1 / 5

VoIP SEAL 2.0 Security Suite for SIP enabled networks

Thilo Ewald, Nico d’Heureuse, Saverio Niccolini, Jan Seedorf NEC Europe Ltd., Heidelberg, Germany [ewald, dheureuse, niccolini, seedorf]@nw.neclab.eu. VoIP SEAL 2.0 Security Suite for SIP enabled networks. VoIP SEAL. VoIP SEAL. Vision

elmo
Download Presentation

VoIP SEAL 2.0 Security Suite for SIP enabled networks

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Thilo Ewald, Nico d’Heureuse, Saverio Niccolini, Jan Seedorf NEC Europe Ltd., Heidelberg, Germany [ewald, dheureuse, niccolini, seedorf]@nw.neclab.eu VoIP SEAL 2.0Security Suite for SIP enabled networks

  2. VoIP SEAL VoIP SEAL • Vision • Attacks on NGN networks will evolve: (D)DoS, Interception and Modification, Abuse of Service (Fraud), Social attacks (e.g., SPIT) • Security and troubleshooting will be fundamental • Key issues • Encryption and authentication will not be enough • No single method of detection and protection • Flexible detection and protection technology is required • Solution • Holistic security detection and preventionframework for SIP-based infrastructures • (VoIP) SEcure Application Level firewall (SEAL) • Modular, extensible and distributed platform • Multiple different SIP-enabled detection andprotection modules cooperate • Easily adaptable to different network scenarios

  3. Operator Operator Stage 2 Stage 2 CDRs Operator Stage 2 Stage 1 Stage 1 CSCF CSCF VoIP SEAL VoIP SEAL VoIP SEAL VoIP SEAL VoIP SEAL VoIP SEAL User User User Stage 1 CSCF Envisioned Deployment Scenarios • Offline analysis • Analysis of call data records, log files, network traces, … • Manual redirection to Stage-2 test (by operator) • Online monitoring • Real-time traffic monitoring • Automatic redirection to Stage-2 test • Inline protection (SEAL 2.0) • Real-time traffic interception • 5 stage protection system

  4. VoIP SEAL - AS HoneyVoIP SBC SIP infrastructure Internet / outer network (unprotected) Operator / Customer network (VoIP SEAL protected) VoIP SEAL 2.0 What changed since IPTComm 2007? • Distributed deployment • Collaborative scoring • SBC • Application Server • User Equipment • Personalization • Personal Black-/WhiteLists • Personal Stage-2 tests • Multi language • Feedback & Configuration via • Web interface • Minibrowser (COTS SIP phone) • Improvements on algorithms - e.g. DTMF-Tests, Greylisting, HoneyVoIP

More Related