Presentation is loading. Please wait.

Presentation is loading. Please wait.

Hannes Tschofenig Henning Schulzrinne M. Shanmugam

Published byἘφραίμ Μπλέτσας Modified over 5 years ago

Similar presentations

Presentation on theme: "Hannes Tschofenig Henning Schulzrinne M. Shanmugam"— Presentation transcript:

1 Hannes Tschofenig Henning Schulzrinne M. Shanmugam
Security Threats and Requirements for Emergency Calling draft-tschofenig-ecrit-security-threats Hannes Tschofenig Henning Schulzrinne M. Shanmugam ECRIT interim meeting - May 2005

2 ECRIT interim meeting - May 2005
Terminology Internet Access Provider (IAP) Emergency call routing support = routes calls (e.g., SIP proxy) Directory = maps location to PSAP address Asserted location information = somebody vouches for this information ECRIT interim meeting - May 2005

3 ECRIT interim meeting - May 2005
Framework location provider (DHCP, …) A(V)SP IAP configuration information directory PSAP ECRIT interim meeting - May 2005

4 Participant-visible threats
Standard problems: eavesdropping (privacy, interference with law enforcement) modification of call content preventing service to single user (burglar-cutting-phone-wire) Since no direct monetary gain, threat model focuses on disruption of emergency service to legitimate users by causing infrastructure failure by tying up call takers by dispatching emergency responders Difference to most other systems PSAP doesn’t care who you are as long as you don’t lie about the location or nature of the emergency ECRIT interim meeting - May 2005

5 Layers of defense (DOS, crank calls)
prevent or limit detect & filter prosecute ECRIT interim meeting - May 2005

6 ECRIT interim meeting - May 2005
Threats Denial-of-service (resource exhaustion) attacks entities affected: directory call routing infrastructure PSAP resources network bandwidth processing human resources (call takers, first responders) Call identity spoofing primarily to elude DOS attack prosecution ECRIT interim meeting - May 2005

7 ECRIT interim meeting - May 2005
Authentication Classical requirement: “must be able to place call without authentication” Really? ≠ anonymity! Probably really want place call without being a paying customer of IAP thus, may still be known to service provider former customer third-party cert (e.g., some government authority) device cert (“payphone on corner of Third and Main”) ECRIT interim meeting - May 2005

8 Details: security threat to one caller
Confidentiality Modification to configuration information Modification of call information call signaling media PSAP impersonation ECRIT interim meeting - May 2005

9 Details: infrastructure threats
denial-of-service attacks modification of configuration information ECRIT interim meeting - May 2005

10 Caller identity spoofing
 authentication avoid delays during emergency call setups avoid multiple round-trip times define authentication independent of customer relationships e.g., might only need non-1918 IP address to determine port and customer ECRIT interim meeting - May 2005

11 ECRIT interim meeting - May 2005
Location spoofing End user provided location IAP provides assertion limited usefulness if wide coverage area Emergency call router inserts retrieved by V(A)SP from IAP must be based on some identifier IAP may sign Need to insert timestamp and identity prevent replay and copy-and-paste attacks identity may not be NAI IP address, MAC address primarily needed for traceability ECRIT interim meeting - May 2005

12 Location spoofing threat mediation
prevent wide-area spoofing avoid global attacks; avoid international jurisdictional issues accountability reasonable chance that the person can be brought to justice future calls from the same person are considered suspect prevent local-area spoofing attacker can’t pretend to be in place X prevent local-area collusion attacker can’t get friend to give him location information for X prevent local-area time cloning attacker can’t pretend to be in X now if they were in X earlier ECRIT interim meeting - May 2005

13 ECRIT interim meeting - May 2005
Impersonating a PSAP Assurance of reaching an authorized or legitimate PSAP Attacker may intercept directory request or call routing request  Integrity-protect directory and signaling interactions Directory must be authoritative for information may be hard to prove ECRIT interim meeting - May 2005

14 ECRIT interim meeting - May 2005
Open issues Mixture of threat description and requirements Should requirements be merged into general requirements document (or remove security issues from general requirements document)? ECRIT interim meeting - May 2005

Download ppt "Hannes Tschofenig Henning Schulzrinne M. Shanmugam"

Similar presentations

March 2008IETF 71 (Philadelphia) - ECRIT1 Unauthenticated emergency communications Henning Schulzrinne Gabor Bajko S. McCann Hannes Tschofenig draft-schulzrinne-ecrit-unauthenticated-access-02.

March 2008IETF 71 (Philadelphia) - ECRIT1 Unauthenticated emergency communications Henning Schulzrinne Gabor Bajko S. McCann Hannes Tschofenig draft-schulzrinne-ecrit-unauthenticated-access-02.
The study and demonstration on SIP security vulnerabilities Mahidhar Penigi Vamsi Krishna Karnati.

The study and demonstration on SIP security vulnerabilities Mahidhar Penigi Vamsi Krishna Karnati.
Out of Jurisdiction Emergency Routing draft-winterbottom-ecrit-priv-loc-01.txt James Winterbottom, Hannes Tschofenig, Laura Liess.

Out of Jurisdiction Emergency Routing draft-winterbottom-ecrit-priv-loc-01.txt James Winterbottom, Hannes Tschofenig, Laura Liess.
September 19, 2006speermint interim1 VoIP Threats and Attacks Alan Johnston.

September 19, 2006speermint interim1 VoIP Threats and Attacks Alan Johnston.
CSCE 515: Computer Network Programming Chin-Tser Huang University of South Carolina.

CSCE 515: Computer Network Programming Chin-Tser Huang University of South Carolina.
CSCE 790: Computer Network Security Chin-Tser Huang University of South Carolina.

CSCE 790: Computer Network Security Chin-Tser Huang University of South Carolina.
بسم الله الرحمن الرحيم NETWORK SECURITY Done By: Saad Al-Shahrani Saeed Al-Smazarkah May 2006.

بسم الله الرحمن الرحيم NETWORK SECURITY Done By: Saad Al-Shahrani Saeed Al-Smazarkah May 2006.
Draft-ietf-ecrit-location-hiding-req Location Hiding: Problem Statement and Requirements Henning Schulzrinne, Laura Liess, Hannes Tschofenig, Barbara Stark,

Draft-ietf-ecrit-location-hiding-req Location Hiding: Problem Statement and Requirements Henning Schulzrinne, Laura Liess, Hannes Tschofenig, Barbara Stark,
Trustworthy Location Information draft-tschofenig-ecrit-trustworthy- location draft-tschofenig-ecrit-trustworthy- location Hannes Tschofenig, Henning Schulzrinne.

Trustworthy Location Information draft-tschofenig-ecrit-trustworthy- location draft-tschofenig-ecrit-trustworthy- location Hannes Tschofenig, Henning Schulzrinne.
ECRIT interim meeting - May 2005 1 Security Threats and Requirements for Emergency Calling draft-tschofenig-ecrit-security-threats Hannes Tschofenig Henning.

ECRIT interim meeting - May Security Threats and Requirements for Emergency Calling draft-tschofenig-ecrit-security-threats Hannes Tschofenig Henning.
Threat Modeling for Cloud Computing (some slides are borrowed from Dr. Ragib Hasan) Keke Chen 1.

Threat Modeling for Cloud Computing (some slides are borrowed from Dr. Ragib Hasan) Keke Chen 1.
Architectural Considerations for GEOPRIV/ECRIT Presentation given by Hannes Tschofenig.

Architectural Considerations for GEOPRIV/ECRIT Presentation given by Hannes Tschofenig.
P2P SIP Names & Security Cullen Jennings

P2P SIP Names & Security Cullen Jennings
VoIP Security in Service Provider Environment Bogdan Materna Chief Technology Officer Yariba Systems.

VoIP Security in Service Provider Environment Bogdan Materna Chief Technology Officer Yariba Systems.
PRESENTED BY P. PRAVEEN Roll No: 1009 – 11 – 862 - 025 NETWORK SECURITY M.C.A III Year II Sem.

PRESENTED BY P. PRAVEEN Roll No: 1009 – 11 – NETWORK SECURITY M.C.A III Year II Sem.
GEOPRIV Layer 7 Location Configuration Protocol; Problem Statement and Requirements draft-tschofenig-geopriv-l7-lcp-ps-00.txt Hannes Tschofenig, Henning.

GEOPRIV Layer 7 Location Configuration Protocol; Problem Statement and Requirements draft-tschofenig-geopriv-l7-lcp-ps-00.txt Hannes Tschofenig, Henning.
Network Security Introduction Light stuff – examples with Alice, Bob and Trudy Serious stuff - Security attacks, mechanisms and services.

Network Security Introduction Light stuff – examples with Alice, Bob and Trudy Serious stuff - Security attacks, mechanisms and services.
Computer and Network Security Rabie A. Ramadan. Organization of the Course (Cont.) 2 Textbooks William Stallings, “Cryptography and Network Security,”

Computer and Network Security Rabie A. Ramadan. Organization of the Course (Cont.) 2 Textbooks William Stallings, “Cryptography and Network Security,”
Interdomain Routing Security. How Secure are BGP Security Protocols? Some strange assumptions? – Focused on attracting traffic from as many Ases as possible.

Interdomain Routing Security. How Secure are BGP Security Protocols? Some strange assumptions? – Focused on attracting traffic from as many Ases as possible.
Mobile IP Outline Intro to mobile IP Operation Problems with mobility.

Mobile IP Outline Intro to mobile IP Operation Problems with mobility.

Similar presentations

Ads by Google