Title | ||
---|---|---|
An early application of the Bell Labs Security framework to analyze vulnerabilities in the Internet telephony domain |
Abstract | ||
---|---|---|
The Bell Labs Security Framework provides a comprehensive matrix that can be used to evaluate the security of an application (service), host, protocol, or communication link. The methodology has been used to assess the security of information technology (IT) and telecommunications services, as well as technologies such as Institute of Electrical and Electronics Engineers (IEEE) 802.11. The goal of this paper is to provide systems designers and researchers with a methodology to gauge where the Internet telephony industry, products, and protocols are in terms of security with the hope of prioritizing future needs and establishing a baseline measurement for potential changes. The methodology itself consists of cataloging a body of observed attacks against Internet telephony systems over the standard definitions from the framework. This is an early work that aims to quantify where in the framework security attacks on Internet telephony infrastructure appear. We envision that on the basis of data collected over a prolonged period, it will be feasible to determine the set of intersection of the layer and plane at which such attacks are clustered and thus proactively put safeguards in products to thwart such attacks. © 2007 Alcatel-Lucent. |
Year | DOI | Venue |
---|---|---|
2007 | 10.1002/bltj.v12:3 | Bell Labs Technical Journal |
Keywords | Field | DocType |
internet telephony | Internet security,Telecommunications,Computer security,Information technology,Computer network,Security association,Engineering,Telephony,Telecommunications service,Vulnerability,The Internet,Voice over IP | Journal |
Volume | Issue | ISSN |
12 | 3 | 1089-7089 |
Citations | PageRank | References |
2 | 0.45 | 2 |
Authors | ||
2 |
Name | Order | Citations | PageRank |
---|---|---|---|
Vijay K. Gurbani | 1 | 278 | 34.36 |
Andrew R. Mcgee | 2 | 34 | 7.39 |