic 8: Secure communication in mobile devices. Choice of secure communication protocols, leveraging SSL for remote authentication and using HTTPS for.

Topic 8: Secure communication in mobile devices. Choice of secure communication protocols, leveraging SSL for remote authentication and using HTTPS for.
CHAPTER 8: SECURITY IN COMPUTER NETWORKS Encryption Encryption Authentication Authentication E-Mail Security E-Mail Security Secure Sockets Layer Secure.

CHAPTER 8: SECURITY IN COMPUTER NETWORKS Encryption Encryption Authentication Authentication Security Security Secure Sockets Layer Secure.
The twenty-four/seven database Oracle Database Security David Yahalom Senior database consultant

The twenty-four/seven database Oracle Database Security David Yahalom Senior database consultant
 Natural consequence of the way Internet is organized o Best effort service means routers don’t do much processing per packet and store no state – they.

 Natural consequence of the way Internet is organized o Best effort service means routers don’t do much processing per packet and store no state – they.
A responsibility based model EDG CA Managers Meeting June 13, 2003.

A responsibility based model EDG CA Managers Meeting June 13, 2003.
PROJECT ON DIGITAL SIGNATURE Submitted by: Submitted to: NAME: Roll no: Reg.no. :

PROJECT ON DIGITAL SIGNATURE Submitted by: Submitted to: NAME: Roll no: Reg.no. :
How It Applies In A Virtual World. Phishing Definition: n. To request confidential information over the Internet under false pretenses in order to fraudulently.

How It Applies In A Virtual World. Phishing Definition: n. To request confidential information over the Internet under false pretenses in order to fraudulently.
Out of Jurisdiction Emergency Routing draft-winterbottom-ecrit-priv-loc-01.txt James Winterbottom, Hannes Tschofenig, Laura Liess.

Out of Jurisdiction Emergency Routing draft-winterbottom-ecrit-priv-loc-01.txt James Winterbottom, Hannes Tschofenig, Laura Liess.
Mar 12, 2002Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities SSL/TLS.

Mar 12, 2002Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities SSL/TLS.
Public-key based. Public-key Techniques based Protocols –may use either weak or strong passwords –high computation complexity (Slow) –high deployment.

Public-key based. Public-key Techniques based Protocols –may use either weak or strong passwords –high computation complexity (Slow) –high deployment.
NENA’s 11 th Annual Technical Development Conference A proposal to support E911 calls on Voice over IP Networks Martin Dawson – Nortel Networks.

NENA’s 11 th Annual Technical Development Conference A proposal to support E911 calls on Voice over IP Networks Martin Dawson – Nortel Networks.
9,825,461,087,64 10,91 6,00 0,00 8,00 SIP Identity Usage in Enterprise Scenarios IETF #64 Vancouver, 11/2005 draft-fries-sipping-identity-enterprise-scenario-01.txt.

9,825,461,087,64 10,91 6,00 0,00 8,00 SIP Identity Usage in Enterprise Scenarios IETF #64 Vancouver, 11/2005 draft-fries-sipping-identity-enterprise-scenario-01.txt.
Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.

Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.
 Authorization via symmetric crypto  Key exchange o Using asymmetric crypto o Using symmetric crypto with KDC  KDC shares a key with every participant.

 Authorization via symmetric crypto  Key exchange o Using asymmetric crypto o Using symmetric crypto with KDC  KDC shares a key with every participant.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
Eric Kilroy. Introduction  Virtual Private Network A way to connect to a private network through a public network such as the internet.

Eric Kilroy. Introduction  Virtual Private Network A way to connect to a private network through a public network such as the internet.
Mar 4, 2003Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities.

Mar 4, 2003Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities.
8-1 What is network security? Confidentiality: only sender, intended receiver should “understand” message contents m sender encrypts message m receiver.

8-1 What is network security? Confidentiality: only sender, intended receiver should “understand” message contents m sender encrypts message m receiver.

Similar presentations

Ads by Google